Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
File:                     eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft (raw, json)
Hash identifier:          6Z1t5VzkyxpZZ0kfpMPJl7q24P+SRys5LVwl1FFit+Q=
Subject key identifier:   7F:DC:80:16:0C:79:DF:03:A2:4C:0F:0E:CE:47:E2:AE:31:1A:17:B0
Authority key identifier: 78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C
Certificate issuer:       /CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
Certificate serial:       019923A09E2DD4E33C61F5D860429A8D2A61
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
Manifest number:          1670
Signing time:             Sun 07 Sep 2025 10:02:32 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:32 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:32 +0000
Files and hashes:         1: eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl (hash: oXp207v0BbWHi0wWIAnaRIEZ/Q8OCKVh63sc0/SA7oE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:9e:2d:d4:e3:3c:61:f5:d8:60:42:9a:8d:2a:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
        Validity
            Not Before: Sep  7 10:02:32 2025 GMT
            Not After : Sep  8 10:02:32 2025 GMT
        Subject: CN=7fdc80160c79df03a24c0f0ece47e2ae311a17b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:c0:83:09:e5:8b:11:64:c3:f4:2a:f7:9b:19:
                    a4:79:3f:3c:86:7e:87:6a:ae:e5:9a:2c:d4:e1:bf:
                    73:d2:0b:d0:71:0b:ae:5e:a2:7c:69:37:27:26:38:
                    06:3e:b2:8d:56:2f:d8:51:56:68:4e:1d:07:7f:3d:
                    e4:9d:55:ca:8f:d1:60:29:c0:6b:35:42:32:3a:a9:
                    bf:1d:44:da:6f:36:10:dd:d2:55:6f:54:36:b3:26:
                    95:2e:1e:77:88:1a:3f:0e:65:ba:85:b9:be:8f:cb:
                    f0:50:ef:fc:9f:56:52:b5:10:ad:86:ce:7e:32:dd:
                    c2:67:d9:d6:e3:4a:9c:16:00:0d:99:b3:74:db:79:
                    12:fb:af:2e:f2:54:32:63:33:76:a3:fd:e8:91:5b:
                    6b:86:ca:fb:11:9e:cd:da:9d:ed:6b:da:92:d6:f5:
                    33:fa:a7:bc:83:2c:a8:a0:0b:fb:15:60:75:4d:19:
                    49:2d:c0:60:7b:b6:d8:2b:14:28:82:d9:a8:06:fa:
                    78:3a:97:b1:69:23:48:10:da:12:33:5a:23:6f:76:
                    36:76:c9:c1:e4:15:0b:7c:1b:1c:e1:aa:a2:42:90:
                    6b:59:fb:63:c2:e1:f2:ea:07:a8:c4:dd:f1:25:4c:
                    51:c1:78:8d:3c:69:00:87:4c:e3:22:e5:20:fd:a5:
                    ad:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:DC:80:16:0C:79:DF:03:A2:4C:0F:0E:CE:47:E2:AE:31:1A:17:B0
            X509v3 Authority Key Identifier:
                keyid:78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:e1:b2:1f:87:0b:d5:ea:25:ff:d7:ce:43:63:dd:65:36:3f:
         bc:98:c9:2c:ae:db:2b:4b:32:26:c8:9a:e3:88:54:82:de:92:
         5e:c6:11:f5:66:12:1f:5b:b1:74:8c:ab:77:73:3e:8e:68:f4:
         86:5c:64:af:ee:ee:6b:68:61:9c:bf:35:69:3a:0d:0d:3a:ec:
         21:97:63:48:35:be:aa:f5:af:2b:28:62:d2:38:fb:8f:d3:82:
         f0:91:58:eb:fa:6a:22:ed:5f:07:83:35:7a:43:78:22:1f:13:
         a6:c9:79:23:27:8d:c9:57:4e:81:19:b4:d6:0d:ee:91:c6:62:
         12:6b:f7:b2:35:c0:c4:bb:c4:2a:79:23:7d:d3:e7:8e:f0:fa:
         67:0d:20:b0:38:e3:7b:bd:78:7c:da:06:28:0c:93:b8:59:b4:
         7d:b8:2e:1b:53:c7:0d:d0:f9:b7:23:d4:7c:be:02:a3:81:70:
         62:c3:67:c7:7f:c1:58:e9:97:91:2b:b1:7d:88:dc:fa:61:c6:
         30:fd:f0:d5:84:0c:19:90:a2:06:73:a2:c9:75:19:53:f3:cf:
         86:2c:70:59:d5:3c:21:5e:bd:32:ec:ba:47:79:21:56:ac:f3:
         fe:58:64:08:ed:6c:4c:5f:1f:00:94:07:ab:83:da:5a:a9:1b:
         68:ed:25:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----