Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
File:                     Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft (raw, json)
Hash identifier:          eYaT8vZlbiOJim4S6in5qQv1ArCtySzClurC24JaffU=
Subject key identifier:   47:8C:F0:81:29:14:6F:8E:70:1B:66:17:45:AE:8C:F7:EB:D2:26:31
Authority key identifier: 62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
Certificate issuer:       /CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Certificate serial:       019935000176484BAA6F632B3AFDCF22AF49
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
Manifest number:          0764
Signing time:             Wed 10 Sep 2025 19:00:16 +0000
Manifest this update:     Wed 10 Sep 2025 19:00:16 +0000
Manifest next update:     Thu 11 Sep 2025 19:00:16 +0000
Files and hashes:         1: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl (hash: q8AwebgKq1Qkaur1JsNQcwcIjnNLtf8Zd5Ua8w34nuQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 11 Sep 2025 19:00:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:35:00:01:76:48:4b:aa:6f:63:2b:3a:fd:cf:22:af:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
        Validity
            Not Before: Sep 10 19:00:16 2025 GMT
            Not After : Sep 11 19:00:16 2025 GMT
        Subject: CN=478cf08129146f8e701b661745ae8cf7ebd22631
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:62:b2:1d:fc:00:b7:30:43:f8:cc:7d:1b:db:
                    e1:ae:89:4a:71:74:f0:eb:b4:e4:48:59:35:a5:ee:
                    18:0a:b7:99:9a:03:da:68:18:99:8d:5b:53:c7:5b:
                    06:e9:d9:cf:b1:e4:95:df:9e:48:d2:53:cb:cf:fb:
                    36:74:e4:48:4c:f1:58:55:e0:54:71:b8:03:21:97:
                    11:86:1b:ab:3b:e3:46:08:72:ad:82:90:30:d3:d9:
                    34:5a:5c:1b:ca:cd:b5:8a:07:d3:27:d1:fd:1d:f1:
                    6e:a8:e7:52:92:c7:a4:06:5c:56:8c:98:a9:16:d3:
                    d2:9a:8a:58:9c:07:ef:f2:89:3f:a0:5e:76:f9:52:
                    dc:af:7e:c2:ce:ab:94:10:b3:ed:ef:37:db:5a:58:
                    85:09:d2:64:fd:af:b3:43:f4:42:3b:3b:79:c0:43:
                    34:51:a8:9b:60:e9:3e:de:5f:b9:6a:e8:a2:c9:f4:
                    93:94:ee:47:50:8d:80:a8:bd:f2:e7:db:22:2c:47:
                    21:b9:f3:9e:43:3f:a0:9a:54:7f:3c:7c:82:2c:1c:
                    a4:6d:4b:14:87:fd:bf:a5:e3:83:3a:6a:c8:51:68:
                    9d:a3:ea:ec:40:92:88:8e:e7:b0:16:3a:f3:fd:7f:
                    df:b0:d5:0e:4d:6a:ad:cd:30:54:dd:85:f7:66:8a:
                    49:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:8C:F0:81:29:14:6F:8E:70:1B:66:17:45:AE:8C:F7:EB:D2:26:31
            X509v3 Authority Key Identifier:
                keyid:62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:5f:a4:e1:d0:f1:e8:4e:78:58:a6:21:47:9a:07:1b:35:ba:
         3d:03:d8:8d:d6:0d:78:f2:cc:7a:80:ea:4d:b6:dc:2f:43:48:
         f5:59:59:c6:ef:64:4f:eb:15:d5:ec:73:97:f2:5f:fb:0c:52:
         6a:c8:7a:17:ca:ff:bd:bb:d9:6e:26:5c:85:fc:fe:d9:31:c3:
         51:17:66:19:fa:ee:86:3f:03:39:7e:30:c7:05:50:1a:1a:27:
         0a:54:2d:cf:11:17:d0:33:1f:e5:de:41:6d:82:c8:a6:5d:42:
         28:f8:9b:76:ad:6b:9f:dc:84:45:89:77:47:30:d6:f2:3f:aa:
         62:bd:6a:dd:ec:8c:bd:89:d3:05:c6:2d:08:6c:01:41:85:91:
         21:78:1c:2b:f0:1c:20:55:1d:7a:20:1f:b7:f8:04:e7:4a:b3:
         97:e9:a7:0d:35:11:9a:ab:77:b9:ed:cf:87:d0:dc:13:b9:03:
         a7:ac:40:fc:2b:57:9a:c4:e7:bb:ca:ee:f6:48:07:73:ac:5b:
         5e:e3:d3:90:9a:9f:56:be:07:a5:da:21:78:94:ba:85:ff:91:
         84:69:f0:4c:4b:d9:bc:74:a2:8b:a8:52:95:da:d7:1a:39:3f:
         e1:e2:53:59:7e:a5:42:1e:7a:4f:69:b2:bd:cb:15:6f:73:33:
         26:32:e7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----