Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
File:                     7fBEw2PXiOdDNOE24DzH_R5JohY.mft (raw, json)
Hash identifier:          Y75DsIIE096HIIr05poyjCd8s3Lq44b6gnACgTbHndA=
Subject key identifier:   A7:75:7D:3D:EF:0C:DF:F0:62:38:D3:08:DD:B0:A4:7C:60:74:32:AB
Authority key identifier: ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16
Certificate issuer:       /CN=edf044c363d788e74334e136e03cc7fd1e49a216
Certificate serial:       019875D2133F17EFE32DCBB90A80415BD33E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
Manifest number:          088E
Signing time:             Mon 04 Aug 2025 16:02:38 +0000
Manifest this update:     Mon 04 Aug 2025 16:02:38 +0000
Manifest next update:     Tue 05 Aug 2025 16:02:38 +0000
Files and hashes:         1: 7fBEw2PXiOdDNOE24DzH_R5JohY.crl (hash: aj0JpuvvaFQaorguUncB+L5xxFN6E5leHKXHOM3prwk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:75:d2:13:3f:17:ef:e3:2d:cb:b9:0a:80:41:5b:d3:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edf044c363d788e74334e136e03cc7fd1e49a216
        Validity
            Not Before: Aug  4 16:02:38 2025 GMT
            Not After : Aug  5 16:02:38 2025 GMT
        Subject: CN=a7757d3def0cdff06238d308ddb0a47c607432ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:69:e5:23:1b:4a:8e:03:7f:e4:18:8f:4a:d8:
                    1a:86:fe:b7:4e:81:48:21:ba:c7:a3:46:07:0d:b4:
                    30:12:7b:f1:b8:13:d8:de:71:9d:3d:39:1e:1e:14:
                    c8:78:c4:41:4d:0b:f3:1f:05:9a:aa:c1:da:74:3d:
                    b3:8d:85:7f:30:a8:35:9d:89:a8:26:e6:b3:43:c4:
                    f9:5e:08:d8:df:38:8a:93:24:63:08:94:ff:a5:d5:
                    92:17:a5:ad:f2:ad:fd:45:94:f7:65:64:80:e0:a0:
                    7a:f8:5c:f6:e2:06:32:ea:3a:d4:13:ec:fb:d6:f9:
                    b2:16:cb:e8:06:29:06:c2:0f:a4:1d:e6:c0:44:4d:
                    69:e1:d5:bf:cc:01:06:b8:04:50:8b:f1:b9:66:2b:
                    11:33:23:a3:58:da:fb:90:43:4e:96:85:79:db:44:
                    13:08:cb:24:b7:c7:cd:b0:94:99:87:9f:bc:cc:ad:
                    6a:35:01:ef:0f:1f:48:d8:af:e1:a8:ef:af:07:51:
                    21:d9:f1:bf:96:31:2e:54:61:58:d5:2c:f1:90:56:
                    01:1c:9d:cc:23:b3:5d:9b:09:7a:3f:04:9a:b1:9d:
                    b4:ce:48:9b:8d:71:0d:fe:ae:b8:77:a2:06:20:4c:
                    9f:98:c1:9a:92:90:ed:d6:4b:f7:1d:e4:e5:db:f8:
                    18:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:75:7D:3D:EF:0C:DF:F0:62:38:D3:08:DD:B0:A4:7C:60:74:32:AB
