Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
File:                     1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft (raw, json)
Hash identifier:          B9uVRHKlwfyMnqXEhJC5XAtid9U+kxN95iUYn8eCuXM=
Subject key identifier:   2C:91:9C:64:78:92:65:75:A6:FF:B7:C3:C4:C8:D4:B1:DD:B6:EA:8D
Authority key identifier: D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98
Certificate issuer:       /CN=d66dde950da56f1203327e50e2b395c402251798
Certificate serial:       019892C95CDC071B82C1A39A2CEAE2CB7BB0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
Manifest number:          1624
Signing time:             Sun 10 Aug 2025 07:02:06 +0000
Manifest this update:     Sun 10 Aug 2025 07:02:06 +0000
Manifest next update:     Mon 11 Aug 2025 07:02:06 +0000
Files and hashes:         1: 1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl (hash: jSEG8OYwYsDWo5bhrgPAvOWAHwgQl+I3Ocbs9jIZRxs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 07:02:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:c9:5c:dc:07:1b:82:c1:a3:9a:2c:ea:e2:cb:7b:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d66dde950da56f1203327e50e2b395c402251798
        Validity
            Not Before: Aug 10 07:02:06 2025 GMT
            Not After : Aug 11 07:02:06 2025 GMT
        Subject: CN=2c919c6478926575a6ffb7c3c4c8d4b1ddb6ea8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:a9:7f:34:ca:bd:b2:39:1b:dc:a3:38:ef:f8:
                    7d:e4:6c:2e:05:85:aa:aa:7d:a4:63:69:bc:7a:52:
                    37:e0:97:dc:1f:44:25:37:af:b1:b0:4b:32:b2:e7:
                    ad:39:0b:2b:77:26:e3:3e:fa:d2:b3:53:fe:dc:76:
                    10:8b:71:61:4a:00:cc:60:c1:7c:8f:b0:03:66:72:
                    a3:de:0e:85:8c:80:04:33:85:2a:69:71:be:20:d1:
                    ab:15:6f:c9:ae:99:5d:2f:d6:4d:0a:5f:0d:7c:69:
                    6b:f9:f8:c7:52:af:85:cc:8d:8c:c0:f0:bb:24:8d:
                    97:b7:0a:64:88:8a:3e:82:60:5d:c5:b3:0f:9a:bd:
                    59:ea:fc:df:c8:49:f1:c4:93:8d:ef:89:b3:14:2e:
                    72:56:b7:8e:0a:08:25:58:cc:87:d6:2f:11:39:76:
                    6c:e0:0e:49:59:1d:b0:da:1b:8a:2d:05:d9:90:ec:
                    a4:2d:e4:0e:49:f5:73:e9:07:6b:d3:09:05:55:45:
                    cf:a3:f2:84:8b:89:27:bf:5a:cd:ae:ac:94:0e:2e:
                    f4:d5:4d:fc:0e:b2:33:fb:e9:c7:5f:7a:d0:b2:6b:
                    1f:9e:eb:bc:bf:26:71:5e:63:fd:46:99:11:98:d3:
                    8a:57:22:11:c4:60:a8:6a:1e:a4:47:27:b4:0b:12:
                    5d:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:91:9C:64:78:92:65:75:A6:FF:B7:C3:C4:C8:D4:B1:DD:B6:EA:8D
            X509v3 Authority Key Identifier:
                keyid:D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:1c:6c:c9:b3:9d:00:67:af:72:e6:2b:9d:b3:81:66:d1:96:
         22:42:b3:13:e1:b6:78:2e:d8:a1:0a:08:4a:a6:0f:5d:8c:35:
         e5:62:2c:80:97:18:1a:ec:3d:4d:09:e3:87:7f:cd:60:2f:85:
         96:98:0b:db:b9:6a:bb:1f:cc:26:c4:7d:6a:bb:bc:4c:14:13:
         59:c2:4b:44:72:bf:af:c5:3b:24:12:94:6b:10:c1:10:0c:92:
         17:fa:c1:2c:20:9a:46:45:32:22:e7:01:09:c7:00:92:18:8e:
         a7:bd:a5:42:12:32:00:a3:08:4c:33:4e:91:ed:f0:b6:c5:3e:
         40:b1:42:ac:80:ef:4f:24:eb:c0:6c:e0:bd:ed:0a:1e:5e:ab:
         38:af:56:34:1f:15:5a:03:d9:87:0b:a7:6b:e5:7e:6a:e6:09:
         6f:51:f5:8d:68:f3:2c:07:e5:e9:24:16:6b:be:ed:79:18:39:
         ba:36:bd:e7:e6:0d:ab:e9:fc:11:ae:8c:01:47:68:f4:38:a8:
         bd:17:0b:0e:c1:6c:78:15:a4:8d:b8:52:3f:28:f9:0e:11:d9:
         7e:1b:42:04:98:86:32:0b:5b:29:2b:4c:49:d1:48:c5:33:d4:
         ca:5d:76:96:8c:c7:7b:67:33:d6:1e:d9:1e:78:67:43:75:6c:
         56:b1:14:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----