Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
File:                     OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft (raw, json)
Hash identifier:          5Zsc6FUbfRr1s3W6YPpSzSN7Fvs8vXH/OQ76myhB4Bs=
Subject key identifier:   41:77:29:77:30:84:26:3C:7F:4E:C6:0D:57:E4:C7:2B:3E:12:10:DD
Authority key identifier: 38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5
Certificate issuer:       /CN=389dd4126f8be07af454497ca0f5665295482ad5
Certificate serial:       0199161BDC58093F3DADADD25BC67D67DE24
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
Manifest number:          05C7
Signing time:             Thu 04 Sep 2025 19:02:28 +0000
Manifest this update:     Thu 04 Sep 2025 19:02:28 +0000
Manifest next update:     Fri 05 Sep 2025 19:02:28 +0000
Files and hashes:         1: OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl (hash: XFUeXmSuusZl4ObZBpIBc20LT9+7at+Rd68lMW0fmmg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 05 Sep 2025 19:02:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:16:1b:dc:58:09:3f:3d:ad:ad:d2:5b:c6:7d:67:de:24
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=389dd4126f8be07af454497ca0f5665295482ad5
        Validity
            Not Before: Sep  4 19:02:28 2025 GMT
            Not After : Sep  5 19:02:28 2025 GMT
        Subject: CN=417729773084263c7f4ec60d57e4c72b3e1210dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:72:71:4c:98:f8:a0:98:da:57:1d:b3:0a:2c:
                    12:48:37:76:9d:d5:7c:ac:3b:2d:68:5a:04:fd:c2:
                    74:cd:e0:39:d7:98:12:fc:24:2d:b9:ed:5a:89:eb:
                    44:43:9b:ed:3d:6f:0d:3e:fc:f8:a8:a5:d0:6f:61:
                    3c:dd:09:0b:ae:72:bd:9b:50:c3:79:85:fd:88:99:
                    2b:7b:05:77:c5:c6:7f:31:9c:29:9c:5b:dc:70:26:
                    00:31:8e:e3:65:96:00:4a:49:5a:f1:f9:14:01:d0:
                    4c:8f:f8:9b:98:8d:44:8f:da:f8:c7:f3:38:cd:c6:
                    ec:58:45:0c:7a:fd:6f:4e:25:82:84:64:46:1a:e5:
                    9c:4f:47:b9:db:38:03:c5:30:53:79:db:4e:ba:38:
                    b8:bb:1c:6b:cd:f2:52:45:0b:24:c9:0a:a7:45:72:
                    54:c0:bc:50:7f:9e:26:c7:2b:a7:87:56:b8:50:b9:
                    c9:93:51:48:e9:03:ae:03:a6:43:46:e7:e2:ad:e7:
                    39:0b:15:9e:c4:82:8b:6d:f6:84:7b:af:15:ac:77:
                    b7:a7:92:a6:d2:c9:47:dd:cc:b7:9d:8a:26:19:4b:
                    cd:2c:34:97:cd:4c:66:a0:0d:4c:1f:1a:21:35:85:
                    56:59:1a:26:7a:a8:35:7b:bf:07:c4:cd:f2:7f:b9:
                    ce:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:77:29:77:30:84:26:3C:7F:4E:C6:0D:57:E4:C7:2B:3E:12:10:DD
            X509v3 Authority Key Identifier:
                keyid:38:9D:D4:12:6F:8B:E0:7A:F4:54:49:7C:A0:F5:66:52:95:48:2A:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/910313-ce10-4d6f-827c-5c55ec221e12/1/OJ3UEm-L4Hr0VEl8oPVmUpVIKtU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:fa:8c:77:0b:43:d3:6b:55:88:7f:0c:e9:4a:eb:74:2b:6f:
         19:4a:10:b3:ae:d8:27:1b:31:4e:35:d4:5d:2d:cd:b3:ee:b3:
         2a:79:a9:81:23:88:58:43:58:5f:3d:b8:e4:c3:6c:11:99:3e:
         6c:a2:85:31:78:9d:4c:3e:0e:dd:b0:22:0f:97:8e:aa:d2:02:
         11:d8:13:cf:3e:31:d1:19:d3:b3:40:87:93:db:d2:7d:85:42:
         db:56:77:01:53:c3:95:10:ae:a3:27:d5:c5:2a:29:43:2f:7f:
         6b:ba:d2:0d:6d:2b:bc:48:b0:0a:85:e8:c9:47:50:69:a7:49:
         04:8f:68:be:38:da:d2:32:c4:f2:ee:6e:84:ce:be:a3:17:9c:
         70:57:19:c4:07:c4:ae:2a:97:63:bf:86:42:32:08:41:03:d4:
         eb:53:68:ee:6d:cc:7f:3f:41:35:18:33:72:78:1a:b7:76:6d:
         57:99:c1:4d:fa:cf:fd:f0:36:43:12:b4:dd:6b:de:f4:01:3b:
         78:99:90:9f:87:a1:b8:9f:3a:84:25:62:83:d4:8e:6e:2d:da:
         60:56:e3:7d:09:0c:06:b6:03:1d:1c:98:e2:b5:70:2a:c5:d9:
         5e:f5:68:ce:48:13:80:e6:28:01:bc:21:53:88:fb:09:2a:0e:
         e5:6a:47:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----