Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
File:                     Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft (raw, json)
Hash identifier:          5ugmDSYHJHVY18JFmb0vpdD8X9ofI0kh3yhTqgVDrEc=
Subject key identifier:   EB:CC:F1:47:DF:E0:2D:EB:F9:1D:47:A3:DB:0C:01:35:E9:B6:3D:EF
Authority key identifier: 5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B
Certificate issuer:       /CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b
Certificate serial:       01987DF7AB0C7CDE18D822700B4F479E4047
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
Manifest number:          0C72
Signing time:             Wed 06 Aug 2025 06:00:39 +0000
Manifest this update:     Wed 06 Aug 2025 06:00:39 +0000
Manifest next update:     Thu 07 Aug 2025 06:00:39 +0000
Files and hashes:         1: Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl (hash: GOCwlZqxiiF6TCV1cOBBVRth4nOzFiu9LhQrMI3eni4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 06:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7d:f7:ab:0c:7c:de:18:d8:22:70:0b:4f:47:9e:40:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b
        Validity
            Not Before: Aug  6 06:00:39 2025 GMT
            Not After : Aug  7 06:00:39 2025 GMT
        Subject: CN=ebccf147dfe02debf91d47a3db0c0135e9b63def
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:0f:b5:82:ef:4d:c0:6a:e0:97:db:b0:3e:f6:
                    3e:32:38:da:70:f6:d7:19:30:d8:41:e2:59:c8:58:
                    2c:22:4c:6e:c1:da:10:90:3a:2f:50:db:1d:fc:f3:
                    60:46:19:85:32:66:d7:61:5f:02:eb:04:d2:55:13:
                    dd:c4:f3:f3:33:f2:2d:b5:5f:2f:cd:9e:61:5d:5e:
                    37:d4:b1:96:69:b7:21:f7:97:f8:36:50:85:94:93:
                    bc:d0:a7:6f:21:62:e1:08:78:3f:80:8a:6f:29:74:
                    5b:8b:4a:7d:9c:f0:a8:fc:08:81:cf:55:ef:0d:ad:
                    af:f7:93:48:93:d0:ef:6e:dc:d2:c2:4c:30:de:cd:
                    0b:a4:cc:71:9d:0a:08:ab:1b:ef:4a:be:4c:0c:5f:
                    5c:f4:03:84:83:4c:e3:50:25:b1:12:5b:8f:e0:b5:
                    7e:78:e4:75:bf:e9:bf:9e:c6:d8:57:29:27:4e:7d:
                    4f:4b:05:8b:d1:27:77:b0:55:2a:aa:59:37:e0:eb:
                    4e:e2:1e:a5:2d:10:04:17:ee:f9:30:42:f1:0c:d4:
                    3e:72:18:0e:a0:27:7e:0d:8c:ad:c7:78:de:0c:6a:
                    69:69:f3:94:a1:dc:95:d4:ef:34:d5:ac:d8:80:bd:
                    dc:aa:04:87:34:71:b8:7c:73:c0:93:8f:83:2f:b7:
                    72:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:CC:F1:47:DF:E0:2D:EB:F9:1D:47:A3:DB:0C:01:35:E9:B6:3D:EF
            X509v3 Authority Key Identifier:
                keyid:5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:c6:82:bb:2c:ac:00:2e:b2:60:cc:db:9a:21:6a:be:d1:3b:
         1b:f5:07:74:34:18:74:69:a8:ea:ef:de:d4:c3:72:3a:dc:6f:
         8e:51:08:a1:89:c8:39:cb:0b:f9:d5:97:80:0d:aa:67:4d:f3:
         dd:16:05:2d:91:2d:b0:67:ad:e9:c5:38:e7:0c:7e:81:88:f5:
         ac:42:a1:d9:0d:be:55:e4:ff:e0:ec:98:f5:2e:3b:74:c4:10:
         bf:2f:64:0a:4e:72:ab:db:b8:75:93:16:b1:3c:ff:4c:4f:50:
         06:dc:5b:82:50:2b:e6:e9:9e:7d:2c:36:a1:bd:cb:0d:09:64:
         64:74:3b:4f:2c:4a:44:89:07:1b:a3:ea:ae:28:5f:53:fb:80:
         e0:42:2e:5c:2a:1b:87:10:ea:3a:ed:0c:9d:0c:72:c8:cf:d7:
         2e:92:e3:13:09:be:08:79:58:d7:3a:b6:35:32:cd:ae:fa:9f:
         5c:ac:5f:3c:9c:3c:0c:dd:2d:6e:0a:95:31:22:bf:19:9e:72:
         45:5e:e0:cf:e5:11:35:a2:a5:e0:99:70:3a:9d:0a:23:6d:6d:
         b3:75:fe:0e:ac:fd:e6:5c:0c:30:0e:9e:15:bc:ce:2e:cf:8b:
         98:0b:49:19:66:2d:12:24:3e:57:e0:5a:8a:c5:8d:9a:a2:df:
         1a:e7:c3:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----