Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
File:                     5D7dxEvG9TRFds9ZrwATXGtiwB0.mft (raw, json)
Hash identifier:          sLYwBEZG1ymO+XT4Xzll5z262Eysr+WE7J2lo5pnb48=
Subject key identifier:   26:B6:47:6A:8D:E2:3A:42:D3:CD:08:B6:65:74:1F:97:2B:AC:82:B1
Authority key identifier: E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
Certificate issuer:       /CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Certificate serial:       01987450B2A27B419A8CBC023C4BEBC6F10A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
Manifest number:          0C7E
Signing time:             Mon 04 Aug 2025 09:01:42 +0000
Manifest this update:     Mon 04 Aug 2025 09:01:42 +0000
Manifest next update:     Tue 05 Aug 2025 09:01:42 +0000
Files and hashes:         1: 5D7dxEvG9TRFds9ZrwATXGtiwB0.crl (hash: s2BOBRkuHktbKDK5ubH2UWbyw8xDJ73cBIBhwmqE+m0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:50:b2:a2:7b:41:9a:8c:bc:02:3c:4b:eb:c6:f1:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
        Validity
            Not Before: Aug  4 09:01:42 2025 GMT
            Not After : Aug  5 09:01:42 2025 GMT
        Subject: CN=26b6476a8de23a42d3cd08b665741f972bac82b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:f7:62:4f:74:42:ef:5f:61:ec:ba:f2:9d:23:
                    76:70:ea:d9:6b:57:da:88:c3:90:3a:41:50:0e:a1:
                    0e:27:96:24:fd:c0:1a:45:a6:00:4e:34:73:97:a4:
                    cc:c7:30:6f:44:54:43:ac:28:a5:93:b3:e3:b5:b4:
                    0e:a9:97:65:0b:66:af:d5:a9:67:ff:8b:bc:33:77:
                    b8:77:a6:ee:a0:eb:fa:b7:51:2e:95:65:5a:73:dd:
                    11:5c:fa:44:1f:2e:64:3a:f4:8b:62:eb:80:06:c0:
                    4b:88:1c:3e:29:eb:60:b8:97:26:27:14:16:19:7e:
                    7e:95:db:27:2a:be:1c:33:bf:93:cc:8c:b1:31:7b:
                    55:cd:8c:cc:20:e8:4c:25:27:62:c1:ca:7c:8f:ab:
                    42:b1:06:f3:bd:5d:82:57:29:22:1a:68:e4:97:75:
                    8d:79:fb:f1:09:20:6c:99:5a:7d:43:c5:ab:df:36:
                    ef:e4:b0:43:d9:f2:21:cc:70:12:27:a9:8e:3b:ae:
                    a1:40:fd:9a:f6:c9:cf:00:83:f6:5e:95:a0:1b:30:
                    48:30:f6:b0:e6:61:97:fd:66:bb:d4:93:5a:f4:ba:
                    6b:9a:43:c7:07:b1:3c:bc:aa:b6:97:d7:9b:6d:96:
                    42:f7:92:96:17:66:f3:e5:2f:69:f0:df:6a:1a:9c:
                    8c:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:B6:47:6A:8D:E2:3A:42:D3:CD:08:B6:65:74:1F:97:2B:AC:82:B1
            X509v3 Authority Key Identifier:
                keyid:E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:a7:46:9b:c5:38:a0:ed:c9:b0:5d:53:c9:b6:d6:83:46:94:
         7a:13:b7:20:5f:ef:b0:5a:d6:b6:b7:a8:fa:3e:36:59:48:0e:
         cc:2f:83:88:51:19:5b:57:9f:5d:af:12:1b:41:bd:f9:28:a7:
         80:2c:c7:b5:17:eb:46:75:38:fe:b3:4b:69:8e:f9:03:e6:a4:
         fc:35:cf:da:6a:33:ab:b2:b6:82:27:da:44:86:cf:14:90:60:
         d2:1b:11:d3:95:94:3f:43:02:80:e6:25:d1:09:df:08:23:6b:
         43:59:0b:c9:ae:5b:5e:bc:b2:a9:ce:f2:4d:a8:94:5d:59:49:
         c3:09:4b:2f:15:f7:b9:a5:ef:53:82:d0:a5:8a:35:e1:8f:ca:
         74:44:83:88:83:44:c0:09:b9:27:a0:8b:79:e1:2e:ed:22:36:
         b2:b6:1f:21:5a:d6:21:a2:70:87:e4:b0:02:a9:3a:9e:b9:b7:
         86:df:97:cb:2c:57:af:2d:2c:e7:7a:62:a3:d9:18:0c:a8:30:
         31:20:be:9d:18:79:9a:31:fd:af:37:3b:14:23:99:c8:e1:1e:
         bb:03:07:26:7e:e7:c9:fb:2e:0b:bf:90:7a:8b:cf:53:fa:1c:
         4a:d2:64:00:a7:5e:07:7c:38:62:50:ce:ea:d8:0f:e0:90:63:
         ba:16:a2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----