Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
File:                     fXrxi3mJleFLOBNhoGu2aEm36Fo.mft (raw, json)
Hash identifier:          QjJv9mOmfB9hYI7qDh7u7JNM8VSFHDzdzALaUCrCgnA=
Subject key identifier:   47:C5:AE:E5:3E:8F:91:41:AA:0C:5C:F7:03:47:EB:EC:37:87:39:9D
Authority key identifier: 7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A
Certificate issuer:       /CN=7d7af18b798995e14b381361a06bb66849b7e85a
Certificate serial:       0198936CB695EC9335AA02DF41A8FCD1C607
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
Manifest number:          0752
Signing time:             Sun 10 Aug 2025 10:00:32 +0000
Manifest this update:     Sun 10 Aug 2025 10:00:32 +0000
Manifest next update:     Mon 11 Aug 2025 10:00:32 +0000
Files and hashes:         1: fXrxi3mJleFLOBNhoGu2aEm36Fo.crl (hash: wpTF5uQYVsgqjQS6FIm9xKn+1i1JNUlP5MnOaWofG1w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 08:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:93:6c:b6:95:ec:93:35:aa:02:df:41:a8:fc:d1:c6:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7d7af18b798995e14b381361a06bb66849b7e85a
        Validity
            Not Before: Aug 10 10:00:32 2025 GMT
            Not After : Aug 11 10:00:32 2025 GMT
        Subject: CN=47c5aee53e8f9141aa0c5cf70347ebec3787399d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:20:a3:2c:ee:c5:7f:87:ee:4f:cd:b9:a8:e3:
                    7a:6e:30:49:13:01:78:d5:5f:5c:d0:c8:29:89:d5:
                    1b:67:19:ad:fc:51:21:04:df:8d:99:63:95:d5:43:
                    f3:24:59:25:9e:97:5d:b6:38:9c:23:80:20:f9:2b:
                    c6:c4:8b:48:31:fa:4b:aa:89:09:8a:84:c6:56:e5:
                    72:80:6d:24:38:1b:c8:f0:25:b6:99:b5:ec:8f:b2:
                    ab:7d:5c:e2:04:74:66:e7:5e:a2:5f:aa:62:f6:c9:
                    0d:2c:a0:74:1e:91:4a:fe:74:11:4a:7e:f4:e2:9c:
                    34:aa:07:66:77:74:72:00:84:e6:8f:c2:4e:eb:a4:
                    5d:a0:f0:32:71:44:a3:1d:9c:04:03:67:1d:85:52:
                    42:a6:81:53:5d:d5:27:04:01:da:6d:31:ba:ec:dd:
                    d6:72:b6:96:36:53:c7:31:a8:a7:bc:76:b5:05:01:
                    68:d2:2b:c7:11:23:c5:78:7c:dd:a2:11:fe:45:a0:
                    c9:5d:ba:d2:a7:43:5d:12:76:11:11:19:86:76:3b:
                    14:e9:d7:35:05:be:06:44:3d:56:6d:b1:be:3c:2b:
                    92:86:86:e1:9f:3f:d9:94:34:24:cb:cb:8b:3a:72:
                    96:a4:94:c5:c7:32:82:cd:ee:42:e0:36:a5:be:b8:
                    1b:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:C5:AE:E5:3E:8F:91:41:AA:0C:5C:F7:03:47:EB:EC:37:87:39:9D
            X509v3 Authority Key Identifier:
                keyid:7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:30:b1:f0:b3:66:0d:f8:fb:62:72:7c:d1:18:c4:22:8f:d8:
         4c:16:3c:7d:7b:cc:c1:c4:d2:e3:7d:de:b9:e8:07:98:c4:3e:
         45:7e:60:04:79:1b:b6:77:5a:fe:fe:19:be:7a:86:fe:65:f8:
         e3:37:56:70:b4:65:55:82:96:f8:69:97:f0:1c:3a:af:7e:ee:
         c2:5a:94:d2:29:7b:6f:1d:55:b3:14:e2:af:db:d7:8a:b5:e4:
         ae:98:2f:b9:67:a0:c4:30:7f:9c:cc:42:01:43:d8:d8:ce:d6:
         f8:2c:0c:88:2e:c4:2e:c1:ea:9a:2b:14:b1:57:66:9d:c6:52:
         2b:3b:9c:5a:cc:29:b6:05:3b:82:1c:9d:1f:30:1c:e9:83:81:
         68:d9:9e:8d:0a:e4:f7:4c:ba:70:19:90:b3:60:bb:ee:1b:e6:
         23:8b:d6:0e:ff:23:05:de:22:98:cd:41:bb:1d:07:a9:5d:a6:
         40:04:7e:40:ae:86:cb:41:de:16:c6:6a:60:95:7e:e5:af:99:
         c1:02:c4:8b:e7:12:58:19:76:4e:f1:ee:58:92:e0:1b:de:ad:
         5b:eb:de:db:6f:3c:ca:41:27:8f:18:98:9b:63:d4:ea:13:12:
         fb:9a:40:5f:bd:06:36:fa:87:f7:c9:b9:fb:21:9a:81:f7:ec:
         8e:eb:5d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----