Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
File:                     DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json)
Hash identifier:          Awcelm72ydj9rS7vUtkAVbPvdl1z/Z1z24e+Uwd+2FU=
Subject key identifier:   CC:D8:30:20:59:08:C5:BA:7D:2B:66:FC:94:10:BD:D5:1B:3B:C9:A7
Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
Certificate issuer:       /CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Certificate serial:       019923A0F667B336402F3C6695EC69278546
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
Manifest number:          0705
Signing time:             Sun 07 Sep 2025 10:02:55 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:55 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:55 +0000
Files and hashes:         1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: U7KT7lCIen+cbch4NpMjpVTM0/wKMxkNdSNE3uP1/eg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:f6:67:b3:36:40:2f:3c:66:95:ec:69:27:85:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff
        Validity
            Not Before: Sep  7 10:02:55 2025 GMT
            Not After : Sep  8 10:02:55 2025 GMT
        Subject: CN=ccd830205908c5ba7d2b66fc9410bdd51b3bc9a7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:5a:d9:1a:8d:b7:e8:13:2e:d6:f4:35:ae:e9:
                    bd:dc:f8:6f:73:f7:4c:db:96:31:8b:4a:fe:41:02:
                    8d:64:de:86:f9:c0:5d:2d:5e:3f:45:e0:ec:6b:48:
                    c9:f8:8c:2a:1b:7f:bc:8e:ab:3e:b8:73:84:2f:a4:
                    e8:fd:e9:03:b2:d0:02:f2:83:f6:cc:28:b3:a5:b1:
                    f2:11:dd:9a:68:f2:b0:d4:60:a8:80:e3:26:fb:7d:
                    08:b8:4a:b3:b6:ea:ef:2c:aa:e6:55:fd:77:52:6b:
                    31:a9:0b:91:21:2d:af:89:2f:de:31:80:a8:9e:36:
                    61:7c:c6:98:67:5b:b1:87:7d:7a:f0:29:bb:65:37:
                    ec:e7:92:85:fe:62:6c:84:70:c3:6e:c1:ab:c0:99:
                    a6:2f:b4:22:0b:e5:f8:84:9a:13:05:07:9d:51:d2:
                    97:08:a8:5d:e3:81:34:cc:13:8e:60:32:ed:34:f8:
                    88:8c:ab:6e:4a:89:ba:7a:ba:ad:af:ab:23:8b:80:
                    16:04:9e:e7:68:83:bb:bc:64:57:09:42:46:7c:9c:
                    96:b5:9a:7d:28:49:3b:b9:22:f3:55:b9:7e:49:ce:
                    00:06:ed:36:0c:9f:97:dc:5f:1c:5c:03:bf:42:9a:
                    2a:b7:cc:1b:3e:82:f2:b3:d4:40:81:75:70:69:20:
                    a7:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:D8:30:20:59:08:C5:BA:7D:2B:66:FC:94:10:BD:D5:1B:3B:C9:A7
            X509v3 Authority Key Identifier:
                keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:8c:ce:10:96:60:f3:19:8c:e2:50:6e:0b:c6:4f:72:a2:45:
         cd:d1:ac:41:7a:65:d3:3f:02:6c:6b:4b:2f:ce:19:4c:0e:e1:
         b5:ba:ed:38:24:ae:9e:50:42:a8:9e:9e:5d:76:21:97:4a:88:
         14:f4:a5:63:7c:67:1c:b2:c3:b9:02:87:fb:05:f9:6d:ca:22:
         6c:8f:c5:c7:f5:6a:fe:07:52:60:fc:7f:26:46:e3:55:38:5d:
         89:43:f9:f3:9c:5d:11:47:b4:e0:36:f4:4f:6e:cd:67:4c:7e:
         c6:76:97:d3:d7:8c:8e:d6:b3:23:89:1e:8d:fd:81:d7:0a:c3:
         8c:74:16:32:8c:0d:2c:9d:6e:ae:4d:a8:9d:cb:11:2b:4f:7d:
         bc:20:31:00:2d:36:d6:ec:20:be:b9:f5:5a:27:93:c1:89:aa:
         43:6a:d3:18:43:77:3a:4f:13:65:f1:b2:c3:24:c8:7d:5c:20:
         56:8b:90:da:bd:ae:92:d2:9a:ab:19:d0:54:22:c4:45:7d:fa:
         c5:01:8a:4a:33:c1:ea:1e:79:5b:71:9d:e7:92:76:3b:aa:ae:
         51:e6:41:73:be:91:51:8a:60:fc:ba:67:f5:35:5c:35:89:91:
         29:41:cd:d2:b1:0b:a9:b4:b3:38:2f:e9:d7:9a:24:a1:65:04:
         b6:9b:02:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----