Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
File:                     Yefv0ZrydUeUJswZJcW8Ls7ums4.mft (raw, json)
Hash identifier:          FtJ39+y2jUwbFi8iGX7k7RQlGaiDIiAxmA8d+jFF9gk=
Subject key identifier:   45:36:16:77:A3:0F:5D:05:58:F6:5F:A7:56:FA:2D:0E:5D:E0:30:23
Authority key identifier: 61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE
Certificate issuer:       /CN=61e7efd19af275479426cc1925c5bc2eceee9ace
Certificate serial:       019922FA08915B98EB211B33837C6AD9984D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
Manifest number:          1583
Signing time:             Sun 07 Sep 2025 07:00:35 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:35 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:35 +0000
Files and hashes:         1: Yefv0ZrydUeUJswZJcW8Ls7ums4.crl (hash: IGHcUrfOhomvl5Z7Ao6DKWjfesBLKJBX797RDaE5vh8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:08:91:5b:98:eb:21:1b:33:83:7c:6a:d9:98:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=61e7efd19af275479426cc1925c5bc2eceee9ace
        Validity
            Not Before: Sep  7 07:00:35 2025 GMT
            Not After : Sep  8 07:00:35 2025 GMT
        Subject: CN=45361677a30f5d0558f65fa756fa2d0e5de03023
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:4b:6f:0e:b2:67:ad:47:ac:4c:61:b7:a7:46:
                    7d:d5:21:1c:4b:88:55:d5:eb:71:96:e2:2e:41:c9:
                    f6:68:f4:c2:27:02:ff:6e:6b:6f:32:54:a0:e8:3b:
                    ad:42:a0:f0:f0:a7:64:53:0c:92:b4:cb:fb:77:3d:
                    ac:90:0f:4b:ea:f8:a4:07:83:95:fc:0c:96:f8:1f:
                    9e:03:84:47:d8:2d:e2:d7:12:61:a9:e3:40:a4:4d:
                    63:14:45:0f:88:7c:37:70:9f:11:1c:b6:c6:ac:61:
                    51:f7:b2:15:48:c7:36:a4:62:25:79:bc:eb:07:54:
                    22:9f:23:a2:27:51:16:dc:03:c1:4e:29:b2:7d:e3:
                    d6:6b:c1:65:86:cc:96:e8:52:8c:4d:25:f0:08:0f:
                    4f:46:38:fb:01:48:12:1a:b0:58:40:8d:3d:9b:f6:
                    fe:fa:02:5b:5c:97:5b:56:90:fb:81:4d:6b:9e:a6:
                    b0:64:8a:94:e2:ef:a2:85:9c:2f:70:02:1b:75:c4:
                    ee:30:2f:21:50:7c:ab:f6:58:9b:76:78:a4:f2:7d:
                    1a:66:a7:f4:c7:05:4c:7e:ab:d4:b5:1e:a1:d6:89:
                    14:73:dd:9c:bd:12:e7:5c:ef:23:f1:ff:9e:9b:e7:
                    de:f3:6f:e5:66:fd:c7:90:83:c9:db:36:ee:94:09:
                    af:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:36:16:77:A3:0F:5D:05:58:F6:5F:A7:56:FA:2D:0E:5D:E0:30:23
            X509v3 Authority Key Identifier:
                keyid:61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:79:9c:1b:2c:e5:3f:17:1d:33:7f:ee:08:99:51:c9:8e:48:
         1e:8a:47:8b:82:14:f9:ed:d8:47:e5:04:14:38:d1:86:cd:c2:
         f1:82:13:c7:57:cf:5e:03:4e:ea:b7:3e:9c:08:b8:be:5c:8e:
         0b:a9:7e:10:64:18:d4:1b:8e:96:66:f9:45:c8:9e:a3:35:ba:
         ec:8a:d3:50:f6:a8:83:32:d7:b5:cc:d2:55:f8:43:64:d5:71:
         e3:90:db:29:d0:41:75:ef:73:d3:fe:92:0a:43:11:a2:10:aa:
         75:98:e6:a8:b5:47:f6:d9:e6:ae:33:38:d1:dd:c3:b6:3f:9f:
         e3:b6:96:de:b6:fd:c1:f8:cf:f4:06:da:d3:b3:01:23:3b:4d:
         41:bb:03:49:0b:38:cc:1f:c6:e7:72:85:1d:b9:85:5d:8e:2a:
         c8:38:56:96:71:f8:1a:28:32:98:c8:f4:e3:15:2c:ba:bb:bf:
         f1:a7:54:36:07:1f:67:7a:e0:21:52:7b:f3:7c:b7:92:3c:ff:
         ef:23:0c:51:1d:59:2d:86:5e:40:1a:e5:1f:ab:1d:77:1c:34:
         16:bd:38:cc:a4:df:03:61:89:3f:51:cb:f8:c3:21:fe:29:ed:
         40:54:5a:2a:94:0d:7a:b7:48:f6:e1:8b:3c:39:43:b5:87:7d:
         3f:76:7d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----