Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
File:                     dLJ8XVaEhkhT31uBVyIS7eMizgo.mft (raw, json)
Hash identifier:          xliAWtXN9CWnLCLFJK+B62Uv9CDRirxOttWMduqkBoQ=
Subject key identifier:   27:78:44:F3:C1:2D:33:F9:B6:26:E1:1D:CE:F5:27:75:D6:8E:38:E1
Authority key identifier: 74:B2:7C:5D:56:84:86:48:53:DF:5B:81:57:22:12:ED:E3:22:CE:0A
Certificate issuer:       /CN=74b27c5d5684864853df5b81572212ede322ce0a
Certificate serial:       019880C249DAECC1161A9E5FBE80D130B530
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
Manifest number:          02F2
Signing time:             Wed 06 Aug 2025 19:01:13 +0000
Manifest this update:     Wed 06 Aug 2025 19:01:13 +0000
Manifest next update:     Thu 07 Aug 2025 19:01:13 +0000
Files and hashes:         1: dLJ8XVaEhkhT31uBVyIS7eMizgo.crl (hash: uLVMKYlI5cw0m7ZpVYgBIco29dxGgj/XO8YFre/aMzo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 19:01:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:80:c2:49:da:ec:c1:16:1a:9e:5f:be:80:d1:30:b5:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74b27c5d5684864853df5b81572212ede322ce0a
        Validity
            Not Before: Aug  6 19:01:13 2025 GMT
            Not After : Aug  7 19:01:13 2025 GMT
        Subject: CN=277844f3c12d33f9b626e11dcef52775d68e38e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:aa:63:22:36:41:6b:ea:ea:fa:b6:cd:16:be:
                    06:94:7e:cd:05:4b:ce:7d:9b:18:2a:77:b8:0b:ee:
                    22:20:ac:06:65:fe:be:2d:2e:93:dc:25:ae:c3:ba:
                    dc:b3:88:36:d1:29:23:6a:d2:8e:97:b3:8e:f7:44:
                    72:01:b8:e3:e0:d6:41:b5:2e:d2:dc:cd:a1:05:6f:
                    2d:5f:0e:75:a3:23:77:1d:50:f3:07:d7:78:97:ec:
                    d5:1f:31:b5:39:f8:ae:8b:99:2b:99:73:c4:b7:fc:
                    0e:4a:53:7b:54:ee:43:46:cf:6b:26:52:7d:a4:58:
                    03:ea:6f:5e:fb:55:97:68:ba:25:a2:cc:0a:8d:57:
                    e5:79:6c:f9:d9:2f:52:9d:c0:8e:99:12:48:9f:71:
                    e4:1e:db:43:f5:22:25:d5:d5:cc:0e:9c:05:84:3b:
                    70:4b:c0:07:72:e1:6f:3a:c7:db:73:99:0e:9d:9f:
                    d2:46:1d:03:6c:8b:e7:f7:59:86:de:f5:3b:46:95:
                    50:6d:72:4b:c8:af:0c:b7:ad:2b:37:69:c3:fe:66:
                    fd:f5:bf:b8:e1:fb:47:59:7d:8e:10:66:af:3f:08:
                    3b:3a:a9:f5:82:a5:c0:1f:41:73:1f:6c:f9:cd:34:
                    2c:c7:54:7d:a8:d7:cd:c6:59:65:10:97:76:dc:7e:
                    4a:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:78:44:F3:C1:2D:33:F9:B6:26:E1:1D:CE:F5:27:75:D6:8E:38:E1
            X509v3 Authority Key Identifier:
                keyid:74:B2:7C:5D:56:84:86:48:53:DF:5B:81:57:22:12:ED:E3:22:CE:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:ca:53:10:7c:2c:ee:98:03:08:51:cc:96:35:79:04:41:89:
         04:83:a7:a4:ec:1f:19:ee:2f:ac:63:43:87:de:72:23:2a:08:
         f7:3c:fc:37:8a:bc:34:4d:64:3f:b0:68:69:48:a1:9f:10:b3:
         f3:25:7e:78:c1:1d:fd:5c:5f:17:0d:f1:6d:7f:84:f9:13:ad:
         ce:3e:95:03:7e:a9:1d:50:56:57:ac:9a:2f:8a:79:27:2e:21:
         94:d0:b9:1b:53:c7:99:3e:82:f7:f5:73:fd:4a:6c:65:fb:f4:
         95:68:80:1f:27:60:da:de:b8:19:c2:74:f5:37:55:17:b8:21:
         b4:c2:62:e8:7b:85:58:01:32:8f:e7:f8:26:d1:1c:6d:b9:1a:
         4b:7a:64:7c:38:ad:ff:36:bc:b2:0e:ba:24:9b:d0:0b:50:af:
         14:43:c9:3e:70:28:af:22:ba:ce:f9:22:8c:39:ad:46:c9:31:
         6b:66:fb:b0:c8:a7:c1:93:60:7a:90:fb:b8:31:cb:9f:6c:0a:
         98:18:b1:67:24:89:a2:f2:af:bb:06:8d:2b:f4:16:04:98:b2:
         51:9e:2e:40:b8:c2:11:8b:d7:fd:a5:71:28:e8:2a:d4:5e:6d:
         6b:59:e3:76:ea:57:a0:5b:60:3d:73:d4:2c:56:4a:bd:0b:6d:
         0a:fb:5c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----