Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
File:                     db3TijiDJA5GxLGsi7-DF96P-IU.mft (raw, json)
Hash identifier:          EBidpEDbzUU2ZH5d/EMbDJhpDnsuDHRSLuRKBReEWjc=
Subject key identifier:   AB:57:4C:81:93:B8:EF:EC:7C:72:62:76:5E:F5:80:75:49:39:F8:CE
Authority key identifier: 75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85
Certificate issuer:       /CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885
Certificate serial:       01988C58C2596F99BAC464CB9CCE6353913F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
Manifest number:          1330
Signing time:             Sat 09 Aug 2025 01:01:23 +0000
Manifest this update:     Sat 09 Aug 2025 01:01:23 +0000
Manifest next update:     Sun 10 Aug 2025 01:01:23 +0000
Files and hashes:         1: db3TijiDJA5GxLGsi7-DF96P-IU.crl (hash: hPlRkygwRhgN6Ti5r866ydMJjyby1CXlpy/8knajcIY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8c:58:c2:59:6f:99:ba:c4:64:cb:9c:ce:63:53:91:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885
        Validity
            Not Before: Aug  9 01:01:23 2025 GMT
            Not After : Aug 10 01:01:23 2025 GMT
        Subject: CN=ab574c8193b8efec7c7262765ef580754939f8ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:a1:d5:95:c6:a7:98:2c:c5:66:99:62:66:bb:
                    d6:5c:10:5f:50:df:66:2a:e8:07:f4:7a:f4:8c:63:
                    0a:4a:7f:db:38:dc:34:ab:75:14:18:52:89:34:74:
                    ff:d6:56:44:3e:02:65:1b:6a:3c:54:a8:62:4d:be:
                    c4:74:98:3d:4f:54:07:58:12:cf:ce:71:ce:f9:9e:
                    32:01:9e:39:b0:e0:af:ca:a0:69:c9:3a:a6:26:63:
                    e1:d2:d6:bc:41:84:f0:d0:b6:81:0c:87:b0:0a:c0:
                    84:0a:08:75:1b:bb:47:15:f5:50:77:87:68:73:e3:
                    2c:91:5c:9d:5f:72:f1:ee:c1:9e:0c:55:fd:43:5e:
                    dd:92:86:c4:1e:a4:4a:42:9a:84:2e:00:41:ca:96:
                    80:46:2b:e9:52:30:39:85:89:f6:49:f6:0f:39:64:
                    b8:7f:2e:64:23:0c:a0:dc:c4:c6:e3:00:c6:7d:00:
                    01:de:26:a3:cd:92:c5:61:1d:f6:7a:76:86:cd:0d:
                    33:1b:e8:bc:90:0d:a7:a7:e7:93:04:a7:57:95:d3:
                    1e:db:4c:8e:c1:1b:e4:47:ee:86:fa:b3:22:b2:0e:
                    7e:2d:02:93:6b:27:32:87:19:14:4d:42:4f:d2:b6:
                    cc:b5:ff:a7:bf:db:94:a1:b7:15:e5:08:aa:1c:60:
                    23:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:57:4C:81:93:B8:EF:EC:7C:72:62:76:5E:F5:80:75:49:39:F8:CE
            X509v3 Authority Key Identifier:
                keyid:75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:58:c2:62:0d:85:62:f4:04:ae:48:95:33:ed:cb:3c:58:1c:
         53:fe:76:6e:ef:db:2b:f5:8f:7b:09:72:58:4b:e5:ac:e6:b9:
         66:04:6f:75:6c:2d:de:05:f9:03:bd:b6:82:11:79:35:5c:c6:
         e6:eb:c2:64:c6:7b:90:d7:94:42:ec:ed:8f:b5:62:da:46:3a:
         48:7d:02:f2:c2:4e:f3:79:01:00:ca:38:32:da:6d:5c:af:35:
         fc:76:85:b5:58:01:e5:ea:df:47:e1:7b:4d:b1:d4:5f:ab:c6:
         c6:7a:b1:0b:cb:a1:06:ac:0a:21:24:37:d6:e6:61:04:33:cd:
         e1:1f:1e:ca:fc:42:94:5b:f9:5d:b2:28:36:16:a3:01:6d:28:
         c4:48:50:99:c2:7e:52:c4:b0:c0:09:f9:a4:fe:e7:d2:97:02:
         d0:01:5f:fd:01:7b:12:be:2e:58:13:91:83:96:44:00:3f:f7:
         dd:fd:40:5d:c6:61:cf:a6:f4:04:4a:fd:48:3a:a4:7e:71:4e:
         16:1b:62:d5:f3:f4:81:52:cd:62:a3:4a:1d:c1:12:3f:57:c8:
         dc:cd:1c:b7:ba:6e:f9:06:79:a1:2c:68:ae:66:46:85:87:89:
         cc:f4:d1:54:27:44:a0:b6:7f:c7:a3:26:22:8b:6b:3a:f6:56:
         d6:e8:98:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----