Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/33044c-3be5-4d17-a721-33f3c6b34602/1/X78QDyDnniuCeH_mRaU_TChkKvY.mft
File:                     X78QDyDnniuCeH_mRaU_TChkKvY.mft (raw, json)
Hash identifier:          CTxc5Huyw/35Bwqs3SSnL2a1t4vpomKbqB025Gkt+Qw=
Subject key identifier:   DA:E3:97:E3:FB:A9:22:06:01:25:99:B3:F6:00:59:D4:42:EC:E3:00
Authority key identifier: 5F:BF:10:0F:20:E7:9E:2B:82:78:7F:E6:45:A5:3F:4C:28:64:2A:F6
Certificate issuer:       /CN=5fbf100f20e79e2b82787fe645a53f4c28642af6
Certificate serial:       01984475F91B043823460009239281CA0CFA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X78QDyDnniuCeH_mRaU_TChkKvY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/33044c-3be5-4d17-a721-33f3c6b34602/1/X78QDyDnniuCeH_mRaU_TChkKvY.mft
Manifest number:          15FB
Signing time:             Sat 26 Jul 2025 02:00:38 +0000
Manifest this update:     Sat 26 Jul 2025 02:00:38 +0000
Manifest next update:     Sun 27 Jul 2025 02:00:38 +0000
Files and hashes:         1: X78QDyDnniuCeH_mRaU_TChkKvY.crl (hash: zltqa/QPBs5X443aWYS3F9hL1YClUqWeJlnCiawYqw8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/33044c-3be5-4d17-a721-33f3c6b34602/1/X78QDyDnniuCeH_mRaU_TChkKvY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/33044c-3be5-4d17-a721-33f3c6b34602/1/X78QDyDnniuCeH_mRaU_TChkKvY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/X78QDyDnniuCeH_mRaU_TChkKvY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 27 Jul 2025 02:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:44:75:f9:1b:04:38:23:46:00:09:23:92:81:ca:0c:fa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5fbf100f20e79e2b82787fe645a53f4c28642af6
        Validity
            Not Before: Jul 26 02:00:38 2025 GMT
            Not After : Jul 27 02:00:38 2025 GMT
        Subject: CN=dae397e3fba92206012599b3f60059d442ece300
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f7:8f:d8:a0:d6:48:49:37:e0:35:53:64:ae:87:
                    9e:5a:37:6c:13:30:1f:71:01:3f:9c:18:8f:f6:da:
                    7d:e3:fb:c7:6f:e7:6c:c1:0a:60:59:eb:9f:b3:51:
                    c0:9f:3b:1d:bc:06:ad:d2:a1:13:29:18:7f:a7:dc:
                    54:27:86:a6:9d:df:69:3e:7c:7b:a1:05:cb:67:47:
                    dd:1d:13:02:f3:55:7e:84:d8:2a:25:05:ce:94:3c:
                    47:6a:bf:70:1d:bc:34:84:2c:97:7e:94:59:fe:9b:
                    d9:0c:8b:20:dc:75:39:03:c6:eb:b0:96:e6:5c:d1:
                    eb:26:bd:37:d7:34:fe:b7:a7:bc:e2:6f:6e:72:b6:
                    6e:14:f4:d9:b0:8b:39:a5:0a:51:45:6e:26:52:71:
                    5c:a2:0c:b0:e2:15:4a:b1:43:04:1c:4c:23:7d:1c:
                    77:a5:c1:df:77:f4:42:88:8f:d4:60:ee:ed:79:bd:
                    6d:47:04:ca:0d:7e:4f:30:09:5c:4f:97:f1:33:a4:
                    e1:b3:c7:2a:86:40:e5:be:f6:a1:17:43:5a:d5:1a:
                    fd:7d:c9:7c:c6:ae:c8:1a:2c:51:b0:df:3f:15:b5:
                    57:f9:a0:18:9c:ad:4a:70:ed:2a:49:28:88:54:61:
                    b5:f9:c7:32:a9:ca:9e:db:00:d1:4f:04:4f:98:f1:
                    9e:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:E3:97:E3:FB:A9:22:06:01:25:99:B3:F6:00:59:D4:42:EC:E3:00
            X509v3 Authority Key Identifier:
                keyid:5F:BF:10:0F:20:E7:9E:2B:82:78:7F:E6:45:A5:3F:4C:28:64:2A:F6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X78QDyDnniuCeH_mRaU_TChkKvY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/33044c-3be5-4d17-a721-33f3c6b34602/1/X78QDyDnniuCeH_mRaU_TChkKvY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/33044c-3be5-4d17-a721-33f3c6b34602/1/X78QDyDnniuCeH_mRaU_TChkKvY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:42:1f:e0:99:52:01:65:60:60:28:a5:0d:99:f7:21:b8:ff:
         7b:a3:df:09:0b:bc:8b:d7:fe:a8:8a:33:5b:af:21:14:06:d8:
         ec:d5:f9:48:85:7d:6f:36:9b:26:f9:07:e2:96:8e:ef:3e:c6:
         2f:c8:ac:bf:46:40:63:2b:2f:84:1b:d0:6b:81:28:c9:35:ff:
         c8:54:ec:c8:43:58:1b:6a:3a:6e:74:bd:ca:ba:3f:7c:43:5c:
         22:77:4d:06:64:46:7c:8f:dc:d6:43:4e:4c:e7:ff:07:62:78:
         41:0b:85:93:9a:8b:01:25:fd:f6:3e:5e:4c:61:ea:fb:b5:7b:
         b0:a0:32:cc:dc:58:da:db:55:d8:3b:b5:b9:2c:03:23:fd:b3:
         19:56:d4:21:11:0c:ef:01:4e:e6:0b:92:67:e9:34:25:bc:ba:
         81:c2:77:c2:e0:c6:3c:2a:ae:0f:f7:a9:06:c8:b6:d0:f1:85:
         a1:77:f4:a8:b8:fe:d8:87:23:1d:84:8d:a0:e5:a5:d4:ee:fc:
         cb:c6:55:10:ef:0a:6e:09:4b:68:0c:5f:07:ad:8b:c3:fd:2a:
         57:21:ee:d7:b1:29:33:a7:98:4b:b0:90:99:27:3d:fa:00:a4:
         ab:6a:06:52:f1:74:01:2a:a1:8e:50:93:1c:bd:40:c8:ab:c0:
         82:c7:ed:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----