Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
File:                     2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft (raw, json)
Hash identifier:          ayotWIondQL/r/NsArV48SS1L5DVpgze5dVwT4tPATY=
Subject key identifier:   AD:66:5B:B0:3E:5C:36:2D:F5:41:36:55:DD:84:F3:10:52:40:30:3B
Authority key identifier: DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD
Certificate issuer:       /CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
Certificate serial:       019896A6BA66FA3938B09E4112EA0F9CDC92
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
Manifest number:          090A
Signing time:             Mon 11 Aug 2025 01:02:45 +0000
Manifest this update:     Mon 11 Aug 2025 01:02:45 +0000
Manifest next update:     Tue 12 Aug 2025 01:02:45 +0000
Files and hashes:         1: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl (hash: fV72JV9EEojUp89TjZw5Nh1rTOh3xdzQCVbdLe2seok=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 12 Aug 2025 01:02:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:96:a6:ba:66:fa:39:38:b0:9e:41:12:ea:0f:9c:dc:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
        Validity
            Not Before: Aug 11 01:02:45 2025 GMT
            Not After : Aug 12 01:02:45 2025 GMT
        Subject: CN=ad665bb03e5c362df5413655dd84f3105240303b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:aa:df:db:68:db:96:cb:9b:60:37:d0:6f:b4:
                    97:96:9d:88:85:cd:5b:4d:0e:5b:20:bd:af:a0:c5:
                    ee:1e:95:ed:1e:37:33:48:20:39:ca:ef:33:6e:48:
                    bf:5e:c9:da:ac:90:b3:a2:f9:f0:8c:f5:fb:77:ab:
                    a1:84:5b:d1:90:3c:1f:d8:93:98:94:e3:9b:5b:94:
                    5d:7b:27:f5:73:eb:20:5c:8c:d6:8b:26:1e:ac:e7:
                    08:4d:15:a0:83:c4:c0:5b:23:1a:40:28:9b:0e:f0:
                    d9:0c:e7:77:db:d4:de:72:15:b1:d1:ff:d0:a0:43:
                    df:89:2f:6d:37:7e:bb:1d:68:48:7f:39:28:8e:07:
                    8f:1b:a2:cd:f7:3d:1d:0f:fd:cd:b5:3e:62:1b:9b:
                    29:8c:86:7f:b3:2b:8e:aa:46:1e:2f:59:96:0a:05:
                    0e:b7:e5:76:6f:8a:06:a5:c3:f4:2e:52:81:ec:25:
                    0e:40:3a:97:33:6e:be:97:0d:93:ab:8d:1c:00:3a:
                    35:0e:0e:bc:91:07:e3:9f:7b:d6:63:ff:cf:ed:e2:
                    c4:a0:93:e5:9b:a5:79:a7:1b:4f:41:cd:89:ad:0e:
                    ea:f3:da:59:25:00:6e:7e:5b:62:d7:9a:fc:34:f9:
                    3c:aa:d6:55:c5:ae:b6:93:e9:5e:02:84:a7:a3:bc:
                    07:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:66:5B:B0:3E:5C:36:2D:F5:41:36:55:DD:84:F3:10:52:40:30:3B
            X509v3 Authority Key Identifier:
                keyid:DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:2b:9d:bb:8d:76:8a:d5:bc:c1:6e:72:ba:7a:f0:ee:68:bd:
         88:f9:60:7d:49:54:d9:83:87:28:c4:62:c3:a7:43:45:d8:3a:
         51:62:cf:e8:d2:f9:d1:a3:07:d3:2d:6c:5c:c2:ad:7c:fc:d7:
         3e:7b:3a:82:12:d8:5e:4b:3b:1d:86:65:9c:5f:01:1d:d6:f9:
         88:fc:3f:1c:22:0f:05:41:d3:f6:91:b7:36:fa:ef:e6:b6:8c:
         28:c8:58:c0:46:ec:94:a2:a3:36:c3:46:08:48:d6:11:a5:19:
         09:91:77:83:b5:d2:9c:3e:9d:72:8b:c6:73:90:3e:4e:56:65:
         8a:8e:84:ab:a1:52:e1:ef:5b:6b:df:b5:ac:e5:5a:68:d9:2f:
         bc:d1:af:05:db:dc:0d:06:33:bd:92:38:ba:e7:f9:e6:65:9c:
         fb:bf:05:43:27:9b:63:c8:28:5e:4a:0f:83:f0:c9:ee:38:8d:
         0b:05:e0:d0:d4:60:74:09:a3:ec:fa:df:ab:6b:f6:4f:d3:89:
         5e:24:ae:f1:fc:f0:f9:ac:45:67:30:2f:df:30:0b:e4:f7:d6:
         16:13:17:73:ce:f1:73:08:09:51:3c:78:e4:3d:48:fe:f1:10:
         51:fc:3a:9a:f3:d1:93:8d:9e:af:7d:96:72:9e:ac:d6:14:f3:
         a5:54:45:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----