Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft
File:                     dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft (raw, json)
Hash identifier:          W06qYaz1kSFBJWL56OK/kF3ftixfsUaBtHiyJRiBS7g=
Subject key identifier:   D0:D0:8D:66:0C:67:1A:F6:7A:4B:C7:6B:DC:CC:A0:B7:84:8C:F0:54
Authority key identifier: 74:2E:57:1D:00:06:FE:7F:66:0B:03:08:CC:C6:1A:16:99:E3:49:17
Certificate issuer:       /CN=742e571d0006fe7f660b0308ccc61a1699e34917
Certificate serial:       019847783C3D3F064D3F6180F5F825C2763E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dC5XHQAG_n9mCwMIzMYaFpnjSRc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft
Manifest number:          15FD
Signing time:             Sat 26 Jul 2025 16:01:58 +0000
Manifest this update:     Sat 26 Jul 2025 16:01:58 +0000
Manifest next update:     Sun 27 Jul 2025 16:01:58 +0000
Files and hashes:         1: dC5XHQAG_n9mCwMIzMYaFpnjSRc.crl (hash: MQG5JP/WIqTOGsOfWUnDVentodr/ayHb+irHw2GwBYw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dC5XHQAG_n9mCwMIzMYaFpnjSRc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 27 Jul 2025 15:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:47:78:3c:3d:3f:06:4d:3f:61:80:f5:f8:25:c2:76:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=742e571d0006fe7f660b0308ccc61a1699e34917
        Validity
            Not Before: Jul 26 16:01:58 2025 GMT
            Not After : Jul 27 16:01:58 2025 GMT
        Subject: CN=d0d08d660c671af67a4bc76bdccca0b7848cf054
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:31:b3:68:6e:6e:45:9d:54:cd:14:c5:92:d9:
                    d4:15:55:53:11:42:04:27:56:e1:eb:30:ea:d7:da:
                    1c:b4:b0:28:81:68:26:38:08:7a:37:95:59:05:e6:
                    ed:f6:ab:7f:bc:bb:cc:6b:20:4d:50:be:94:35:fe:
                    94:cf:05:97:ca:97:a7:81:48:21:92:27:a8:92:30:
                    7e:07:9b:a2:ab:f9:86:c1:be:24:13:1a:33:54:2d:
                    98:03:3a:2e:9f:6f:c4:c9:71:e0:6c:df:21:f3:6f:
                    6e:79:38:a0:90:ca:cb:ba:dc:f2:9d:26:02:0b:cd:
                    a0:78:59:03:36:12:c3:c4:27:20:87:59:ed:fd:1d:
                    cc:16:a0:9c:2b:c3:7a:9c:00:f4:89:1e:68:04:00:
                    78:1f:96:7d:ad:91:79:07:4b:89:96:29:f6:d8:79:
                    a2:39:94:ca:0b:31:fc:28:b6:da:1e:96:b6:cb:51:
                    7b:4a:56:b9:33:47:bd:b8:15:91:45:3d:e6:af:33:
                    cd:b2:00:28:a7:75:d6:ef:12:2d:1f:85:a4:fb:98:
                    a3:65:47:18:e6:48:b8:93:aa:4b:a2:42:96:c5:49:
                    30:43:94:79:89:48:4f:c3:a8:1f:68:8e:c0:95:6a:
                    11:1e:e9:82:2f:fd:c7:6c:6e:be:a1:e3:f2:3c:15:
                    90:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:D0:8D:66:0C:67:1A:F6:7A:4B:C7:6B:DC:CC:A0:B7:84:8C:F0:54
            X509v3 Authority Key Identifier:
                keyid:74:2E:57:1D:00:06:FE:7F:66:0B:03:08:CC:C6:1A:16:99:E3:49:17

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dC5XHQAG_n9mCwMIzMYaFpnjSRc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         dc:ef:b4:5e:8f:4e:5d:15:88:90:43:70:0f:52:29:4f:34:bf:
         3e:96:22:5f:85:1e:3d:57:8c:9b:cb:62:30:4e:08:f7:b0:6d:
         9c:39:df:ce:72:57:af:33:14:1e:3f:fc:9e:60:89:1a:85:44:
         d1:51:20:cf:e4:94:6a:d4:72:f5:e4:52:2d:fd:b3:d3:41:53:
         30:3e:fc:48:4f:18:3d:55:84:f7:af:a2:d6:a8:e9:8a:c8:46:
         7f:16:97:de:9b:29:23:c8:d8:58:de:11:29:ad:c8:4e:eb:ae:
         4c:2e:3b:63:e8:38:61:84:5c:30:08:8c:36:94:e5:64:68:9d:
         e9:93:52:cb:09:32:fd:f6:3f:58:1e:eb:c0:e6:93:47:33:bb:
         79:45:bc:f5:84:03:6c:89:cb:d8:70:d0:94:47:83:44:dc:98:
         3c:f8:01:6c:ae:8a:b7:7c:99:b4:3a:bc:41:05:48:78:b1:8d:
         f5:5e:9e:a9:16:f6:4b:6b:34:10:50:41:18:2c:10:7f:9d:88:
         39:a6:36:24:8e:7b:9f:cd:d6:91:0f:f4:a9:44:22:df:e7:92:
         78:43:c9:33:1d:33:77:02:75:64:ae:e5:77:3e:ed:98:14:d7:
         4c:2e:51:ad:32:2e:99:d7:96:95:86:bd:cb:c5:e1:96:bb:04:
         af:83:2f:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----