Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft
File:                     Jnzx804vAQuQLcFCRVtrtzJs8I0.mft (raw, json)
Hash identifier:          g7Nt4E2yKNhxzMbswfcPmjvZmk0/UMEVHpJB6GAbp7Q=
Subject key identifier:   AD:4A:0B:55:BE:8B:18:C8:3E:5C:C2:48:65:B4:DF:FF:59:3A:9A:62
Authority key identifier: 26:7C:F1:F3:4E:2F:01:0B:90:2D:C1:42:45:5B:6B:B7:32:6C:F0:8D
Certificate issuer:       /CN=267cf1f34e2f010b902dc142455b6bb7326cf08d
Certificate serial:       0199233187AF92D740B30871FABBA625C5DF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Jnzx804vAQuQLcFCRVtrtzJs8I0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft
Manifest number:          1673
Signing time:             Sun 07 Sep 2025 08:01:12 +0000
Manifest this update:     Sun 07 Sep 2025 08:01:12 +0000
Manifest next update:     Mon 08 Sep 2025 08:01:12 +0000
Files and hashes:         1: Jnzx804vAQuQLcFCRVtrtzJs8I0.crl (hash: hpyhjRh7E8mx01cYLSXY9Fh20jUKT3BDzTylV7T/lyc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Jnzx804vAQuQLcFCRVtrtzJs8I0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:31:87:af:92:d7:40:b3:08:71:fa:bb:a6:25:c5:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=267cf1f34e2f010b902dc142455b6bb7326cf08d
        Validity
            Not Before: Sep  7 08:01:12 2025 GMT
            Not After : Sep  8 08:01:12 2025 GMT
        Subject: CN=ad4a0b55be8b18c83e5cc24865b4dfff593a9a62
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:d5:57:ca:3b:6d:8b:40:5d:dd:3a:28:2c:80:
                    1f:63:01:d9:88:35:04:f0:28:19:38:22:98:67:9b:
                    88:21:fa:63:9a:83:22:6f:b6:34:0b:a9:1c:cf:d3:
                    fb:20:4f:47:5e:ee:77:f3:94:20:97:2c:e8:5b:c7:
                    e9:71:65:a3:49:8d:ce:1e:df:03:f6:d1:50:90:ac:
                    fb:f0:b3:9e:fe:f9:46:11:f8:81:57:41:82:a3:03:
                    1d:53:85:39:1d:2c:2f:7b:55:ee:b0:8b:84:7a:50:
                    4a:8f:76:d5:4e:c6:c9:ed:c7:34:e6:31:03:c3:db:
                    78:e9:8a:d1:db:9b:87:6d:7b:7f:c7:e0:95:4d:ee:
                    85:2e:71:6a:05:e5:63:8d:40:ed:ee:1a:93:07:51:
                    ba:84:bf:c5:61:f9:31:49:f6:15:29:36:17:4b:4c:
                    2a:ce:c7:4f:89:56:73:dd:d6:91:55:21:b2:10:18:
                    5c:47:6e:97:22:3c:51:24:fb:80:cd:b3:1d:72:dd:
                    45:85:d0:fd:46:94:33:e3:ee:9e:ae:16:15:18:de:
                    84:76:41:8f:6c:8f:ea:2d:f8:93:42:fa:4f:17:17:
                    bf:33:71:25:7e:00:a8:9f:38:ea:35:ca:00:54:ba:
                    08:44:c4:05:4e:16:47:b8:1e:6c:34:41:9b:e1:b9:
                    bf:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:4A:0B:55:BE:8B:18:C8:3E:5C:C2:48:65:B4:DF:FF:59:3A:9A:62
            X509v3 Authority Key Identifier:
                keyid:26:7C:F1:F3:4E:2F:01:0B:90:2D:C1:42:45:5B:6B:B7:32:6C:F0:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jnzx804vAQuQLcFCRVtrtzJs8I0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:6a:e6:a0:e0:92:04:f3:a2:bc:40:fd:2f:37:59:a5:f5:15:
         fd:31:7d:df:cd:2e:c7:e8:90:21:38:7c:bd:9d:6c:b6:6d:9d:
         c1:05:f0:57:fe:3c:4c:74:51:89:e4:1f:f3:68:d8:a0:28:46:
         a8:ed:a1:3b:b9:34:1e:f6:83:fc:97:88:19:2b:a9:c2:5d:ef:
         01:cb:f6:ad:b8:ba:b8:b1:bb:07:4d:07:bc:94:ea:c2:1c:57:
         61:c9:ff:1c:9e:89:d9:f2:83:dd:8f:fc:3d:f2:68:31:f0:a8:
         e8:b4:dd:1f:0e:f6:c5:0b:a4:47:fa:5a:cc:0e:59:34:a7:f0:
         2b:ed:f2:1e:c1:85:78:84:3a:f5:8b:8f:a0:77:f7:c0:2c:f1:
         09:ab:28:bb:2d:e2:ef:e9:e1:49:47:9c:e4:50:db:1a:d8:0a:
         a6:2d:75:90:42:44:7a:f7:e9:d2:34:35:fb:7e:a7:02:06:5a:
         97:a6:f4:7b:70:06:ea:e6:fd:16:92:43:8e:0d:50:a9:c5:9c:
         1f:6b:9e:23:e6:a3:76:fe:66:54:07:70:89:b3:8a:f7:f0:86:
         d2:f9:d9:3b:62:a0:3d:cc:d3:79:7c:45:6e:e5:26:3d:0e:52:
         f2:62:e8:f2:df:23:83:17:99:a7:8d:c0:aa:b7:9f:7d:10:91:
         23:a9:37:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----