Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/9dcbd0-513b-4beb-b065-4e8f5960b19b/1/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.mft
File:                     GEHHfwx5msnCcZ1_jGmCxDFD5Jc.mft (raw, json)
Hash identifier:          E3jJSJ2vF5zvuQgE2hyMZ5llgIjrdhP3Ipt7dtc9rQs=
Subject key identifier:   7F:53:A7:85:C7:78:7B:1E:27:87:BC:43:33:63:A1:BA:FB:74:6B:DD
Authority key identifier: 18:41:C7:7F:0C:79:9A:C9:C2:71:9D:7F:8C:69:82:C4:31:43:E4:97
Certificate issuer:       /CN=1841c77f0c799ac9c2719d7f8c6982c43143e497
Certificate serial:       019882B0DAF7E78031EB2BF1885D522257F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/9dcbd0-513b-4beb-b065-4e8f5960b19b/1/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.mft
Manifest number:          08E6
Signing time:             Thu 07 Aug 2025 04:01:25 +0000
Manifest this update:     Thu 07 Aug 2025 04:01:25 +0000
Manifest next update:     Fri 08 Aug 2025 04:01:25 +0000
Files and hashes:         1: GEHHfwx5msnCcZ1_jGmCxDFD5Jc.crl (hash: cmDFzz5SoDdEqiZZT3Kk+dwsXDKe8mjUzfRAGgIliX4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/9dcbd0-513b-4beb-b065-4e8f5960b19b/1/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/9dcbd0-513b-4beb-b065-4e8f5960b19b/1/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 04:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:82:b0:da:f7:e7:80:31:eb:2b:f1:88:5d:52:22:57:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1841c77f0c799ac9c2719d7f8c6982c43143e497
        Validity
            Not Before: Aug  7 04:01:25 2025 GMT
            Not After : Aug  8 04:01:25 2025 GMT
        Subject: CN=7f53a785c7787b1e2787bc433363a1bafb746bdd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:34:ab:ab:9d:fb:92:69:e2:73:19:da:2f:77:
                    ff:3f:18:ab:30:20:73:b9:2f:a5:c7:4d:16:83:ba:
                    9d:ee:f0:a9:09:2f:f0:38:d1:06:b8:63:d4:9c:82:
                    1a:4c:0c:3c:7c:7c:74:c2:d5:25:ad:ce:2d:ea:e9:
                    2c:59:0f:b4:b2:ff:b1:92:27:77:ad:a8:fb:d2:79:
                    7f:f8:61:91:47:40:ee:38:2c:6f:d7:e1:0b:12:ad:
                    17:59:6c:a1:b9:f1:a2:b5:a7:bf:8b:fa:7b:7d:01:
                    64:98:00:89:40:b7:30:c5:1d:8b:47:cd:c2:0a:26:
                    68:63:a3:ce:ab:91:df:29:43:4f:24:83:8b:ef:01:
                    e5:60:e1:c2:8b:ed:55:43:3d:fd:b0:c4:6d:42:55:
                    20:ee:7d:ec:a6:89:1c:2f:6c:2d:24:1b:c0:55:07:
                    7f:3c:dc:19:fe:c4:91:cd:12:6a:08:46:ba:51:58:
                    4b:44:fd:ce:e7:aa:cf:83:10:4a:99:bb:9b:a4:1a:
                    c9:12:c6:cd:81:80:eb:1a:76:d3:fa:c3:4f:1d:80:
                    03:42:24:f5:26:8e:48:95:fc:b7:03:83:36:4a:fa:
                    7b:7b:cb:c7:40:b0:b3:93:d0:d1:fb:cb:43:b7:8b:
                    e7:03:9b:cb:77:06:c9:ac:85:69:79:85:fd:be:6d:
                    33:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:53:A7:85:C7:78:7B:1E:27:87:BC:43:33:63:A1:BA:FB:74:6B:DD
            X509v3 Authority Key Identifier:
                keyid:18:41:C7:7F:0C:79:9A:C9:C2:71:9D:7F:8C:69:82:C4:31:43:E4:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9dcbd0-513b-4beb-b065-4e8f5960b19b/1/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9dcbd0-513b-4beb-b065-4e8f5960b19b/1/GEHHfwx5msnCcZ1_jGmCxDFD5Jc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:44:51:9c:6a:ff:63:81:70:5c:06:47:e7:e5:c7:d1:f1:2e:
         3f:09:0f:a0:26:7e:fb:83:31:8b:c5:6f:08:19:f6:b5:62:89:
         d5:4d:ff:d4:28:25:79:36:6e:c8:48:96:9f:ea:52:fc:87:ff:
         40:a7:b7:88:6a:4e:1c:4b:22:a3:de:e3:b9:ba:70:07:52:60:
         b7:bf:04:e8:c3:99:24:23:5e:86:73:ef:b6:e5:97:b5:ef:84:
         ca:7f:dd:bc:35:7a:ae:8e:33:13:2b:08:a3:cb:4a:54:3c:d4:
         cb:8a:fc:5e:71:54:74:6c:24:b3:a3:50:5e:62:37:64:51:31:
         54:b7:de:7c:e6:28:5a:db:e3:1c:b0:02:4a:55:98:78:e7:2f:
         80:4d:ea:41:82:ea:9f:47:a1:96:a0:0f:86:ef:b2:3c:0a:2a:
         17:d9:45:a6:11:51:f5:c5:42:69:5a:97:8d:53:3d:20:32:f5:
         96:a9:dd:15:24:f2:3e:cc:32:f7:f0:65:c2:61:a1:97:bc:53:
         7e:89:cf:4f:11:78:98:fd:37:d7:18:1b:2e:ec:d7:59:06:9b:
         bf:4d:f1:97:05:be:ab:79:9a:0e:6d:fc:d1:72:01:2a:f0:c5:
         fb:a8:f6:d5:ba:37:af:2e:79:b1:a4:8e:39:93:16:fd:ed:21:
         9d:97:2c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----