Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
File:                     4WU0PZW9Tbww89ciSVQanUfnbZE.mft (raw, json)
Hash identifier:          CmncGn9VC/wBwfZ3kNkIqr9pGz4bRL/FHxJqEl37apQ=
Subject key identifier:   8C:1F:FC:D2:7A:A4:04:5E:9F:CC:1D:05:E4:0E:D0:3A:9F:E7:D7:90
Authority key identifier: E1:65:34:3D:95:BD:4D:BC:30:F3:D7:22:49:54:1A:9D:47:E7:6D:91
Certificate issuer:       /CN=e165343d95bd4dbc30f3d72249541a9d47e76d91
Certificate serial:       019921B254F4D80FFFED48F337E6513F3A84
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
Manifest number:          0F74
Signing time:             Sun 07 Sep 2025 01:02:39 +0000
Manifest this update:     Sun 07 Sep 2025 01:02:39 +0000
Manifest next update:     Mon 08 Sep 2025 01:02:39 +0000
Files and hashes:         1: 4WU0PZW9Tbww89ciSVQanUfnbZE.crl (hash: Vgr9vDXHGgP9CtmQAIDTtxQKQ7o2nDlixppQ1OdsiiM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:02:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b2:54:f4:d8:0f:ff:ed:48:f3:37:e6:51:3f:3a:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e165343d95bd4dbc30f3d72249541a9d47e76d91
        Validity
            Not Before: Sep  7 01:02:39 2025 GMT
            Not After : Sep  8 01:02:39 2025 GMT
        Subject: CN=8c1ffcd27aa4045e9fcc1d05e40ed03a9fe7d790
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:93:f0:9c:c8:7a:7e:91:07:13:82:38:4e:db:
                    d6:31:84:2b:e0:3e:fc:a2:8b:32:2d:e9:39:73:0c:
                    87:c0:d0:5f:29:62:97:38:83:31:bc:9e:8c:b5:9e:
                    3e:d1:0b:13:a6:6d:5d:13:ed:89:4a:83:65:cf:5d:
                    30:95:1d:72:97:3f:87:7c:7f:9f:93:e7:17:76:16:
                    ec:a6:2d:f2:15:fc:a0:a7:5d:26:08:81:d6:28:7d:
                    b5:46:5d:ca:24:7a:4b:d1:22:fb:1d:6f:40:67:e5:
                    8e:bd:d5:3a:7d:83:1e:7e:bc:96:70:7c:2f:7e:5f:
                    05:91:20:bb:f6:12:32:c3:0e:1c:a0:69:23:92:7e:
                    7a:71:4c:ac:c4:17:02:2d:94:a6:8d:a0:f1:23:c8:
                    9e:a8:e4:28:41:32:25:2a:92:d1:d2:a8:31:32:07:
                    00:fb:51:60:3e:2b:50:ae:c0:d3:da:cb:8d:75:dd:
                    a6:4f:25:f5:73:66:31:58:00:2d:bc:3f:43:81:c3:
                    f6:47:37:c2:74:36:9e:b7:73:6b:d3:89:80:ba:03:
                    86:d0:98:23:a5:d0:66:fc:62:6a:8f:01:06:13:4d:
                    f5:2d:b3:1f:dc:28:89:65:38:52:7b:75:b0:12:c8:
                    c5:1b:02:d9:6c:7e:32:0f:d2:07:74:3a:05:ee:0a:
                    1c:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:1F:FC:D2:7A:A4:04:5E:9F:CC:1D:05:E4:0E:D0:3A:9F:E7:D7:90
            X509v3 Authority Key Identifier:
                keyid:E1:65:34:3D:95:BD:4D:BC:30:F3:D7:22:49:54:1A:9D:47:E7:6D:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:46:d2:8b:1c:06:93:65:ec:a4:49:ae:d8:dd:5c:4d:ef:cc:
         a5:c4:97:28:55:39:9f:41:09:bb:09:db:72:bf:e6:c1:4c:5e:
         42:c5:e1:76:32:a5:c7:21:a4:9d:65:ff:46:c4:c8:cf:57:d2:
         87:dc:73:30:bf:1f:a0:f6:2e:43:5a:c2:27:e1:ac:e4:22:a1:
         72:f1:72:c4:3b:62:a0:96:5e:dd:7c:d7:f7:4d:20:fe:c8:15:
         96:cc:ad:e7:62:0a:04:1a:90:2a:fa:f8:ec:d4:c1:26:2f:90:
         ce:a9:92:86:ca:c8:a8:e2:ad:17:9e:26:19:10:7a:0c:9f:f6:
         7d:a9:f2:3c:ec:12:d3:80:62:f7:a6:cf:96:9f:0c:e3:47:c9:
         6d:32:b6:a3:8a:0a:6c:6f:0c:e8:48:85:03:1b:2e:34:11:02:
         7e:ba:21:f3:91:2b:bf:a1:d2:d5:37:79:eb:da:25:5c:0b:6c:
         ea:9d:c8:14:38:3f:7c:18:c0:5e:77:7a:33:f2:9c:76:aa:da:
         70:7f:5d:c7:8b:67:50:aa:64:8b:b6:74:02:1b:14:37:0c:43:
         51:d4:15:9f:2b:c5:3e:bb:b4:14:d5:fe:df:82:8e:1a:85:58:
         77:c0:fd:c4:4f:15:bc:e8:34:b9:e1:40:16:7a:1a:96:7e:45:
         e4:a0:00:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----