Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/22746e-cac8-45d3-a258-f44f35b7a95d/1/K1ew2wAW_mJQld8Mblf-B_HPKJ8.mft
File:                     K1ew2wAW_mJQld8Mblf-B_HPKJ8.mft (raw, json)
Hash identifier:          QjwagiTLzW08/yZqL+RkEBSR8pI9xfrRjCwPmNG+Rsc=
Subject key identifier:   FD:E2:39:47:C5:4E:6D:E9:0C:AD:58:D2:6B:EF:09:7E:BC:6D:67:62
Authority key identifier: 2B:57:B0:DB:00:16:FE:62:50:95:DF:0C:6E:57:FE:07:F1:CF:28:9F
Certificate issuer:       /CN=2b57b0db0016fe625095df0c6e57fe07f1cf289f
Certificate serial:       019923A0E3AA446CCD29B5B344791C025BDA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K1ew2wAW_mJQld8Mblf-B_HPKJ8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/22746e-cac8-45d3-a258-f44f35b7a95d/1/K1ew2wAW_mJQld8Mblf-B_HPKJ8.mft
Manifest number:          078B
Signing time:             Sun 07 Sep 2025 10:02:50 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:50 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:50 +0000
Files and hashes:         1: K1ew2wAW_mJQld8Mblf-B_HPKJ8.crl (hash: 4StOP0NJhLcAXMs2PByYewTJcnR8Ia1fdbqnsreaOTo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/22746e-cac8-45d3-a258-f44f35b7a95d/1/K1ew2wAW_mJQld8Mblf-B_HPKJ8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/22746e-cac8-45d3-a258-f44f35b7a95d/1/K1ew2wAW_mJQld8Mblf-B_HPKJ8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K1ew2wAW_mJQld8Mblf-B_HPKJ8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:e3:aa:44:6c:cd:29:b5:b3:44:79:1c:02:5b:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b57b0db0016fe625095df0c6e57fe07f1cf289f
        Validity
            Not Before: Sep  7 10:02:50 2025 GMT
            Not After : Sep  8 10:02:50 2025 GMT
        Subject: CN=fde23947c54e6de90cad58d26bef097ebc6d6762
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:9b:c9:b2:9d:bd:d8:fe:86:d5:d9:8a:1a:64:
                    66:e9:5b:44:15:50:41:d3:fa:32:29:a9:0c:4c:3c:
                    63:14:88:86:0a:87:99:2f:df:4b:f9:51:ab:c5:b4:
                    8e:d1:78:4d:d9:6b:0f:bf:b9:4b:1c:f1:a2:db:2c:
                    f5:03:35:61:7f:7f:c5:2f:03:e5:fa:37:3b:4f:e3:
                    90:06:ea:42:e8:03:63:05:70:1b:0c:3d:c2:5a:e9:
                    04:6e:92:0a:75:f2:a3:2f:f8:00:30:67:c3:a1:c4:
                    cd:25:5d:10:37:ad:b6:de:5e:f7:d6:0c:67:f5:9e:
                    89:57:bf:99:aa:9e:d8:4b:95:ca:ca:a4:2f:7d:93:
                    d9:85:26:02:14:30:0f:ab:60:7d:9b:b3:7f:40:56:
                    e4:cd:8d:8f:a6:d5:c9:3b:a5:f9:0f:43:7c:de:5b:
                    06:fc:1a:f8:50:72:53:b4:d0:0c:3b:93:be:40:52:
                    0a:92:6e:0e:0c:d7:e0:d1:75:43:c3:d2:2f:ce:6c:
                    24:2d:5d:54:5f:5d:63:e7:50:b9:14:0a:88:56:7f:
                    60:a0:7d:e6:46:5d:eb:24:ef:7a:74:07:02:6f:4d:
                    a6:df:88:6b:4f:0c:26:99:b2:d6:c0:fe:56:3f:db:
                    97:7f:cf:61:7f:a3:bb:98:cf:63:eb:7d:49:8c:79:
                    b8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:E2:39:47:C5:4E:6D:E9:0C:AD:58:D2:6B:EF:09:7E:BC:6D:67:62
            X509v3 Authority Key Identifier:
                keyid:2B:57:B0:DB:00:16:FE:62:50:95:DF:0C:6E:57:FE:07:F1:CF:28:9F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K1ew2wAW_mJQld8Mblf-B_HPKJ8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/22746e-cac8-45d3-a258-f44f35b7a95d/1/K1ew2wAW_mJQld8Mblf-B_HPKJ8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/22746e-cac8-45d3-a258-f44f35b7a95d/1/K1ew2wAW_mJQld8Mblf-B_HPKJ8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:ba:d7:f4:75:5e:4e:7b:1f:c2:8e:f1:4c:f8:67:e1:be:53:
         8e:65:2f:39:4e:08:7b:9a:23:ef:46:61:0e:27:8e:3a:8f:60:
         ac:79:df:1d:d7:61:97:d0:d3:da:a3:71:1d:0d:58:39:ff:5e:
         5f:7b:95:95:fa:96:6b:a8:48:5f:de:9b:15:f4:e4:a8:66:b7:
         ea:ae:d7:8e:84:4f:17:66:26:26:71:0b:86:4f:ac:7a:7a:8f:
         b5:30:8b:f5:3a:d7:39:da:5b:13:15:fa:cb:26:ad:42:a1:10:
         de:3e:b9:b8:54:99:59:25:63:4d:05:7a:84:53:8d:2f:68:2d:
         c9:e8:8c:4e:30:8f:ff:bc:2e:31:97:42:4a:eb:db:6f:6a:fa:
         13:3c:8e:cb:22:a3:fe:91:2e:40:f1:8a:3a:ba:3a:10:6b:0f:
         a0:cd:67:fb:37:f7:35:29:ef:fd:e4:d7:97:87:d2:cb:da:28:
         6f:96:2d:4f:7d:e3:fd:c7:80:96:d0:94:fa:0e:1c:c0:8d:c0:
         93:98:53:2e:8f:bf:6b:d8:7a:fc:a5:80:9c:67:2a:4e:bf:ab:
         1e:e0:ad:99:62:0c:70:ce:26:d4:0d:a8:6b:3e:20:cf:5f:ba:
         9c:32:bd:e7:5d:71:68:00:95:31:1f:47:51:a2:72:93:a1:09:
         7f:3b:48:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----