Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
File:                     9bMQ6dROhHDWzYAJWQZssA8pHvo.mft (raw, json)
Hash identifier:          yzcwfH2cm80E6OpOVazWL5keTtqg6mxSF4PzTwYqs7w=
Subject key identifier:   DC:97:F9:66:77:C1:3B:4F:68:3F:B7:C6:5F:6C:90:0A:FC:B9:EA:1B
Authority key identifier: F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA
Certificate issuer:       /CN=f5b310e9d44e8470d6cd800959066cb00f291efa
Certificate serial:       019873E3393D198E6B7FE3FC4714D95FA489
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
Manifest number:          107B
Signing time:             Mon 04 Aug 2025 07:02:07 +0000
Manifest this update:     Mon 04 Aug 2025 07:02:07 +0000
Manifest next update:     Tue 05 Aug 2025 07:02:07 +0000
Files and hashes:         1: 9bMQ6dROhHDWzYAJWQZssA8pHvo.crl (hash: 3J+1fItnT+SCFq8n+wQdu3H/WGkGXmJUhFqw/AJhDC0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e3:39:3d:19:8e:6b:7f:e3:fc:47:14:d9:5f:a4:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5b310e9d44e8470d6cd800959066cb00f291efa
        Validity
            Not Before: Aug  4 07:02:07 2025 GMT
            Not After : Aug  5 07:02:07 2025 GMT
        Subject: CN=dc97f96677c13b4f683fb7c65f6c900afcb9ea1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:d7:df:34:b4:4f:a4:50:8e:2f:1e:cd:92:d1:
                    0c:fd:ef:5c:60:40:da:98:03:ec:08:91:02:74:7d:
                    17:0b:1f:66:e1:18:8b:60:46:af:ca:d6:78:4a:73:
                    c6:4a:62:a0:1c:19:67:bd:bb:ec:05:de:43:ef:56:
                    32:2a:c2:e8:7a:90:a8:68:b2:db:b7:b6:ad:bc:e9:
                    c0:b0:e6:d1:be:1c:14:80:de:8c:a2:ce:5d:06:ef:
                    f6:c7:c3:a7:b0:40:18:05:3a:9e:84:50:bf:fd:ba:
                    c4:45:bb:b8:05:c3:77:48:64:0f:bd:26:45:06:ce:
                    ca:78:45:14:7c:66:a2:88:e5:56:e5:35:ea:1a:a3:
                    a1:67:d8:a7:7b:a7:85:29:5f:66:8d:e6:5d:21:af:
                    79:35:9d:99:e9:6d:2f:3e:79:3f:e1:38:2c:3d:f5:
                    9b:39:71:25:be:e6:49:67:50:4c:9d:e7:f3:a0:68:
                    de:5c:d0:d8:16:08:76:91:72:91:6c:3e:f2:a2:08:
                    bc:12:cc:2d:58:5f:87:c2:69:74:8a:64:38:75:d3:
                    bf:5e:67:12:37:b2:0d:47:51:fe:b9:45:cf:c8:2a:
                    c1:58:75:26:67:17:f5:0f:e4:5e:48:7e:4a:e0:80:
                    49:48:65:e9:01:fe:ef:45:29:18:d9:9b:08:0a:3e:
                    ba:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:97:F9:66:77:C1:3B:4F:68:3F:B7:C6:5F:6C:90:0A:FC:B9:EA:1B
            X509v3 Authority Key Identifier:
                keyid:F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:79:98:05:44:e1:16:c3:bd:dc:a0:2c:f9:7f:2b:29:47:0a:
         6a:9f:67:61:0b:01:03:b0:bc:5e:7d:3f:68:a2:72:96:c9:a7:
         5a:24:79:43:ed:cc:ac:0d:ec:4e:cc:a2:05:8f:2f:91:e1:90:
         fe:f9:86:12:75:8f:a4:b9:98:48:94:12:49:e8:d6:57:44:fc:
         59:38:f9:2a:a6:bf:87:08:4c:ed:cd:ec:5c:24:7b:6e:c4:1f:
         61:30:24:c8:07:85:03:ae:57:27:c7:06:b5:94:88:5c:11:7b:
         88:3e:fd:1c:35:a5:f8:3b:ca:f2:fe:72:c7:0d:72:68:84:7b:
         ac:d9:6c:3e:7c:5e:01:5c:85:be:e4:e7:db:bf:54:03:b6:fb:
         d6:13:35:7e:02:b1:b7:a2:f5:79:7f:80:dc:f2:36:36:18:c5:
         a4:95:0d:eb:96:4e:fe:2b:58:7c:54:5a:e0:d1:fb:d9:75:8b:
         0b:66:99:45:97:17:e6:8b:f8:01:a4:d0:f2:9c:29:1c:b4:37:
         1a:fe:1e:59:7d:3c:65:92:1b:04:09:c1:ea:bc:76:d0:1c:76:
         82:07:4c:14:a0:24:06:cf:3e:dd:70:f5:31:49:83:58:4f:71:
         28:e5:fe:67:af:da:e8:b6:b9:26:58:bc:dc:45:9d:ff:4f:0e:
         44:35:8d:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----