Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
File:                     FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft (raw, json)
Hash identifier:          r7zrrm4Cq06MGs1E33ksZSvUTBew430GzNaLQoJff4U=
Subject key identifier:   37:CF:A9:1C:FB:5F:38:2E:15:62:DC:B9:47:EE:07:C4:E8:EC:A1:C7
Authority key identifier: 14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A
Certificate issuer:       /CN=14c2eab6a2960506046a1da4312773d98e97cd5a
Certificate serial:       01987B9D7DA853BEC6CE2C6D7609455E401E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
Manifest number:          0ABD
Signing time:             Tue 05 Aug 2025 19:02:55 +0000
Manifest this update:     Tue 05 Aug 2025 19:02:55 +0000
Manifest next update:     Wed 06 Aug 2025 19:02:55 +0000
Files and hashes:         1: FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl (hash: rcpbJG5Kd/PfSgIxoGEsoQjX8N8SV1utZi4hDebKjGc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 14:37:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7b:9d:7d:a8:53:be:c6:ce:2c:6d:76:09:45:5e:40:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14c2eab6a2960506046a1da4312773d98e97cd5a
        Validity
            Not Before: Aug  5 19:02:55 2025 GMT
            Not After : Aug  6 19:02:55 2025 GMT
        Subject: CN=37cfa91cfb5f382e1562dcb947ee07c4e8eca1c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:26:22:d1:75:a7:65:fd:36:24:7a:24:3f:cd:
                    78:cc:74:1c:75:83:38:fc:33:5b:e5:9b:eb:c5:f6:
                    89:7e:1a:8b:e2:70:f4:a2:8a:e3:2b:0e:cc:be:db:
                    92:00:5e:21:90:64:2f:c2:95:93:93:79:8c:ee:e9:
                    0b:7e:d5:0f:8a:71:b6:ff:ca:d1:2f:af:8a:c5:9f:
                    f4:77:5f:f0:b5:f2:7d:bd:07:b6:82:8e:8d:68:58:
                    00:b1:55:b2:3d:db:5c:e3:49:5b:12:26:2c:9a:c1:
                    d8:a2:fe:49:70:22:8c:af:36:4b:76:58:42:3e:24:
                    15:19:37:8f:a4:ae:43:0f:c2:7c:39:bd:ab:2e:97:
                    15:b5:85:07:f6:84:87:9f:cf:fd:3b:ca:47:c0:e6:
                    55:55:fc:32:7c:58:c6:47:1b:a0:0f:18:c1:ae:42:
                    06:aa:97:53:db:56:e6:7e:38:a4:87:fb:e2:84:51:
                    38:09:3e:65:25:99:23:b9:57:98:f5:1c:df:4d:07:
                    eb:36:4e:6e:b7:a1:4f:db:03:38:cf:13:97:31:e9:
                    22:ae:77:05:d5:a4:c8:81:41:da:e9:f4:f0:06:88:
                    60:fd:a3:2d:31:97:ff:8b:9f:18:40:6b:56:1e:5b:
                    8c:23:90:d2:37:f0:98:bb:f6:dc:72:77:33:d5:37:
                    bd:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:CF:A9:1C:FB:5F:38:2E:15:62:DC:B9:47:EE:07:C4:E8:EC:A1:C7
            X509v3 Authority Key Identifier:
                keyid:14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:58:44:dc:4e:b1:d1:a1:a9:0d:21:b3:bc:7d:2f:f7:25:c8:
         b9:bb:12:8a:0a:69:cb:78:b2:29:ad:a4:3c:25:f0:c0:79:dd:
         3e:0a:23:5a:b9:fc:0e:71:0c:52:e2:27:89:fe:c0:09:71:a8:
         1c:61:b8:79:a9:07:b8:16:e4:d1:0d:a7:f1:d2:4a:d6:19:9f:
         ac:a4:08:04:e0:03:a3:91:81:5b:1e:6b:e7:60:a4:21:f9:07:
         0d:e4:59:03:f8:da:63:c1:1a:60:62:2c:45:df:80:22:31:ee:
         22:f4:fa:d6:a8:ca:44:88:64:1f:eb:83:b5:0d:4c:96:bf:2a:
         75:d5:01:44:e4:69:6a:34:40:20:38:a4:c0:e5:0c:0c:bc:a0:
         23:02:76:2d:70:7f:0d:05:1c:af:07:5d:19:f8:de:57:e1:c0:
         56:22:ec:48:39:f6:1a:78:94:38:71:d9:a1:49:52:c6:28:55:
         89:8f:ef:6b:1c:18:5b:08:68:7d:19:12:59:3b:18:96:26:65:
         6e:07:3a:f2:53:0d:3c:ed:e9:c4:d8:9a:4b:44:5b:e9:14:26:
         93:3c:31:37:51:b7:37:ff:3a:06:98:04:55:dc:97:5e:0d:e6:
         17:fc:35:eb:a4:b8:98:81:75:8e:40:a6:42:d9:92:a3:19:2e:
         d0:d7:33:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----