Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft
File:                     Rii90MjhtQTSlPijkEyNV65jg_Q.mft (raw, json)
Hash identifier:          e/wWBHs9GVhslUVz+L32P+Lg3uEz+A25+D8L1XoXHK8=
Subject key identifier:   1E:81:EF:6B:91:60:82:D7:D8:CE:56:10:55:AF:F7:17:5E:9C:CE:E7
Authority key identifier: 46:28:BD:D0:C8:E1:B5:04:D2:94:F8:A3:90:4C:8D:57:AE:63:83:F4
Certificate issuer:       /CN=4628bdd0c8e1b504d294f8a3904c8d57ae6383f4
Certificate serial:       01987D8B49BBC25AD69BEE1E47573A2E7706
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Rii90MjhtQTSlPijkEyNV65jg_Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft
Manifest number:          1618
Signing time:             Wed 06 Aug 2025 04:02:16 +0000
Manifest this update:     Wed 06 Aug 2025 04:02:16 +0000
Manifest next update:     Thu 07 Aug 2025 04:02:16 +0000
Files and hashes:         1: Rii90MjhtQTSlPijkEyNV65jg_Q.crl (hash: UNhwpH3qlWUYZOlV4Z/N4j6v8BrABBZUNhmSRb0BuwI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Rii90MjhtQTSlPijkEyNV65jg_Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 04:02:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7d:8b:49:bb:c2:5a:d6:9b:ee:1e:47:57:3a:2e:77:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4628bdd0c8e1b504d294f8a3904c8d57ae6383f4
        Validity
            Not Before: Aug  6 04:02:16 2025 GMT
            Not After : Aug  7 04:02:16 2025 GMT
        Subject: CN=1e81ef6b916082d7d8ce561055aff7175e9ccee7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:b9:66:1d:7f:2a:eb:83:b9:01:d2:9e:1d:d8:
                    54:35:24:06:bb:f6:40:b2:ff:4a:34:b7:63:3d:fb:
                    c6:ea:56:45:ac:30:6b:50:0f:e0:2f:3e:3a:75:92:
                    31:31:63:53:d3:45:07:d5:12:b7:e9:00:43:15:6e:
                    3f:4c:d9:5a:10:33:1b:75:6d:30:7f:ae:48:fc:94:
                    91:9b:24:38:00:c8:69:88:72:01:8e:1e:3c:4a:be:
                    48:82:13:89:19:85:1e:fa:9b:2d:59:5f:39:af:85:
                    1d:65:f9:7b:08:63:a4:43:ff:0d:53:1d:28:0e:ef:
                    99:73:97:c6:b6:c1:05:77:64:94:fd:f7:aa:77:c5:
                    e5:e8:14:3f:ce:46:41:e3:a2:45:ff:be:9a:69:ab:
                    4a:61:e9:29:4e:9a:5f:84:b2:ec:62:a3:23:cc:55:
                    5a:1c:43:eb:1e:f6:4a:d5:75:17:ee:ec:5f:b4:69:
                    71:7c:ae:76:d2:31:bf:ca:db:3e:c5:e8:81:85:18:
                    e5:38:86:e2:0a:dd:e0:30:23:af:30:17:0c:c9:49:
                    ac:00:4f:2e:73:ce:9e:c8:50:e1:ad:19:f5:5b:0e:
                    04:6e:29:0c:b3:06:f4:b9:04:71:d8:85:b8:38:ba:
                    13:ee:3c:42:de:0f:01:a9:f9:b7:4d:51:e9:82:d2:
                    0a:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:81:EF:6B:91:60:82:D7:D8:CE:56:10:55:AF:F7:17:5E:9C:CE:E7
            X509v3 Authority Key Identifier:
                keyid:46:28:BD:D0:C8:E1:B5:04:D2:94:F8:A3:90:4C:8D:57:AE:63:83:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rii90MjhtQTSlPijkEyNV65jg_Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:57:7a:d2:c7:76:49:9f:fd:b8:4e:b2:42:18:fe:e4:f8:fc:
         1b:4e:9b:5e:96:f8:9f:b3:84:d5:f3:18:57:fe:74:48:36:f5:
         10:c9:bb:4d:66:21:f4:53:15:c4:a4:d2:63:84:96:1b:12:ff:
         90:c1:b4:ea:f1:43:45:f2:da:08:7b:7f:e5:a9:cb:9e:a0:51:
         5e:10:3e:3b:01:3e:d4:01:9c:b9:86:75:c2:b0:40:ab:55:37:
         3f:f3:ee:52:04:9c:be:8b:e9:d8:d9:6b:2d:45:11:60:eb:19:
         6c:3c:1c:3b:b3:c1:e0:a0:cd:40:f7:d0:83:89:25:24:e3:3d:
         ea:f9:b7:fc:96:ab:80:00:2a:b7:e7:f5:f2:e2:a2:02:bd:98:
         68:63:41:9f:fc:03:6e:42:a1:ad:95:f7:33:4e:a8:04:d2:1d:
         3d:ee:cd:15:77:00:2d:41:63:a4:ac:bd:9f:f7:bb:4c:99:41:
         1b:3e:90:33:9f:09:59:d4:9f:2f:c3:eb:82:3c:f2:5c:f2:f7:
         27:54:c3:b2:d4:aa:92:4f:5b:57:dc:32:35:df:0e:e0:77:ec:
         33:dc:5d:6a:56:43:b5:e1:72:63:f3:0e:c6:26:a7:a5:a0:74:
         fc:e0:ae:0b:f9:a1:af:9c:dc:72:50:12:67:c4:8f:54:47:b2:
         88:89:ea:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----