Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
File:                     XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft (raw, json)
Hash identifier:          B4zPRV94/1u15ZXF7sJ1yGs7hZ8tf0+YCustu+4cuP4=
Subject key identifier:   62:B7:5B:B5:B8:E3:16:F4:6E:19:A5:1A:5E:8E:FC:30:6A:3D:4C:06
Authority key identifier: 5E:52:14:15:8A:F3:10:FF:A9:C3:15:29:83:43:F4:C3:E6:6A:EC:9A
Certificate issuer:       /CN=5e5214158af310ffa9c315298343f4c3e66aec9a
Certificate serial:       01988F5A2FDF73B9AD24C582BAA7BD17C63A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
Manifest number:          0671
Signing time:             Sat 09 Aug 2025 15:01:48 +0000
Manifest this update:     Sat 09 Aug 2025 15:01:48 +0000
Manifest next update:     Sun 10 Aug 2025 15:01:48 +0000
Files and hashes:         1: XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl (hash: MNJKCxGM4VoKN112wf2/jr5QzH+M058tBCAR8c7MATQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 14:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8f:5a:2f:df:73:b9:ad:24:c5:82:ba:a7:bd:17:c6:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e5214158af310ffa9c315298343f4c3e66aec9a
        Validity
            Not Before: Aug  9 15:01:48 2025 GMT
            Not After : Aug 10 15:01:48 2025 GMT
        Subject: CN=62b75bb5b8e316f46e19a51a5e8efc306a3d4c06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:50:9a:38:7a:d8:26:a6:a2:8d:60:be:38:f6:
                    5b:ba:94:0f:93:76:96:90:82:e3:f6:3b:cf:67:3a:
                    a3:3c:53:80:11:70:d0:dd:d0:ef:c5:dd:53:e8:e2:
                    ff:45:fb:12:5e:57:02:ac:8b:05:52:e3:5a:c7:34:
                    1e:4d:8d:b4:f1:8a:8e:9f:ec:0c:3b:51:41:b6:17:
                    8d:1f:90:63:75:87:46:c3:eb:f0:2d:e4:96:10:a3:
                    8f:2c:25:94:ea:ba:3a:27:9f:a7:66:03:64:ba:5e:
                    3d:b6:a5:6e:85:ba:b4:01:7c:c6:15:24:bf:a5:37:
                    fb:e0:d7:2f:45:e7:d6:ae:3c:5e:7b:b3:7a:df:82:
                    76:01:38:b2:1d:56:e5:58:82:5a:a8:b0:0b:4a:3f:
                    2a:2a:6e:9b:3a:3b:18:f5:6f:07:c7:53:04:ca:d8:
                    3f:03:c2:0c:ae:be:a4:90:73:31:1d:38:d5:54:5a:
                    1e:be:57:1f:69:18:da:4c:08:91:fa:38:20:ec:b0:
                    5b:cd:8d:95:50:46:73:86:60:fd:25:ef:bf:f3:4d:
                    9a:b2:61:4c:5a:10:1c:6d:03:b0:94:ff:d4:04:61:
                    bc:cc:7d:43:fc:4a:45:d4:da:47:89:90:8f:16:a4:
                    de:da:d8:df:91:90:72:69:b9:d0:f3:94:6f:89:b9:
                    27:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:B7:5B:B5:B8:E3:16:F4:6E:19:A5:1A:5E:8E:FC:30:6A:3D:4C:06
            X509v3 Authority Key Identifier:
                keyid:5E:52:14:15:8A:F3:10:FF:A9:C3:15:29:83:43:F4:C3:E6:6A:EC:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:ed:12:59:1c:83:87:60:96:d5:9a:e5:24:b0:ff:25:83:63:
         0e:24:31:85:5b:35:1e:de:59:a7:47:3f:e6:7a:98:96:04:30:
         1e:bb:b0:67:09:c7:b7:6c:b2:e4:3d:15:18:b9:26:88:76:a4:
         da:fd:ba:57:0d:f5:d7:89:c6:ca:67:1d:b5:0f:fc:77:c1:5f:
         e6:bf:ce:55:4a:d1:30:d9:05:e8:d4:89:9b:47:67:ec:22:dd:
         c7:29:73:1a:29:08:c5:7c:65:f4:35:f8:d4:77:f0:a6:31:94:
         1c:7e:50:ae:2c:05:83:c5:b1:ad:2a:33:ca:86:92:8d:07:07:
         6e:3e:0b:91:31:8e:31:fc:ba:2d:3f:ef:2c:52:44:43:df:b0:
         dd:19:db:93:d2:0f:16:7a:fd:09:a4:7c:cc:e1:a6:d3:65:be:
         9d:c4:5f:88:58:9d:c0:4f:cb:e4:ce:02:3c:9d:15:a9:34:90:
         47:05:8d:e3:fe:76:ce:56:d0:7b:a3:0c:57:14:a4:6f:a0:d8:
         2c:a9:40:60:6b:97:b0:aa:09:81:ae:98:62:b3:3f:46:67:46:
         6f:fb:f4:97:54:7e:90:b1:5f:04:5b:2d:c9:29:69:16:ce:8f:
         7b:8f:54:da:3d:de:86:93:f6:38:8a:e6:e2:09:10:68:47:90:
         46:8e:81:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----