Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
File:                     NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft (raw, json)
Hash identifier:          B+Hc8FMHtChHN0q7WakJk8GlhW2D1h5bZuCHnG5DZMM=
Subject key identifier:   4D:83:4D:17:D4:23:50:ED:F1:E6:DD:B9:F1:19:FA:E1:8A:60:C9:A8
Authority key identifier: 35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05
Certificate issuer:       /CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05
Certificate serial:       019922FAAE1674E868D0A7152A4FCA2144E2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
Manifest number:          0A1E
Signing time:             Sun 07 Sep 2025 07:01:17 +0000
Manifest this update:     Sun 07 Sep 2025 07:01:17 +0000
Manifest next update:     Mon 08 Sep 2025 07:01:17 +0000
Files and hashes:         1: NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl (hash: D63uDbb77MBgaD+m/sPQStFj0Cep1jDZUa1IjDfcz1Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:ae:16:74:e8:68:d0:a7:15:2a:4f:ca:21:44:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05
        Validity
            Not Before: Sep  7 07:01:17 2025 GMT
            Not After : Sep  8 07:01:17 2025 GMT
        Subject: CN=4d834d17d42350edf1e6ddb9f119fae18a60c9a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:95:2b:fb:c0:0c:29:b8:2e:e4:c0:f0:40:f1:
                    d2:10:c3:b8:73:a5:05:9c:d2:ed:6c:6a:b0:9e:b6:
                    89:fc:a4:62:49:18:c7:2e:48:e1:b1:54:08:a2:76:
                    ce:6c:81:33:03:da:a4:60:b5:a1:69:c3:6d:4b:09:
                    24:1f:cd:ad:39:7f:0f:6b:d0:5a:17:ca:4c:8b:df:
                    3f:58:99:04:b5:1a:e3:fe:b1:6f:fc:f2:df:54:92:
                    3c:fe:8e:18:b7:e3:fb:25:c0:e9:c9:7e:fd:38:5c:
                    64:46:80:47:2d:8f:6e:35:0e:92:5f:5f:d0:12:50:
                    34:ce:11:0e:85:90:2c:a7:4c:c8:f3:48:d3:07:63:
                    bd:ce:7b:cf:21:57:65:b2:b5:96:75:5f:72:36:38:
                    ee:41:82:e3:3d:22:a5:80:51:fc:51:0d:b9:c4:ba:
                    5c:ee:d5:13:66:f8:76:88:0e:a7:21:ea:4f:9a:94:
                    81:ea:12:1d:79:86:1f:f8:54:34:03:46:56:37:97:
                    25:4d:83:f8:4b:37:35:64:cb:a1:08:5b:7b:bc:ca:
                    49:b4:5b:83:12:06:c1:5f:8d:9e:a5:36:92:2e:f1:
                    c7:3b:f7:8c:48:b3:f3:cd:da:e1:4d:45:69:7a:87:
                    d7:c5:2e:03:c1:17:71:b6:6f:b4:b3:46:18:95:27:
                    7e:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:83:4D:17:D4:23:50:ED:F1:E6:DD:B9:F1:19:FA:E1:8A:60:C9:A8
            X509v3 Authority Key Identifier:
                keyid:35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:31:10:6a:1b:56:02:45:a2:2c:c5:e2:1f:e4:20:b3:d9:1a:
         f9:bd:fe:f6:5a:65:a9:0b:a6:a1:9e:f9:d3:b4:ab:d7:15:06:
         20:f5:ff:dc:48:a6:7b:7e:ec:99:23:38:14:09:90:b7:ae:90:
         83:6a:80:30:d3:6d:57:dd:75:9f:3a:9e:f9:16:fa:c3:48:fd:
         0a:f0:e7:24:5e:9a:26:c8:51:86:bf:d1:38:e3:57:32:f9:a0:
         b9:66:39:44:c2:7e:20:3b:03:e1:f6:36:e9:80:92:84:30:0e:
         92:b4:90:04:ba:56:27:d3:be:98:a9:73:af:93:1a:45:df:e6:
         15:3c:29:52:5e:17:54:6b:f4:84:67:78:9b:aa:e2:0e:53:6d:
         e5:ff:89:60:c5:17:8a:52:97:5e:ce:c4:e0:a8:59:5c:00:c0:
         7b:dc:b9:fd:6b:a9:44:68:64:1e:ff:5c:2a:c8:de:fb:99:b4:
         ca:01:0a:b1:db:e5:06:31:f1:66:99:79:a5:03:b1:ef:93:1f:
         5c:cb:0d:de:11:66:08:64:a7:55:26:33:94:1f:84:b8:db:f1:
         36:d8:9b:cb:e0:e1:33:69:1e:cf:82:ca:98:72:1c:eb:57:b2:
         93:33:b2:e0:84:87:ae:7a:a9:60:c5:8a:7a:79:63:45:e8:84:
         4f:b3:c5:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----