            X509v3 Authority Key Identifier:
                keyid:ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:05:59:b9:7c:5b:e4:96:8f:01:4a:2b:22:01:fa:7b:38:50:
         82:7e:de:14:98:67:c7:5a:96:3c:cb:59:91:91:95:26:a4:2e:
         83:35:5c:06:36:41:4d:45:9a:ba:c2:cd:e8:42:06:45:27:c2:
         b6:6f:f1:fc:60:d9:f5:00:e9:e2:be:62:ce:2a:66:77:93:82:
         e0:f7:fd:6d:cd:68:f1:8f:a0:8d:cf:74:90:4d:c0:fc:e0:b8:
         3f:c0:4c:d6:6b:7c:77:a0:aa:b0:b5:7e:90:c0:7a:7c:f5:5c:
         92:1c:91:8a:74:60:a3:17:02:98:ca:95:ef:c4:7b:4c:96:12:
         b1:df:c1:6e:68:2b:63:f6:24:aa:0e:fb:b0:54:55:29:59:9d:
         b8:67:9a:bc:7f:3f:24:af:66:31:26:2b:1e:27:e5:9b:f6:c5:
         89:fd:5f:11:22:d4:58:02:40:3d:f0:6c:57:cd:0d:26:b8:ac:
         b1:ef:63:b6:8e:82:71:c2:75:30:e4:35:6c:cb:72:6f:93:76:
         06:a5:34:a4:bc:91:0d:d0:75:e6:55:61:2e:b5:b5:81:3d:39:
         85:b4:41:ca:c2:30:5c:a6:ab:da:0d:1f:a6:d5:9c:59:b6:9f:
         b3:a1:7e:70:c6:72:0b:9e:06:6f:38:c4:26:f0:6d:35:6c:d1:
         82:6d:f9:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh10hM/F+/jLcu5CoBBW9M+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkZjA0NGMzNjNkNzg4ZTc0MzM0ZTEzNmUwM2NjN2ZkMWU0
OWEyMTYwHhcNMjUwODA0MTYwMjM4WhcNMjUwODA1MTYwMjM4WjAzMTEwLwYDVQQD
EyhhNzc1N2QzZGVmMGNkZmYwNjIzOGQzMDhkZGIwYTQ3YzYwNzQzMmFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2nlIxtKjgN/5BiPStgahv63ToFI
IbrHo0YHDbQwEnvxuBPY3nGdPTkeHhTIeMRBTQvzHwWaqsHadD2zjYV/MKg1nYmo
JuazQ8T5XgjY3ziKkyRjCJT/pdWSF6Wt8q39RZT3ZWSA4KB6+Fz24gYy6jrUE+z7
1vmyFsvoBikGwg+kHebARE1p4dW/zAEGuARQi/G5ZisRMyOjWNr7kENOloV520QT
CMskt8fNsJSZh5+8zK1qNQHvDx9I2K/hqO+vB1Eh2fG/ljEuVGFY1SzxkFYBHJ3M
I7Ndmwl6PwSasZ20zkibjXEN/q64d6IGIEyfmMGakpDt1kv3HeTl2/gYVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKd1fT3vDN/wYjjTCN2wpHxgdDKrMB8GA1UdIwQY
MBaAFO3wRMNj14jnQzThNuA8x/0eSaIWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zNDA0OTEtZDFkMi00MzJjLTk1NmQt
MmZlMTU5NGRkYzljLzEvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8zNDA0OTEtZDFkMi00MzJjLTk1NmQtMmZlMTU5NGRkYzlj
LzEvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFAVZuXxb
5JaPAUorIgH6ezhQgn7eFJhnx1qWPMtZkZGVJqQugzVcBjZBTUWausLN6EIGRSfC
tm/x/GDZ9QDp4r5izipmd5OC4Pf9bc1o8Y+gjc90kE3A/OC4P8BM1mt8d6CqsLV+
kMB6fPVckhyRinRgoxcCmMqV78R7TJYSsd/BbmgrY/Ykqg77sFRVKVmduGeavH8/
JK9mMSYrHiflm/bFif1fESLUWAJAPfBsV80NJrisse9jto6CccJ1MOQ1bMtyb5N2
BqU0pLyRDdB15lVhLrW1gT05hbRBysIwXKar2g0fptWcWbafs6F+cMZyC54GbzjE
JvBtNWzRgm35sw==
-----END CERTIFICATE-----