Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
File:                     5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft (raw, json)
Hash identifier:          Z2VCRlAq5QeFb3qoN5IOFpp03x4aAp6juqwKvQNZDQI=
Subject key identifier:   17:CD:3F:97:73:12:F4:F7:74:16:C9:BB:4D:F8:BA:07:35:BC:BB:ED
Authority key identifier: E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA
Certificate issuer:       /CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
Certificate serial:       0199244386DAA9F60E58DF04382EE5785F83
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
Manifest number:          166F
Signing time:             Sun 07 Sep 2025 13:00:29 +0000
Manifest this update:     Sun 07 Sep 2025 13:00:29 +0000
Manifest next update:     Mon 08 Sep 2025 13:00:29 +0000
Files and hashes:         1: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl (hash: 6PZhLL3aAmhAsMaOLDcBbT4q8fw7S7nfkK8Orktd26s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:24:43:86:da:a9:f6:0e:58:df:04:38:2e:e5:78:5f:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
        Validity
            Not Before: Sep  7 13:00:29 2025 GMT
            Not After : Sep  8 13:00:29 2025 GMT
        Subject: CN=17cd3f977312f4f77416c9bb4df8ba0735bcbbed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:69:69:11:1d:54:55:ff:24:6e:b6:a2:70:66:
                    b7:97:30:1a:8d:67:41:be:6d:85:42:f1:5d:50:49:
                    0b:8f:a8:f5:30:65:95:a4:9f:c6:9e:08:4e:13:2b:
                    1f:97:fc:ad:fb:9f:0a:8f:60:40:aa:b0:75:b1:60:
                    01:bd:18:e4:ae:1a:87:fd:d8:c9:37:02:d1:53:cf:
                    d0:c9:f5:cf:6f:ed:de:4a:3c:8d:7c:0c:eb:88:08:
                    28:73:6e:4a:dd:a4:4b:41:0b:84:69:8f:1b:21:2e:
                    8f:4c:be:30:e6:9d:0b:2e:e6:8e:55:d0:53:1c:fb:
                    11:1d:83:d0:b3:d6:74:b6:eb:7f:b1:90:1a:18:2a:
                    fb:d0:79:b3:4a:8a:7b:9f:8b:36:5c:df:a6:53:13:
                    ce:5f:8e:7c:51:fb:62:9a:1d:6d:bd:92:ad:89:f4:
                    7b:da:6e:91:44:3c:c7:e6:8e:d4:30:e7:1d:41:e8:
                    3b:f3:23:ef:27:7d:57:e0:b5:58:bf:a5:69:2e:29:
                    d4:5d:5d:8b:b8:56:67:26:1c:3c:7d:fa:53:d6:c8:
                    d5:c8:fd:11:a5:b6:a1:ea:96:1d:85:d2:6b:cd:36:
                    05:45:22:13:38:31:c8:41:c7:f8:b5:65:14:0d:cd:
                    e2:d7:f1:42:08:92:29:00:5d:4a:da:d2:f2:a9:4a:
                    2e:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:CD:3F:97:73:12:F4:F7:74:16:C9:BB:4D:F8:BA:07:35:BC:BB:ED
            X509v3 Authority Key Identifier:
                keyid:E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:0d:da:07:54:b7:69:5b:b5:7c:8e:44:3f:bb:91:e2:e3:ff:
         02:f3:db:65:47:ff:dd:bf:ec:b8:09:c8:f3:3c:25:4e:04:b4:
         7a:af:b9:53:a1:6d:61:ef:18:35:2b:7b:09:3e:fd:15:25:75:
         aa:c9:60:d1:45:ff:8a:fc:d4:6a:28:0b:3b:d3:0f:d5:18:62:
         ba:b1:fd:c2:ed:46:29:f9:93:05:7d:67:e8:98:18:8f:89:96:
         e0:fc:f1:7b:cc:1c:cb:4a:72:b3:f8:e2:a2:9a:1f:1b:47:3e:
         e1:14:11:ef:37:49:33:64:56:8d:f7:e6:6f:e6:11:8a:ca:95:
         6c:42:2c:b6:41:21:2c:aa:ed:04:c9:f9:d0:6d:a9:fe:4e:1a:
         ed:dc:dc:a2:bf:90:0e:3d:1b:05:e3:a3:3e:ca:79:e5:5a:1f:
         1a:4a:57:bb:ec:c5:b4:4d:a1:e7:71:e3:94:71:a2:7b:79:43:
         29:94:93:69:2b:f7:8d:38:a4:f4:39:f7:9e:1b:5b:c5:4d:79:
         fb:36:77:b7:2d:d1:86:87:cc:ec:d0:0f:3f:06:36:83:e3:f6:
         ef:77:d1:79:9e:22:26:e5:93:8d:da:f1:06:d6:d9:76:89:78:
         57:39:0b:7e:e6:7e:97:42:62:48:d3:b5:28:90:e0:89:fa:89:
         f4:df:9f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----