Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
File:                     dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft (raw, json)
Hash identifier:          ngDG9PqbKYBjPse8luhgsYTgRUauz/3R4AdTRaL36Rg=
Subject key identifier:   06:88:74:5B:3A:62:3B:FA:B7:A4:98:08:49:62:6E:D8:5A:0B:6C:C3
Authority key identifier: 74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96
Certificate issuer:       /CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
Certificate serial:       0198D5159BEAC503681683964ACCAB9C5B46
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
Manifest number:          111B
Signing time:             Sat 23 Aug 2025 04:00:19 +0000
Manifest this update:     Sat 23 Aug 2025 04:00:19 +0000
Manifest next update:     Sun 24 Aug 2025 04:00:19 +0000
Files and hashes:         1: dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl (hash: huKWiSO+Ps9luddhUAwIWdGZy9HndDZHt29VyiieAhw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 04:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:15:9b:ea:c5:03:68:16:83:96:4a:cc:ab:9c:5b:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
        Validity
            Not Before: Aug 23 04:00:19 2025 GMT
            Not After : Aug 24 04:00:19 2025 GMT
        Subject: CN=0688745b3a623bfab7a4980849626ed85a0b6cc3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:92:c4:57:18:12:47:db:30:10:ea:e6:6b:32:
                    e1:b1:49:b8:f9:62:90:bb:e1:c3:1e:fa:eb:83:90:
                    8f:86:3b:0b:8b:f6:11:da:37:fa:be:ee:e5:00:17:
                    36:a0:30:5e:b8:6e:b6:bd:6d:a0:56:f1:46:e7:42:
                    f4:8e:c1:41:2b:68:0a:e6:d1:c0:38:82:3b:28:2e:
                    8a:c5:7c:53:62:fa:b5:92:59:15:2a:e7:c6:80:d9:
                    cf:5d:90:79:db:1e:e7:67:1a:8c:e1:a2:ba:b7:55:
                    43:55:8e:f8:b0:94:35:a9:78:cc:fb:89:d1:d3:1e:
                    d9:7f:70:93:54:7c:e0:af:ef:2d:8a:bd:82:b4:53:
                    2c:11:9c:3e:a4:a5:04:cf:ab:6e:3b:36:de:8f:87:
                    76:f3:99:d3:b1:de:0e:48:dd:95:f4:c3:8d:da:ec:
                    3f:1e:01:0d:18:3e:e9:dd:c3:74:d1:b6:78:93:37:
                    34:ce:86:20:3f:75:ab:fb:6f:35:5e:5f:f7:33:70:
                    66:5a:c5:67:b0:d3:08:95:58:af:5b:1e:04:7b:2b:
                    ad:d9:ad:a4:4b:0f:d2:20:ee:50:96:6c:e6:04:09:
                    ad:61:ab:a9:c6:25:0e:d1:7c:d2:ad:17:da:67:a4:
                    e8:6c:84:0e:6c:22:4d:e9:f1:25:59:e6:11:33:8c:
                    2b:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:88:74:5B:3A:62:3B:FA:B7:A4:98:08:49:62:6E:D8:5A:0B:6C:C3
            X509v3 Authority Key Identifier:
                keyid:74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:14:fe:d8:c8:e3:5a:f6:08:bd:c9:bd:7d:74:3e:ec:90:92:
         b2:fb:a2:3f:d5:30:b7:b5:2e:23:1e:3f:9c:9d:29:b8:87:53:
         cf:2f:1d:8f:5a:14:2d:f4:92:f8:57:27:a8:79:ac:90:1b:bf:
         10:72:38:71:f7:33:1b:19:9c:54:66:16:73:e4:a4:e9:f8:f3:
         e4:54:42:e7:00:8a:0c:a4:24:43:f9:a8:5e:54:c0:db:61:7c:
         9f:fa:32:08:d9:98:bd:c1:97:16:80:a0:68:58:46:59:69:ac:
         8e:56:0d:14:28:29:b5:73:0b:44:58:cf:58:d0:70:4c:aa:5b:
         2b:2b:97:84:1e:0d:88:4f:0d:71:02:e0:d2:47:ef:64:c0:12:
         5a:6c:2a:c8:1f:10:3d:d8:c8:ae:87:64:24:1d:b0:4c:7a:11:
         a1:b3:a2:55:18:8f:8d:d7:2d:a1:b1:d4:45:f4:cd:9d:dd:8d:
         b0:6e:7a:fa:11:8f:a5:f8:1a:a6:9b:1b:e2:35:35:26:14:71:
         9f:f2:71:87:d0:ae:a6:0b:7a:06:8b:92:f8:8d:e5:e0:ff:82:
         91:77:f5:63:fa:8e:44:2a:f0:6c:77:42:2f:0d:14:53:7f:c7:
         89:c7:76:4e:55:5b:ba:cb:d2:f2:62:5c:76:c2:38:00:0b:97:
         ec:99:01:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----