Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
File:                     5_y3rNVfY0m52BRheGwSRY-G9y4.mft (raw, json)
Hash identifier:          /H9JpuWNmvqNDiedIa/S8F2hN+mA3PHY2BwURFqmVSc=
Subject key identifier:   75:C2:FE:9F:DE:FC:51:77:08:B6:7D:77:FD:0C:DB:1A:6A:50:FE:38
Authority key identifier: E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E
Certificate issuer:       /CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
Certificate serial:       01975D25ECCAF4DC24850D7C8C84D2E38431
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
Manifest number:          1583
Signing time:             Wed 11 Jun 2025 04:00:55 +0000
Manifest this update:     Wed 11 Jun 2025 04:00:55 +0000
Manifest next update:     Thu 12 Jun 2025 04:00:55 +0000
Files and hashes:         1: 5_y3rNVfY0m52BRheGwSRY-G9y4.crl (hash: xhKEH0vbV0k6OfjzK6Kk2zKUh/B3m5ROwNcfMdcGCn4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 23:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:25:ec:ca:f4:dc:24:85:0d:7c:8c:84:d2:e3:84:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
        Validity
            Not Before: Jun 11 04:00:55 2025 GMT
            Not After : Jun 12 04:00:55 2025 GMT
        Subject: CN=75c2fe9fdefc517708b67d77fd0cdb1a6a50fe38
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:a3:fd:ce:4d:68:42:9d:36:65:37:74:9d:1b:
                    b0:ec:fc:72:41:e7:51:64:0f:33:a2:e9:da:13:ad:
                    fb:89:b8:4f:52:69:16:39:c0:69:0f:9a:8a:f5:73:
                    0b:52:2d:79:a8:3a:86:d2:d0:07:d8:4c:f6:88:f6:
                    e4:10:bb:53:c2:67:8c:c8:1e:52:12:b1:58:79:52:
                    9d:27:71:b3:9e:24:4e:8f:51:af:b4:0f:e0:24:49:
                    ab:ae:97:ec:ce:23:c2:56:bc:d8:d5:74:d5:56:16:
                    c6:50:dc:a6:1b:eb:d2:c0:c2:2f:dd:57:4c:5d:a8:
                    46:eb:20:07:e5:4c:44:bc:23:8f:14:9e:82:12:58:
                    3a:3d:ad:8b:6a:89:80:dd:32:16:52:62:ba:aa:53:
                    42:76:69:08:4d:5a:7f:83:a8:66:e9:67:18:53:b8:
                    4e:5d:68:3e:0e:a9:b9:9a:4d:f6:dc:1b:5f:9f:46:
                    b1:c8:c9:b1:21:0a:98:2b:01:eb:10:2a:e5:51:81:
                    10:8b:35:0e:22:15:df:63:bb:9a:be:10:38:b4:e8:
                    f0:19:59:0d:14:9c:49:a4:14:6a:d8:7c:1b:d7:19:
                    62:6a:ab:4b:da:63:f7:34:f9:c4:f2:1e:77:3f:ac:
                    74:6f:84:7d:6f:9b:29:a6:ec:08:81:11:5a:8c:e8:
                    94:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:C2:FE:9F:DE:FC:51:77:08:B6:7D:77:FD:0C:DB:1A:6A:50:FE:38
            X509v3 Authority Key Identifier:
                keyid:E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:bd:36:8e:fd:4a:55:f2:ec:26:55:ea:87:59:29:c4:92:1c:
         4c:8d:e5:f0:5e:db:79:1b:a0:91:ef:50:b4:19:91:f1:ff:06:
         b3:d5:f6:81:f2:fe:af:22:3d:54:f8:8f:c9:02:20:9a:5e:5c:
         b3:a7:35:c2:55:07:02:cd:04:39:ee:8d:d6:f8:a8:72:75:c3:
         d5:0f:39:6e:7f:09:40:31:07:ee:1f:59:e0:0c:8c:bf:ae:d0:
         e8:bc:3f:b6:14:e3:74:ef:2d:5a:0c:46:bd:57:64:b4:ec:56:
         f9:21:45:07:6d:78:21:72:f9:f9:c7:e5:24:0f:1c:e3:86:94:
         c8:14:c3:a8:01:f1:f5:f9:ae:9c:c9:68:a9:51:3f:c7:63:77:
         80:4f:b5:a7:05:14:a7:28:fe:e3:04:76:63:e9:1f:e1:d0:5e:
         e6:ca:15:c6:8f:5a:d9:92:9d:37:ed:cf:92:ac:88:2b:e3:5c:
         22:6a:5d:f6:8e:57:b6:5e:f4:2d:3b:e2:6f:34:0b:3d:bb:21:
         ca:df:a0:25:d5:64:41:f5:e8:af:cc:b6:70:24:29:76:26:d8:
         06:4a:30:ef:51:a3:09:15:e3:4d:9f:da:e9:96:97:73:75:db:
         f2:e5:8c:15:da:1f:72:38:2a:7c:8c:77:05:f5:c1:f1:e1:3f:
         92:44:bc:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:55:53 2025 by rpki-client