Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft
File:                     4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft (raw, json)
Hash identifier:          xNLK+L1kkIX9GOPg30yL8kXNrAcapQB0itkKoR3mEpk=
Subject key identifier:   3E:33:F4:48:90:1A:EE:28:96:0E:42:B1:F4:04:B7:B2:87:6E:2C:08
Authority key identifier: E1:F4:3F:3E:61:99:0F:D3:E5:76:7D:EB:E9:8E:51:CC:19:CA:C7:08
Certificate issuer:       /CN=e1f43f3e61990fd3e5767debe98e51cc19cac708
Certificate serial:       01987E2EF38F002866A6ED24F2DAC78AE737
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft
Manifest number:          04D6
Signing time:             Wed 06 Aug 2025 07:01:02 +0000
Manifest this update:     Wed 06 Aug 2025 07:01:02 +0000
Manifest next update:     Thu 07 Aug 2025 07:01:02 +0000
Files and hashes:         1: 4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.crl (hash: ybWCO9gCfFOvMaqSNEoqS8G07zWtHz25Yk2JeXsleA4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 07:01:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7e:2e:f3:8f:00:28:66:a6:ed:24:f2:da:c7:8a:e7:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e1f43f3e61990fd3e5767debe98e51cc19cac708
        Validity
            Not Before: Aug  6 07:01:02 2025 GMT
            Not After : Aug  7 07:01:02 2025 GMT
        Subject: CN=3e33f448901aee28960e42b1f404b7b2876e2c08
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:23:14:00:02:6d:32:c1:4d:13:f2:8a:53:a5:
                    9b:c0:ab:50:86:7b:63:3a:4c:3e:0a:12:c2:ff:47:
                    37:e9:f8:5e:d9:8e:99:8a:cd:49:77:cf:05:87:cf:
                    28:4c:55:2d:e2:ee:0f:02:d6:c8:d7:13:38:68:38:
                    f3:32:7b:17:32:26:84:e0:e8:23:13:3a:0c:7a:3b:
                    3e:ea:4d:50:b3:a7:2f:e1:fd:ec:de:29:e4:b2:2c:
                    ea:42:31:e6:1d:f4:a8:6a:93:c6:d0:1d:a6:de:f2:
                    29:a5:fb:bc:d3:ac:0b:cd:9c:a4:2d:95:70:bb:17:
                    e0:e9:16:77:0e:0a:e9:7a:8e:8a:46:ae:49:ca:27:
                    ed:8c:f9:1c:1a:99:c5:cd:67:cc:b3:2e:5e:61:c1:
                    8e:b8:d9:b5:89:4d:bd:0e:c3:dc:71:c3:ee:af:33:
                    8a:9e:85:9c:17:2e:58:70:a8:07:3d:de:d3:03:92:
                    19:98:92:37:3b:16:a6:91:c5:4d:81:b1:34:10:bc:
                    25:6c:a8:b4:39:76:fd:a6:26:68:49:42:c5:c9:af:
                    43:11:87:87:99:86:a6:d0:ef:45:f5:41:1f:5a:dc:
                    8c:b6:24:f1:4d:00:a7:87:f9:97:b0:58:40:2e:cb:
                    2b:19:d2:76:d2:c4:e7:96:86:83:0d:01:f1:28:db:
                    77:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:33:F4:48:90:1A:EE:28:96:0E:42:B1:F4:04:B7:B2:87:6E:2C:08
            X509v3 Authority Key Identifier:
                keyid:E1:F4:3F:3E:61:99:0F:D3:E5:76:7D:EB:E9:8E:51:CC:19:CA:C7:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d5383b-10e5-43e9-b320-3234160dbcd4/1/4fQ_PmGZD9Pldn3r6Y5RzBnKxwg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:27:c9:3e:d0:7e:89:ad:c3:47:ed:60:5e:c3:d1:16:9f:92:
         4a:c8:59:db:08:2c:13:eb:3d:0c:7f:28:50:e6:a2:25:71:e4:
         58:96:71:dd:b6:07:9d:a5:1d:83:80:b4:ca:77:d7:70:2e:30:
         78:c6:b9:b2:dd:9f:aa:c0:47:5f:69:87:d8:6b:2f:aa:9e:5a:
         8e:e9:de:20:ce:6a:87:c0:1c:dc:de:fa:74:87:7d:1b:d4:1b:
         ec:55:7c:c4:dd:4c:b8:9d:3d:33:bb:01:fc:05:c0:d6:67:a5:
         3b:1b:d7:58:1a:e0:8e:f5:8a:64:1a:bd:f0:e6:35:8e:60:0c:
         39:65:5c:b6:af:b1:6e:15:61:54:ea:75:c7:91:06:48:ac:32:
         60:50:4c:63:5c:62:37:3a:51:a2:e9:16:cd:d5:fe:f7:73:69:
         20:cc:e6:61:b6:38:a9:78:4b:91:b4:b7:da:0c:55:b3:12:2b:
         91:cc:5d:f4:4c:32:3b:e8:73:83:fd:b5:f2:b0:d5:13:db:30:
         39:d9:e8:2c:00:b6:91:1b:0e:05:48:03:35:71:52:06:0b:34:
         9d:a0:c4:88:f1:74:c4:34:53:dc:d6:60:3a:95:76:80:88:1c:
         3b:c6:ca:43:d0:7a:f0:a4:6a:65:b5:17:89:dd:9d:c8:4a:fe:
         5c:8e:2a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----