Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
File:                     AKTVv_pzY0hD6QPjexj97g2sWFs.mft (raw, json)
Hash identifier:          3CocoMYH3CO9R2YmLCPgKw2m1NzO05NXLbAMLiY8zuA=
Subject key identifier:   75:D9:62:A1:08:9D:82:4B:11:17:18:3C:80:C4:1A:44:67:B6:E1:CF
Authority key identifier: 00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B
Certificate issuer:       /CN=00a4d5bffa73634843e903e37b18fdee0dac585b
Certificate serial:       01984777F60F626524483AEC77BCA65B48C3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
Manifest number:          0124
Signing time:             Sat 26 Jul 2025 16:01:40 +0000
Manifest this update:     Sat 26 Jul 2025 16:01:40 +0000
Manifest next update:     Sun 27 Jul 2025 16:01:40 +0000
Files and hashes:         1: AKTVv_pzY0hD6QPjexj97g2sWFs.crl (hash: alffmsrolj7GBBRjMF7PSGu0luNpELOO2w9vRHv4Isc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 27 Jul 2025 15:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:47:77:f6:0f:62:65:24:48:3a:ec:77:bc:a6:5b:48:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00a4d5bffa73634843e903e37b18fdee0dac585b
        Validity
            Not Before: Jul 26 16:01:40 2025 GMT
            Not After : Jul 27 16:01:40 2025 GMT
        Subject: CN=75d962a1089d824b1117183c80c41a4467b6e1cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:25:4c:74:44:b0:c5:3a:9f:45:fa:ae:63:8a:
                    7a:0b:34:e5:8f:84:65:27:08:03:44:d4:00:17:70:
                    37:de:4d:f0:85:d7:42:a0:f6:f3:43:1e:51:6f:15:
                    1f:b8:01:4d:90:54:73:6d:d1:29:8a:b1:7f:d3:ff:
                    70:6d:8e:94:29:9d:90:87:1b:99:ac:24:6f:12:f1:
                    0d:e0:91:5e:70:36:ea:85:03:30:69:45:53:04:2b:
                    64:da:88:c6:ce:5b:fe:11:96:e0:9f:a6:4e:d9:25:
                    48:86:ce:07:88:6d:83:5d:f6:50:f8:3d:48:bc:50:
                    40:99:96:31:b8:6a:0a:8c:22:68:7b:4c:44:76:7a:
                    69:ad:c8:73:d8:e0:c3:2e:d9:6f:f3:5b:51:aa:ce:
                    30:b6:64:a5:ed:38:74:2c:b2:c5:b2:ef:49:97:d2:
                    77:9f:ae:ef:90:f2:9b:90:44:e8:f2:81:7b:6e:b1:
                    dd:72:d8:1d:b8:e5:9b:40:ca:28:67:fc:d7:d9:08:
                    2c:f8:9e:80:ee:d2:31:50:de:34:55:07:d5:d1:4a:
                    63:17:3a:61:5e:17:26:a1:46:8d:66:1e:ee:66:85:
                    37:1d:1f:dd:d6:98:88:20:13:ca:98:c9:04:21:f0:
                    f9:28:28:03:31:92:34:25:5a:15:e3:73:8f:01:75:
                    92:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:D9:62:A1:08:9D:82:4B:11:17:18:3C:80:C4:1A:44:67:B6:E1:CF
            X509v3 Authority Key Identifier:
                keyid:00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:ba:21:1f:e9:4d:cf:0b:2b:85:50:df:f6:f1:2e:bd:f5:db:
         56:4a:04:a8:73:73:26:46:d5:59:13:13:65:c1:9a:2c:7c:44:
         f5:fa:e2:8d:ed:ad:d3:c0:06:72:8d:f4:80:2b:d0:20:69:ad:
         96:1c:e4:48:86:32:9f:bd:0e:74:ef:70:35:a6:db:d0:01:83:
         c4:ed:77:a5:dc:fd:ef:3b:4f:ca:96:c9:21:b3:ec:13:cb:83:
         bb:50:24:ec:90:9d:52:e0:98:1f:27:12:06:7c:b8:4f:27:d5:
         77:f7:b5:0e:e6:1d:47:02:c7:69:ca:8c:d7:93:1e:95:3a:76:
         1c:da:13:9d:9c:53:db:19:9a:00:56:49:df:c1:32:c2:ee:57:
         4e:3d:68:d9:fe:67:51:7d:bc:9b:c2:3e:f8:3f:f0:61:13:f6:
         22:e6:75:e6:d9:60:ed:ba:16:bd:83:08:8b:6b:16:a1:90:be:
         89:5f:01:b8:33:1c:7f:59:b0:a6:47:eb:af:f1:34:3a:f6:5a:
         98:0c:50:98:3c:aa:f8:8e:d8:b0:81:93:18:22:b9:7e:1e:ec:
         b2:f5:c9:89:b5:b5:0e:7c:15:31:cd:5f:05:27:a3:9d:d9:20:
         8b:41:4b:7c:52:34:67:0c:65:78:0d:30:12:4c:5c:3c:06:ea:
         db:78:f5:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----