Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
File:                     3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft (raw, json)
Hash identifier:          Le73LusRDqrvml11ikN4ZP7F3x1mKOkb1JmMK+cpluo=
Subject key identifier:   95:37:E9:DA:DA:F9:3C:59:2C:EB:C2:2F:B9:CC:FC:35:DA:83:7F:43
Authority key identifier: DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4
Certificate issuer:       /CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
Certificate serial:       01987B9BB03532C608282301E81461F7A199
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
Manifest number:          0D0D
Signing time:             Tue 05 Aug 2025 19:00:57 +0000
Manifest this update:     Tue 05 Aug 2025 19:00:57 +0000
Manifest next update:     Wed 06 Aug 2025 19:00:57 +0000
Files and hashes:         1: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl (hash: 6pn1prWpqHyPde/XYHwo++wEy/jROeygUehqh8geUEw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 19:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7b:9b:b0:35:32:c6:08:28:23:01:e8:14:61:f7:a1:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
        Validity
            Not Before: Aug  5 19:00:57 2025 GMT
            Not After : Aug  6 19:00:57 2025 GMT
        Subject: CN=9537e9dadaf93c592cebc22fb9ccfc35da837f43
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:c1:80:52:5a:79:5e:e1:5b:3c:55:a1:f2:13:
                    c7:24:e6:92:98:7a:fb:a1:e6:d0:d4:ed:95:33:f8:
                    b4:64:68:47:75:4f:56:51:9c:93:4e:11:fd:df:e5:
                    e7:bb:2d:9a:aa:7e:6c:e0:af:84:e9:1d:26:63:1c:
                    28:2e:f0:d0:fd:42:01:e2:36:54:d1:5c:52:1c:62:
                    14:6c:31:08:40:d3:8a:f1:ab:72:e3:e3:3a:65:fd:
                    aa:f1:dc:62:3a:98:cc:c9:43:ca:87:b5:e3:65:cd:
                    75:f0:a5:e4:0e:c9:2d:d7:ff:b6:dc:5f:69:b7:c7:
                    4a:54:c0:5f:c4:b0:9e:fc:23:30:ad:c7:0c:5a:ef:
                    f9:60:ff:02:45:02:97:fd:90:a6:9a:f7:6a:fe:37:
                    e0:20:d2:f6:04:64:e3:f9:73:49:93:d5:16:36:75:
                    e3:04:b6:22:91:dd:60:e4:e7:a0:8a:0d:1c:fd:2f:
                    c1:ac:8a:d0:f9:8a:7d:42:88:74:f4:1d:ec:eb:55:
                    38:95:69:99:fd:ad:24:53:7d:15:36:e6:7c:9a:d5:
                    ac:27:61:17:9e:33:03:ef:8f:b4:c5:1e:53:f1:c5:
                    b9:35:37:5e:cd:f6:78:c1:0e:c5:59:b3:79:5f:65:
                    a0:0d:e0:d9:6b:7e:59:d3:11:f0:0f:9b:6a:0c:23:
                    42:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:37:E9:DA:DA:F9:3C:59:2C:EB:C2:2F:B9:CC:FC:35:DA:83:7F:43
            X509v3 Authority Key Identifier:
                keyid:DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:91:e8:df:e3:e7:d2:a7:b8:19:0a:af:69:6c:c1:ef:e3:ea:
         a9:2d:7c:21:c8:4f:65:95:85:7e:28:8a:1f:c1:36:d2:72:83:
         45:09:d7:20:38:9e:b5:5f:4b:7c:4a:2f:ce:80:4a:97:48:14:
         c3:4d:3c:0f:69:f8:01:40:7a:bb:13:7d:7f:a4:bb:04:4a:83:
         95:5d:a6:53:a6:c1:03:f0:c5:08:4e:ea:95:42:66:96:89:f2:
         b8:95:07:a5:d3:e0:dc:c9:f9:d2:20:05:bf:f6:eb:da:20:d2:
         de:8d:e2:0d:d5:4e:55:1f:b8:81:c9:b7:d2:de:b8:d5:bd:a4:
         26:ce:4a:5b:c8:fa:29:b8:06:45:0c:e9:e1:fd:a7:ad:24:cc:
         1f:a5:71:8a:3e:10:92:18:9c:0f:fc:3b:d0:d9:94:39:3c:37:
         d7:ec:79:e0:7d:f1:ae:ec:d9:ac:63:ba:89:0d:88:55:00:78:
         fe:a4:f2:68:bb:7f:10:1d:34:da:53:43:ca:2b:61:cc:fd:58:
         5d:97:75:9b:55:17:9a:d4:49:14:97:6e:ea:df:22:76:67:72:
         65:10:08:99:fc:82:4a:fc:ac:a5:72:b2:51:e5:94:01:3c:9f:
         7c:39:3a:90:4b:98:6d:a9:70:62:ba:be:cc:d7:7a:d4:54:e3:
         3c:64:d3:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----