Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
File:                     Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft (raw, json)
Hash identifier:          pnZcLFrx24hdvHMuPyYqM7/qw10DmajDbAqcSbuatlo=
Subject key identifier:   6D:1E:A4:80:4C:7F:3C:7E:23:51:CE:47:2F:ED:27:BC:CA:D0:2E:82
Authority key identifier: 4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
Certificate issuer:       /CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Certificate serial:       0198729870796C682F19CC061EB77D411FA2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
Manifest number:          1615
Signing time:             Mon 04 Aug 2025 01:00:49 +0000
Manifest this update:     Mon 04 Aug 2025 01:00:49 +0000
Manifest next update:     Tue 05 Aug 2025 01:00:49 +0000
Files and hashes:         1: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl (hash: egyvrxaufHtUrj6oWzhKvdA3EA0gDW4CNIIbT6XnX60=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 01:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:98:70:79:6c:68:2f:19:cc:06:1e:b7:7d:41:1f:a2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
        Validity
            Not Before: Aug  4 01:00:49 2025 GMT
            Not After : Aug  5 01:00:49 2025 GMT
        Subject: CN=6d1ea4804c7f3c7e2351ce472fed27bccad02e82
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:46:00:a2:18:d0:aa:1e:ef:ca:df:a3:b8:01:
                    d5:da:39:cd:45:ac:cf:31:69:b8:cf:13:a0:98:56:
                    8d:1e:f8:01:fd:c6:dc:69:29:59:64:68:e3:c2:18:
                    4d:75:ff:c9:5a:18:9b:1c:8b:2b:b3:71:32:b7:9d:
                    1b:11:f6:c4:d9:3c:ce:98:5c:d8:1c:bc:39:c8:d1:
                    af:18:17:a7:2c:99:d4:9c:02:e3:bc:fb:c0:e4:df:
                    4f:6e:7d:f5:fe:e6:db:cb:88:8b:97:3b:7e:66:54:
                    89:e8:65:1c:6b:7a:ae:bc:e5:f5:b2:3f:ca:82:62:
                    77:87:12:64:64:91:e1:9c:6b:90:34:85:1c:99:24:
                    94:ba:1a:c3:6d:d4:df:d0:22:35:07:68:31:4f:ba:
                    38:bd:9d:ae:c3:d3:63:70:23:65:d6:d0:e0:6f:28:
                    89:87:5d:c6:b5:d1:79:07:7f:be:e6:c0:3f:5c:e5:
                    74:a3:c0:a6:d8:b6:4c:50:8c:f5:c0:02:0b:1f:f4:
                    cf:7a:16:fc:3d:35:dd:0f:f5:20:b7:47:c6:29:63:
                    36:0f:e8:49:5e:ed:62:c2:3d:7e:6e:83:b1:9b:2b:
                    fd:d7:67:e5:78:a5:4c:d3:dd:e8:a5:df:d2:b2:f0:
                    87:d5:3b:ca:0e:73:ec:4e:78:eb:22:16:94:10:a6:
                    6d:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:1E:A4:80:4C:7F:3C:7E:23:51:CE:47:2F:ED:27:BC:CA:D0:2E:82
            X509v3 Authority Key Identifier:
                keyid:4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:f7:e2:6c:1c:f3:2a:eb:3c:9f:bc:49:c8:1e:f4:0c:f2:e1:
         0a:2a:48:20:f4:aa:21:cc:54:21:59:94:72:f5:42:d3:82:8e:
         24:d8:33:66:d8:81:72:94:b9:20:34:c0:aa:2a:62:b6:ec:52:
         41:50:04:11:9d:d7:80:24:66:b7:8d:94:c2:33:98:b7:d3:9e:
         9e:fd:e7:36:30:bb:3e:ed:1c:9e:3f:ec:16:86:fd:e6:78:23:
         c6:bf:95:47:fe:ef:a7:03:55:d4:ae:2e:f6:4b:03:4a:fa:3e:
         bf:3f:da:89:0c:32:7c:a4:20:45:c9:57:4b:37:8a:f7:10:e6:
         a3:11:b9:1a:c7:6b:15:9c:75:3e:a3:af:de:0e:e0:be:e0:3d:
         d7:f5:9f:ce:cc:ad:3f:3e:e9:eb:71:bc:2f:4e:af:83:92:4e:
         c2:43:d2:7b:0a:c7:5c:b3:3d:24:a4:4a:cb:ec:e0:0e:3b:f0:
         db:5b:22:ff:57:c6:b8:c8:40:cf:c0:c3:ec:78:65:5c:e5:f8:
         f3:29:aa:60:2d:c7:48:ea:c3:e1:ff:91:9e:47:1a:44:8b:38:
         11:01:8d:8f:f1:84:46:7a:71:55:f6:b8:a2:6e:b6:74:2c:92:
         18:59:a9:96:98:01:9d:a4:a0:db:a2:78:a2:c6:7f:dd:2f:15:
         e3:e7:aa:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----