Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
File:                     5-aiybui7N1AdLMVN1mDXoI6uOQ.mft (raw, json)
Hash identifier:          aimYXarpezRmdtCCJW+QXKqUnD1qbGL1l+WkxXxIy8w=
Subject key identifier:   83:AD:BD:C4:4A:C8:D3:5C:55:A9:0C:68:0B:15:35:4E:10:BE:F0:E3
Authority key identifier: E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4
Certificate issuer:       /CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
Certificate serial:       0199239EE4EA38C9B54FBF04F016C700607E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
Manifest number:          0D52
Signing time:             Sun 07 Sep 2025 10:00:39 +0000
Manifest this update:     Sun 07 Sep 2025 10:00:39 +0000
Manifest next update:     Mon 08 Sep 2025 10:00:39 +0000
Files and hashes:         1: 5-aiybui7N1AdLMVN1mDXoI6uOQ.crl (hash: 7kGDuG8oKDD3jSvuNSEUhzhjApcl+fsAia6DtKz/t4w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:9e:e4:ea:38:c9:b5:4f:bf:04:f0:16:c7:00:60:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
        Validity
            Not Before: Sep  7 10:00:39 2025 GMT
            Not After : Sep  8 10:00:39 2025 GMT
        Subject: CN=83adbdc44ac8d35c55a90c680b15354e10bef0e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:38:67:98:e1:11:8d:a5:40:64:6e:51:a2:6b:
                    f8:7a:4d:5c:c6:c4:29:33:1b:f6:d4:27:54:29:cf:
                    96:9e:88:01:c3:45:45:2f:c7:40:ed:45:b9:fb:ff:
                    c3:70:86:56:53:09:26:6c:15:4a:1b:28:29:ca:f6:
                    f1:ca:28:8c:b6:e3:b4:b5:42:cc:42:ad:db:2e:f7:
                    80:15:01:02:e5:eb:a3:e2:04:d7:aa:5e:c4:6e:dd:
                    0c:39:79:96:5d:69:34:06:83:45:35:16:61:8e:73:
                    1b:8c:ba:e4:11:a4:e2:16:47:cf:4c:23:ea:27:10:
                    1c:f5:7b:13:8e:42:51:14:19:3b:57:38:98:5a:8d:
                    40:ef:7a:5f:10:32:70:f3:9d:32:9d:ce:21:d9:ec:
                    e7:b2:c1:96:00:ed:25:fc:ae:bc:51:56:ec:05:12:
                    88:1c:17:ea:3b:ef:6a:17:64:dc:c3:72:56:28:58:
                    4b:9c:69:e1:ac:6d:ef:b7:c6:91:27:ae:c5:e5:cd:
                    c0:b1:30:61:57:6d:0a:c5:8a:a0:98:cc:00:e6:75:
                    30:cf:a6:ef:de:81:d7:ab:bd:ae:f2:50:87:02:7e:
                    e3:a8:29:32:30:68:85:7d:91:ac:c4:1e:b9:05:d9:
                    22:82:d9:d5:45:08:58:58:f0:73:27:09:04:a0:6c:
                    e9:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:AD:BD:C4:4A:C8:D3:5C:55:A9:0C:68:0B:15:35:4E:10:BE:F0:E3
            X509v3 Authority Key Identifier:
                keyid:E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:be:8f:f8:57:7b:61:22:a6:b3:f2:03:09:ae:f4:b2:d8:6e:
         37:15:29:80:f1:90:14:d5:8f:ec:9e:1d:f8:fa:bc:15:1b:ab:
         c5:30:1e:75:ad:c0:0a:4a:f5:c8:ed:33:d7:63:89:8d:d9:25:
         ab:43:a1:2e:5d:b8:0e:8e:18:c2:9b:19:15:47:38:fe:1f:cf:
         41:dd:19:aa:3c:f1:aa:a5:0d:66:2a:ab:e5:1c:ef:ef:ef:8c:
         65:69:fa:b1:bb:fe:dc:b9:50:e4:9e:9b:26:b1:df:c1:01:76:
         ef:db:0e:b8:18:5f:77:2e:b6:a2:24:95:af:f5:7e:dc:f5:f4:
         65:ea:55:c3:aa:a2:00:e1:80:5b:7c:b5:fb:c0:04:7c:6a:dc:
         f5:2e:60:97:09:17:ee:c4:cb:41:3a:a0:9b:02:f7:fa:7e:38:
         f2:cd:e9:4b:8f:3b:9e:02:bc:ce:bc:5a:d0:97:39:8a:12:7b:
         8f:84:24:73:d4:7f:cb:f0:05:31:58:1d:2b:a2:da:00:82:32:
         e9:17:41:20:55:61:08:d6:54:80:d7:9f:36:1a:a3:66:4b:86:
         71:5d:19:bf:b6:96:38:b2:fd:b5:81:56:3a:7e:26:88:1d:6b:
         5d:e2:a1:56:a1:5c:b7:b1:31:01:0f:c9:f6:8d:27:79:92:a0:
         67:4a:cd:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----