Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
File:                     _e3ZOtbKqmCtSfD5N32Kq_h34ts.mft (raw, json)
Hash identifier:          0UhMgQ3KjImthSNMMHcHIgQ/ybOVpROM50uatPjwATI=
Subject key identifier:   BA:35:C2:18:6C:2D:69:80:03:58:F2:C1:4C:A6:1A:80:9F:90:49:57
Authority key identifier: FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB
Certificate issuer:       /CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
Certificate serial:       0199180AAA66424B4D1C0C6B075BAC8A49E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
Manifest number:          07EB
Signing time:             Fri 05 Sep 2025 04:02:56 +0000
Manifest this update:     Fri 05 Sep 2025 04:02:56 +0000
Manifest next update:     Sat 06 Sep 2025 04:02:56 +0000
Files and hashes:         1: _e3ZOtbKqmCtSfD5N32Kq_h34ts.crl (hash: EA7X7pWDKspHBIFgP3aa79siJoXzNs+8v6gzs7jqd9M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:18:0a:aa:66:42:4b:4d:1c:0c:6b:07:5b:ac:8a:49:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
        Validity
            Not Before: Sep  5 04:02:56 2025 GMT
            Not After : Sep  6 04:02:56 2025 GMT
        Subject: CN=ba35c2186c2d69800358f2c14ca61a809f904957
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:e4:d6:23:45:d9:b9:40:82:30:cd:88:76:e9:
                    c4:15:7f:51:53:af:83:fd:44:87:e8:2d:17:4a:29:
                    96:3b:56:a2:af:ff:77:f2:dc:17:17:77:ab:96:8c:
                    d1:d5:0a:4f:8e:82:b6:5a:08:f1:7a:cd:4e:d1:99:
                    0c:f8:9e:53:df:fc:68:12:8a:69:46:aa:3c:23:37:
                    f6:81:56:c8:3f:7e:21:f4:87:27:9a:61:8f:55:5e:
                    1d:99:61:55:63:72:4f:87:8c:3f:04:e1:89:4d:fc:
                    94:eb:48:da:5e:27:ec:7c:77:0d:53:dc:43:76:ae:
                    79:73:7f:d1:e5:33:97:e5:4e:5a:29:97:27:04:71:
                    c8:a3:ed:dd:cf:d7:8a:57:ea:c1:e1:e2:97:1f:72:
                    54:01:04:92:50:9b:16:69:14:d3:bd:78:84:2f:cb:
                    7a:03:c2:5f:09:b3:4f:fa:24:b0:2e:31:ab:73:80:
                    db:65:82:a9:e0:f8:a4:bf:8e:88:4a:80:f6:91:2f:
                    7b:ee:1c:1e:bb:19:95:cb:3a:f1:07:94:6d:6a:32:
                    e4:5b:08:1e:fe:95:ae:35:32:34:30:d3:63:1c:a0:
                    aa:6a:23:c0:15:00:72:65:c5:89:80:f1:cc:e7:0c:
                    f7:12:7a:ab:34:65:4a:c3:f9:02:50:f0:81:ee:86:
                    d5:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:35:C2:18:6C:2D:69:80:03:58:F2:C1:4C:A6:1A:80:9F:90:49:57
            X509v3 Authority Key Identifier:
                keyid:FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:1c:b9:7e:ac:e2:9d:30:07:d2:21:4a:5d:5e:e2:83:bd:9e:
         a6:3c:76:97:c2:3f:29:58:d3:e2:c2:e9:85:97:84:b1:6e:92:
         0b:78:01:5f:54:8d:d8:7f:00:c9:3b:7c:49:af:16:04:a5:9f:
         7a:04:a2:8c:0c:c8:24:b8:c2:e6:d1:e9:e5:d0:c4:9e:ce:96:
         3e:a5:44:4c:be:b3:48:7b:88:a4:1c:a5:ce:3c:27:5a:95:08:
         3f:2c:96:ba:ef:f8:68:af:78:92:a3:2d:19:a4:65:e0:88:98:
         1b:e4:a6:b6:b4:ab:44:af:39:18:11:64:62:96:90:b8:9c:c6:
         09:53:19:6b:f0:ea:81:ea:96:c3:06:ed:d9:9f:fe:3a:8d:18:
         b0:77:eb:a2:d0:6a:0f:06:ee:0e:c3:d5:c9:70:46:d8:2b:64:
         0c:96:bb:26:f6:df:0b:61:29:6a:ef:0c:c8:ea:fc:5c:85:ea:
         a0:6e:33:c1:60:d8:ab:ae:bb:96:ce:11:98:0a:54:b4:f3:83:
         a9:8d:d9:f4:08:28:31:b5:31:7c:af:21:c6:e7:e2:05:d4:79:
         7b:36:9e:04:dd:29:f6:db:99:e4:8f:df:65:0f:5e:b5:f6:ac:
         5d:05:e8:97:7a:d0:16:5b:0f:87:9f:13:22:94:74:7a:14:84:
         2a:c9:c1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----