Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
File:                     J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft (raw, json)
Hash identifier:          eu9tdwcu6CsgAT0sYB/aTli+A9VzDK5WByaJzJoW+7Q=
Subject key identifier:   34:12:BF:F4:33:FF:6E:6F:B9:96:26:E3:B3:B6:FF:E2:65:65:D2:6F
Authority key identifier: 27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0
Certificate issuer:       /CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
Certificate serial:       019A4DAACD11280326BD75A2F345E2A43CDE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
Manifest number:          0785
Signing time:             Tue 04 Nov 2025 07:00:30 +0000
Manifest this update:     Tue 04 Nov 2025 07:00:30 +0000
Manifest next update:     Wed 05 Nov 2025 07:00:30 +0000
Files and hashes:         1: J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl (hash: CH/nKfEGp6LITXMOTpkvZrH+QesS9q8+DGOGi9LT1xk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 07:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4d:aa:cd:11:28:03:26:bd:75:a2:f3:45:e2:a4:3c:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
        Validity
            Not Before: Nov  4 07:00:30 2025 GMT
            Not After : Nov  5 07:00:30 2025 GMT
        Subject: CN=3412bff433ff6e6fb99626e3b3b6ffe26565d26f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:2b:e8:cf:b3:40:12:52:dd:8e:09:22:09:48:
                    86:49:78:15:8d:72:24:3c:c7:86:6f:2a:eb:64:ef:
                    f9:a3:c0:12:8c:91:7b:4b:70:24:45:4c:53:b2:d5:
                    ef:6c:94:a1:86:44:1c:24:12:ff:83:af:f6:a4:53:
                    67:1e:51:da:2b:4c:de:09:b7:c2:85:80:c4:c7:99:
                    33:60:90:a9:e5:7f:e6:08:32:5b:f2:61:bf:7a:29:
                    1c:d8:72:f0:e8:44:6a:d5:19:97:82:0c:3b:5b:0a:
                    79:c1:50:23:8d:2a:11:53:0e:86:ae:75:91:25:d0:
                    d9:02:85:ec:8f:89:f4:9a:11:a8:47:e4:82:92:07:
                    6e:52:50:e8:0f:86:e4:6d:9c:17:03:e2:20:88:0b:
                    6b:56:5e:15:92:7a:ff:e1:7e:fa:45:d0:69:e0:d3:
                    ff:82:c9:a6:a7:ba:c6:45:e4:3b:cb:fd:59:f4:77:
                    a4:5f:d2:69:a6:59:89:19:5c:df:48:1b:92:c7:3f:
                    24:d8:12:53:90:f3:65:2d:09:b7:8d:ff:35:de:74:
                    c7:16:73:51:4f:63:37:c0:14:fc:a3:88:33:c0:a6:
                    1d:fe:6e:fc:a2:f8:de:4c:cb:4a:d0:cd:2e:06:dd:
                    95:25:c0:3a:0b:d2:c2:93:ac:85:5d:b6:fd:25:06:
                    e2:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:12:BF:F4:33:FF:6E:6F:B9:96:26:E3:B3:B6:FF:E2:65:65:D2:6F
            X509v3 Authority Key Identifier:
                keyid:27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:e6:67:1b:3d:5f:09:aa:75:51:8e:bd:44:78:34:42:83:b5:
         9e:f1:08:23:79:d3:1b:d3:dd:d5:3e:bb:0e:a6:60:e6:62:b1:
         be:8f:e4:a4:93:60:20:c2:65:88:06:0a:b9:0f:8c:aa:df:55:
         cc:d9:49:25:dc:da:43:a3:4a:54:16:1b:38:d8:a3:08:a0:4f:
         60:1b:37:d2:b4:84:7c:51:2e:93:d7:a3:27:c9:98:19:be:c3:
         81:e5:21:63:4e:94:f1:51:78:ad:f3:be:64:96:ee:c5:61:d1:
         a4:e9:0f:d7:cf:f3:9e:70:32:91:a1:57:2c:1c:6d:06:9f:08:
         2b:7d:8b:46:e5:7c:cc:bd:3f:f6:b1:85:15:89:8e:96:f1:4f:
         8e:a6:ba:ce:ce:b8:4d:38:5d:5d:46:ec:e2:7c:4e:83:96:7f:
         99:e5:b1:b1:87:a2:0a:61:5d:fd:f2:0e:6c:29:a3:63:ac:f2:
         00:ae:0b:f5:2b:42:68:5a:6b:a5:0a:81:67:82:2b:97:dd:db:
         7e:cd:1a:8d:30:58:cf:ba:0a:58:a0:8e:cc:60:74:c7:cb:08:
         e3:33:fa:cf:56:b2:bd:09:44:f9:21:d9:d5:dd:fd:8f:54:3c:
         e9:1d:a6:4f:3d:0b:f4:17:f7:34:6f:2b:e5:8e:7b:f8:4d:21:
         85:0f:63:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----