Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
File:                     2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft (raw, json)
Hash identifier:          Pkn5CeX8uFjSdA3nn1I7VERPMSeiG53mD329K3M0hxQ=
Subject key identifier:   08:06:B3:DB:B8:3C:0A:53:AF:E1:97:79:E6:94:20:6E:CE:6A:DD:57
Authority key identifier: DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
Certificate issuer:       /CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Certificate serial:       019879E3D05D2969430E8BAE6CB5A9764F07
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
Manifest number:          1615
Signing time:             Tue 05 Aug 2025 11:00:29 +0000
Manifest this update:     Tue 05 Aug 2025 11:00:29 +0000
Manifest next update:     Wed 06 Aug 2025 11:00:29 +0000
Files and hashes:         1: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl (hash: lLQ8EjOAJ6GSFupZShiB6eU5+3aarjohFruBnuyGJws=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 11:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:79:e3:d0:5d:29:69:43:0e:8b:ae:6c:b5:a9:76:4f:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dae57631f60adb13f0ae368671ce0f8742f5977f
        Validity
            Not Before: Aug  5 11:00:29 2025 GMT
            Not After : Aug  6 11:00:29 2025 GMT
        Subject: CN=0806b3dbb83c0a53afe19779e694206ece6add57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:24:25:1d:4e:a8:9a:6e:70:c4:97:10:75:ac:
                    63:a1:42:0a:9e:26:39:3a:94:c1:21:e0:cf:2e:8e:
                    94:5c:29:09:4d:00:bd:4b:e0:3a:97:a2:99:98:8a:
                    57:b3:5f:f7:67:9e:b6:94:eb:c1:9c:36:4b:b8:91:
                    d8:80:2c:65:ee:75:03:c7:d7:0a:5b:01:e8:79:ce:
                    eb:d6:ba:31:66:45:eb:53:d2:6c:0e:0e:2e:19:35:
                    9f:a3:84:72:7d:e7:db:95:ae:65:93:7d:5f:6d:07:
                    0d:5d:da:49:af:ef:df:b2:39:a0:08:7d:61:cf:dd:
                    b5:24:19:ad:4e:a0:ba:90:c9:e7:f6:36:45:3b:c1:
                    85:05:93:e9:e2:57:bc:27:73:7f:8b:2e:db:68:76:
                    c3:26:4a:16:35:95:d9:47:7c:89:89:5d:51:52:b5:
                    3c:e1:0b:4c:08:dd:57:23:f9:e7:ed:d3:30:c5:b0:
                    cf:90:3f:e7:0d:2a:69:12:98:6a:20:bb:3d:9b:9b:
                    0d:30:3a:cb:a6:b4:46:6b:34:60:68:64:61:a9:d9:
                    b9:3c:79:9d:f5:85:35:0d:bd:c4:1d:01:8e:4d:a8:
                    86:7a:fa:8e:7d:bf:b9:ea:4b:13:c9:bb:ef:b2:6e:
                    22:33:8e:0a:4c:57:fd:d0:13:19:15:1b:70:40:77:
                    cd:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:06:B3:DB:B8:3C:0A:53:AF:E1:97:79:E6:94:20:6E:CE:6A:DD:57
            X509v3 Authority Key Identifier:
                keyid:DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:42:95:d6:81:4c:ff:56:fe:a6:f3:53:75:16:0b:7c:d2:0f:
         7b:b2:10:5e:99:62:6b:04:d9:a5:f0:05:8d:1c:3a:0c:46:52:
         23:c7:91:d1:f2:bf:2c:65:54:47:3b:a8:c8:20:bb:07:3d:d5:
         9b:a5:f8:e4:34:7a:9d:f1:6d:02:72:41:45:3e:ab:4c:31:bc:
         bd:cc:a6:a3:37:3c:77:2a:d7:31:39:ed:9b:f2:fe:38:29:f4:
         ec:8d:4e:ab:1d:e1:cd:14:1e:9a:2c:20:c2:cc:2d:7d:53:d2:
         b9:af:4d:3d:a3:3c:25:6d:62:a9:73:7f:b2:11:7b:95:61:eb:
         dc:34:f3:b1:b7:e8:59:62:4f:f0:5b:b2:12:85:99:04:c4:1b:
         fb:fa:6d:a1:97:2b:f4:3a:6a:46:b8:3a:eb:93:66:62:07:81:
         49:ba:f0:50:9c:f6:05:4d:5b:b2:d9:37:e5:43:28:af:0a:57:
         9c:ef:f7:75:e9:f3:43:33:1b:b1:ca:61:8e:38:72:72:97:08:
         c1:7a:02:d1:6c:44:4b:6a:c7:b0:07:cc:be:95:db:4b:ec:ec:
         a1:e2:19:63:65:99:07:19:b3:ae:f9:41:1b:a4:7a:91:c0:b7:
         93:ac:43:f7:c6:93:15:02:94:29:5c:28:bd:8e:1d:2d:d0:56:
         57:4b:50:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----