Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
File:                     pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json)
Hash identifier:          n98uT5nHpgCgHAjIPa5e1fCsewJHed2rCivFo5WxVMg=
Subject key identifier:   F1:68:35:F8:C2:95:5C:68:21:DE:88:E0:09:0F:3A:70:81:17:E1:70
Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92
Certificate issuer:       /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
Certificate serial:       01987D8B2B6FADDBABAA02F4E513DC5FE9E5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
Manifest number:          1119
Signing time:             Wed 06 Aug 2025 04:02:09 +0000
Manifest this update:     Wed 06 Aug 2025 04:02:09 +0000
Manifest next update:     Thu 07 Aug 2025 04:02:09 +0000
Files and hashes:         1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: w8xU6eUhNJxliijrG2X0mXo5rLu3wN/S2OFr3UzGjsw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 04:02:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7d:8b:2b:6f:ad:db:ab:aa:02:f4:e5:13:dc:5f:e9:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
        Validity
            Not Before: Aug  6 04:02:09 2025 GMT
            Not After : Aug  7 04:02:09 2025 GMT
        Subject: CN=f16835f8c2955c6821de88e0090f3a708117e170
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:cf:64:2c:6b:fb:e4:73:b5:c3:0c:d3:37:1f:
                    32:68:c1:32:df:4d:bc:94:62:5b:85:ed:19:5a:07:
                    c7:09:51:73:4e:f9:2b:48:a6:09:31:e2:e7:9c:c3:
                    e2:83:f1:c3:27:75:10:3a:cd:9d:f4:02:c5:84:a3:
                    e2:64:00:58:ac:56:88:c5:95:b8:6f:27:2f:22:13:
                    03:01:66:70:f8:99:30:17:d8:51:a2:c6:ac:99:74:
                    e0:16:db:32:21:ae:9a:ce:b1:45:44:29:07:1c:93:
                    b2:50:8a:90:59:98:b2:2e:50:07:94:dc:cd:50:3e:
                    ef:8c:5b:95:ac:cd:de:32:0f:91:55:8d:bc:8c:7d:
                    63:7c:65:f4:d4:b3:eb:d1:14:bb:58:0b:c2:70:25:
                    ef:16:c9:b0:f4:11:2a:de:11:41:b8:d3:68:45:e1:
                    35:44:c6:fd:de:36:8d:e8:fa:c3:2d:18:b1:5c:88:
                    23:6c:10:40:2a:d8:2b:23:b4:dd:0e:97:a9:fa:f9:
                    73:67:a8:68:15:d6:71:2e:34:d3:6c:59:84:b1:af:
                    9d:d8:35:56:b4:86:32:1b:f6:92:7d:78:51:cd:8d:
                    76:13:13:6f:1a:86:db:ec:78:d5:75:e2:b5:9d:46:
                    8a:9b:20:0f:f2:86:7d:0a:9f:6c:51:4c:c5:10:8e:
                    1e:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:68:35:F8:C2:95:5C:68:21:DE:88:E0:09:0F:3A:70:81:17:E1:70
            X509v3 Authority Key Identifier:
                keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:ff:87:25:37:19:8c:44:ce:27:1d:2d:b5:e5:57:c8:a9:0a:
         04:38:ec:cd:b7:74:2b:fe:cc:e3:2f:0c:a5:c6:2f:2b:f3:a2:
         ad:f5:36:71:9d:17:c4:e0:a1:c4:d3:61:e7:b8:82:c2:1f:e3:
         d4:87:6e:b7:fb:e6:6a:ac:c0:a3:34:e9:0e:81:61:b1:22:96:
         a5:3c:c2:40:af:51:0e:3c:05:b6:46:3d:33:2c:95:e5:76:81:
         62:23:1d:25:3f:a4:00:a6:01:3f:d7:2c:01:ec:d9:ed:4b:0b:
         cd:64:8b:07:ee:83:ab:10:2a:06:60:da:0c:08:ff:94:07:9d:
         7e:a4:95:4f:17:d6:c4:76:af:4c:b1:ef:c7:1a:e8:dd:b9:9b:
         1c:24:e4:cf:17:56:5a:85:6e:28:29:51:4c:22:da:e4:c8:86:
         35:4b:35:b1:a9:91:39:16:8b:83:ff:94:45:c2:8c:5c:b8:47:
         ce:9e:11:bf:68:99:4f:00:ac:02:f5:94:2d:39:62:09:5a:7a:
         a6:4f:46:c9:fc:6b:79:c9:6e:d0:ba:f3:0e:02:ec:3f:0a:db:
         60:ba:84:1c:f1:7f:44:2b:85:08:fc:96:07:7e:e7:81:31:aa:
         f0:e6:a8:76:66:45:8f:29:8d:29:c6:64:f5:8f:68:fd:60:23:
         b7:04:f3:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----