Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
File:                     79XDTJ_TJEnLwIirENkbWkq1Nho.mft (raw, json)
Hash identifier:          yvcI7TfsD8nCcIXnXj2aFyGEFzt6TJhL6wG1xzxCW1s=
Subject key identifier:   78:12:19:66:BC:7D:AE:2F:A4:EE:A5:19:76:70:74:38:1B:FF:36:99
Authority key identifier: EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A
Certificate issuer:       /CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
Certificate serial:       0197CCF140CD57B486316A034CFE5EE82560
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
Manifest number:          0598
Signing time:             Wed 02 Jul 2025 21:00:52 +0000
Manifest this update:     Wed 02 Jul 2025 21:00:52 +0000
Manifest next update:     Thu 03 Jul 2025 21:00:52 +0000
Files and hashes:         1: 79XDTJ_TJEnLwIirENkbWkq1Nho.crl (hash: LbKEgAMT3L0lkftro9yjrYcHi4muPn4DSmdouw6durE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 03 Jul 2025 20:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:cc:f1:40:cd:57:b4:86:31:6a:03:4c:fe:5e:e8:25:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
        Validity
            Not Before: Jul  2 21:00:52 2025 GMT
            Not After : Jul  3 21:00:52 2025 GMT
        Subject: CN=78121966bc7dae2fa4eea519767074381bff3699
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:64:e8:7c:4b:d9:bd:4b:39:e3:04:c3:03:99:
                    77:f2:13:09:f9:bf:3b:a4:fe:3a:e1:09:ab:1b:c4:
                    a7:f1:7b:66:9a:93:4a:91:ae:e8:06:16:8e:c2:ea:
                    7a:4f:8d:28:15:74:3e:b3:6f:41:21:ed:e0:c7:e2:
                    27:f6:44:ad:41:10:ad:41:72:a8:ab:ae:61:92:8c:
                    1a:40:ba:ca:18:3e:3e:38:94:f8:36:a1:43:f4:e9:
                    ce:91:d8:ae:8b:8d:1c:13:d5:4f:f6:47:3b:82:23:
                    76:cc:33:f3:13:d8:4a:1e:16:7b:84:af:a9:51:9e:
                    73:fd:b0:c1:84:af:34:cf:42:29:07:4b:4f:02:22:
                    48:88:44:61:51:e8:eb:1b:be:c5:0c:24:ad:d7:25:
                    3e:6e:6c:28:9f:d3:4c:f6:81:0f:dd:6d:2a:66:88:
                    23:a0:d0:b0:25:99:e6:1a:ba:7a:f6:53:56:e4:d8:
                    92:63:41:30:5f:82:43:4d:6f:0e:e2:43:96:b2:36:
                    02:a3:4c:e7:87:7c:4c:25:ba:26:91:ed:e6:5d:6b:
                    58:95:e6:9c:22:76:2b:11:32:70:76:c3:96:cf:d7:
                    f9:84:63:e3:39:9b:bd:23:82:bc:18:36:29:59:b1:
                    6a:5a:3a:c8:0a:89:17:61:42:03:2c:bc:2d:31:42:
                    bc:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:12:19:66:BC:7D:AE:2F:A4:EE:A5:19:76:70:74:38:1B:FF:36:99
            X509v3 Authority Key Identifier:
                keyid:EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:75:62:d6:28:a3:3b:ba:6d:d5:97:96:84:ad:e4:da:11:86:
         79:8b:01:d9:3b:c8:05:4a:c9:85:1a:34:89:c0:d3:82:91:ed:
         8f:49:c6:b8:61:8d:fa:84:33:28:e6:30:87:c3:05:e2:c3:bc:
         9a:09:dd:7a:bd:10:95:09:e2:cf:0b:60:98:0b:4d:bd:e1:01:
         66:70:2e:7b:83:de:e9:cf:73:2f:3e:a8:9d:99:02:28:12:4b:
         96:c2:b5:c6:cc:67:af:2f:3e:52:db:20:06:58:64:13:4f:39:
         52:e5:a0:ce:73:b6:00:12:68:b0:66:83:4b:4a:f8:c6:6e:04:
         39:c2:9b:ad:08:6f:f1:ae:94:d1:43:fc:28:df:08:e5:d5:18:
         86:2b:96:49:00:d4:a9:b1:e1:65:1d:64:01:87:d9:c8:1b:14:
         1d:77:79:cf:84:df:f1:e3:a3:f4:4a:fc:23:0d:a7:fa:9c:f6:
         b1:2b:58:c8:29:b8:c7:ea:6d:45:29:6b:c9:97:62:bb:6d:5c:
         27:24:e8:29:30:c3:f6:a8:bf:67:5d:2f:b0:db:2a:a0:de:49:
         ea:b3:52:37:1a:b0:d6:88:57:6c:33:04:9a:b1:25:18:f1:53:
         48:10:e1:af:ec:0d:ff:7e:69:65:26:3f:ae:1f:7a:f3:8e:e9:
         95:e4:5c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----