Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft
File:                     n7jb0z1dO8T6Nknt9_kU6uejiF0.mft (raw, json)
Hash identifier:          pJ5ifoErldjwcZ910/RSkNJ83Dc6UDE4ddghEsLD/CY=
Subject key identifier:   16:FB:2B:EB:C7:0D:76:94:6B:33:65:2B:70:8A:D8:A7:9D:17:A9:96
Authority key identifier: 9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D
Certificate issuer:       /CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d
Certificate serial:       019896A5D00F9629CD08015ED0B1D89A131F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft
Manifest number:          039D
Signing time:             Mon 11 Aug 2025 01:01:45 +0000
Manifest this update:     Mon 11 Aug 2025 01:01:45 +0000
Manifest next update:     Tue 12 Aug 2025 01:01:45 +0000
Files and hashes:         1: n7jb0z1dO8T6Nknt9_kU6uejiF0.crl (hash: tYw8LDH0pkksOKoBH1I+AR6eHsUkXwHPsmTqyZbC7ug=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 12 Aug 2025 01:01:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:96:a5:d0:0f:96:29:cd:08:01:5e:d0:b1:d8:9a:13:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d
        Validity
            Not Before: Aug 11 01:01:45 2025 GMT
            Not After : Aug 12 01:01:45 2025 GMT
        Subject: CN=16fb2bebc70d76946b33652b708ad8a79d17a996
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:21:eb:80:2e:7f:a0:4d:40:aa:17:98:d0:ce:
                    d0:e5:08:11:28:c9:42:8b:9d:71:3a:fb:ce:ef:06:
                    d2:35:2c:ef:5c:c8:96:f2:cf:1d:34:9c:e0:7e:94:
                    bd:ee:e1:72:9a:9a:5b:61:f3:c3:0e:b8:30:a7:a2:
                    52:5f:e5:62:dc:1d:73:11:67:78:cd:ef:e6:ac:03:
                    cb:09:3c:93:b8:68:e8:86:f8:25:22:f0:e1:57:41:
                    42:d3:0a:b8:2a:81:d7:32:bf:a6:52:e1:a2:bf:79:
                    de:d0:a5:da:ee:28:98:f3:7f:c1:aa:46:f5:90:a7:
                    d6:14:bd:57:f7:bf:82:90:8f:01:e7:88:d0:76:0f:
                    2c:75:61:87:79:d9:44:a6:9d:e6:8c:ad:50:80:8e:
                    12:e8:4b:5a:61:69:c6:5a:3f:94:64:0a:49:25:b6:
                    0c:b1:0a:ae:7c:a3:e1:08:5d:b0:57:ce:7f:45:2e:
                    71:20:d8:9a:73:45:95:5a:cf:4e:46:0b:07:88:a8:
                    c0:e4:14:07:ce:99:a1:fa:92:6f:99:c4:cf:0c:75:
                    a4:4b:74:b8:00:9f:db:46:db:3c:bd:74:b2:be:68:
                    d7:76:29:2b:66:1c:d6:47:a8:da:e8:44:32:de:64:
                    78:c6:ca:09:7d:8b:a5:26:22:6f:b0:b5:4e:e0:aa:
                    b6:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:FB:2B:EB:C7:0D:76:94:6B:33:65:2B:70:8A:D8:A7:9D:17:A9:96
            X509v3 Authority Key Identifier:
                keyid:9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:0e:f8:9e:fc:e8:85:93:07:9a:27:af:f8:61:14:19:b3:8b:
         ba:b4:54:5a:bf:7c:e0:f9:92:55:02:51:41:f9:24:eb:37:3d:
         f5:46:1a:51:0c:d8:fe:48:57:03:3b:08:cd:9a:43:95:38:45:
         8b:18:23:49:86:06:2c:1c:27:3a:c6:32:3c:5c:a1:ff:0c:24:
         20:64:91:92:32:ec:5b:4a:0d:11:20:6d:14:83:ea:e0:fa:b7:
         d7:c1:e0:14:c9:2f:32:3a:fb:47:2f:ab:8d:b9:f1:22:82:b5:
         b2:65:9a:57:a2:d3:4e:47:50:07:98:dd:65:38:c2:22:e2:ee:
         15:b8:95:9f:20:9d:20:7a:db:89:d2:44:89:a0:33:80:2e:77:
         dd:a5:9f:de:31:06:7d:9a:c3:8c:98:3a:3e:bc:7b:ee:1d:c3:
         72:e2:24:8d:75:1a:8c:a8:68:f6:60:4e:18:ac:af:01:4f:04:
         00:00:f4:4c:4f:cd:a4:eb:6a:fc:05:5e:51:96:a3:2e:9c:44:
         40:ab:6a:05:92:8a:a6:89:a0:cf:4d:ec:ed:aa:26:bf:ee:9c:
         82:70:eb:79:31:e2:d8:24:16:33:7f:e7:23:39:3e:3d:51:72:
         88:64:b2:51:e0:b4:09:04:4d:da:41:b2:77:31:c0:92:63:20:
         f6:ba:cd:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----