Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft
File:                     THHp8j7qymjHIcvkKAYQC3XhV3A.mft (raw, json)
Hash identifier:          McoJTlIocX5C+NxESBd1K3e4oYXjhC582GY/1y5L+pU=
Subject key identifier:   49:F3:A0:79:01:B1:9B:24:FD:B0:93:46:48:A8:30:40:DD:5E:00:94
Authority key identifier: 4C:71:E9:F2:3E:EA:CA:68:C7:21:CB:E4:28:06:10:0B:75:E1:57:70
Certificate issuer:       /CN=4c71e9f23eeaca68c721cbe42806100b75e15770
Certificate serial:       019922FA31A4BE72FB6081A4DC00AB726812
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft
Manifest number:          052F
Signing time:             Sun 07 Sep 2025 07:00:45 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:45 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:45 +0000
Files and hashes:         1: THHp8j7qymjHIcvkKAYQC3XhV3A.crl (hash: 7aBsn9z9d0rjt9CoGcHfF2fWLTNcjbkoVvZ24+Fpxag=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:31:a4:be:72:fb:60:81:a4:dc:00:ab:72:68:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4c71e9f23eeaca68c721cbe42806100b75e15770
        Validity
            Not Before: Sep  7 07:00:45 2025 GMT
            Not After : Sep  8 07:00:45 2025 GMT
        Subject: CN=49f3a07901b19b24fdb0934648a83040dd5e0094
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:1f:06:2a:5e:a0:0a:a4:38:a7:b9:64:cb:c7:
                    6a:c5:fd:74:6c:51:2c:55:ea:c5:1d:15:de:f8:7e:
                    e0:d9:25:aa:a2:e6:87:fa:1d:db:ef:a5:2d:07:d0:
                    91:a6:72:02:06:16:21:79:95:77:24:31:0f:a3:ff:
                    a4:50:a9:aa:2d:92:a4:1c:be:2c:b6:ce:f2:b4:fa:
                    f1:f4:4f:cb:fa:08:36:e7:a0:89:73:a3:48:ba:de:
                    2b:3e:32:7d:87:2f:32:0a:4f:0b:d4:1c:3d:ae:54:
                    f3:61:e8:e5:2d:6b:56:8d:26:1f:86:37:0d:a5:e6:
                    19:45:59:97:b0:c7:ce:2e:25:eb:7c:c8:57:9e:b2:
                    e4:5e:45:57:c8:ef:e5:48:56:a8:06:a5:03:9b:96:
                    f5:60:10:2f:8e:25:77:70:d6:a8:d4:0d:f7:75:e3:
                    50:39:58:ee:2d:f4:f7:7b:ec:96:8b:0a:9a:37:48:
                    f8:ca:4b:91:93:ed:8b:9d:86:30:02:9b:8d:2f:d3:
                    dc:60:67:87:83:f2:de:a7:54:8a:96:11:4f:af:44:
                    f8:8c:a0:d5:13:63:90:c7:43:0e:21:a9:ce:06:fe:
                    01:a8:4c:73:f2:6d:a8:a4:25:c2:a0:4a:e1:d9:4d:
                    47:55:0c:92:6d:84:25:bb:ac:83:cd:17:b2:6f:f0:
                    dc:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:F3:A0:79:01:B1:9B:24:FD:B0:93:46:48:A8:30:40:DD:5E:00:94
            X509v3 Authority Key Identifier:
                keyid:4C:71:E9:F2:3E:EA:CA:68:C7:21:CB:E4:28:06:10:0B:75:E1:57:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:fb:24:6b:aa:a2:04:dc:e8:71:97:eb:bb:94:c2:9c:12:d4:
         bb:38:2e:90:10:6a:16:5f:91:74:c7:ac:7d:c2:31:36:23:2a:
         f8:dc:84:d1:8c:e9:79:ed:7b:d5:43:9f:e7:17:27:91:c5:4a:
         99:1e:38:5f:c0:b4:8c:1f:31:20:aa:6f:36:9a:fd:df:6a:06:
         44:40:ed:44:45:65:71:70:10:3c:d7:dd:31:6b:d1:99:4b:a1:
         9e:4a:e8:61:b7:2c:ab:40:b2:1b:9f:21:0f:b5:17:a5:de:ab:
         cf:54:54:f9:82:46:12:09:b5:6f:e9:66:f4:69:86:b2:20:8d:
         a8:0e:77:9d:4e:75:83:cd:5a:c2:5f:b5:af:ed:ef:4f:53:ca:
         6b:91:d4:76:29:82:36:80:30:23:73:68:ce:1c:0d:85:64:85:
         3c:ce:27:77:7a:1e:65:bf:00:41:5f:d6:15:22:c2:f5:2c:71:
         4f:b5:16:32:e2:9a:21:c3:5d:0f:51:29:99:e9:44:e6:d4:a2:
         b5:1e:3c:30:99:fb:df:9e:fc:7e:6f:9f:af:e6:17:22:b6:6d:
         83:cb:2c:11:a8:ea:e0:8b:3b:5e:3a:28:93:6b:1d:dd:0d:41:
         f5:4b:4c:8c:05:c2:99:97:d1:bc:43:f3:95:4b:55:86:55:4a:
         20:02:f2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----