Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
File:                     5cfDmlkS3cIen2tRmJZyV2ISeDM.mft (raw, json)
Hash identifier:          Cv6S/c4sdEyzLi6lNt0cz3bbc/GQe676Cw0zevM2StI=
Subject key identifier:   9B:8F:2A:25:E3:21:1D:EE:D5:87:00:4A:A7:86:B7:D5:BE:42:71:48
Authority key identifier: E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33
Certificate issuer:       /CN=e5c7c39a5912ddc21e9f6b519896725762127833
Certificate serial:       0199FBEA7CD9D4A3F19258DDCDF060BA9E07
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
Manifest number:          025C
Signing time:             Sun 19 Oct 2025 10:01:12 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:12 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:12 +0000
Files and hashes:         1: 5cfDmlkS3cIen2tRmJZyV2ISeDM.crl (hash: FnQmx+J3Rqm/fCBHdbTnVWTtDR36Ht1sITiWzdRRBXg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:7c:d9:d4:a3:f1:92:58:dd:cd:f0:60:ba:9e:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5c7c39a5912ddc21e9f6b519896725762127833
        Validity
            Not Before: Oct 19 10:01:12 2025 GMT
            Not After : Oct 20 10:01:12 2025 GMT
        Subject: CN=9b8f2a25e3211deed587004aa786b7d5be427148
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:29:bf:23:b3:db:1d:7a:46:fe:98:e7:7c:d1:
                    ee:55:d1:b1:ee:d7:82:1c:2e:8c:62:32:c3:2d:48:
                    01:fc:d2:a0:7c:16:d7:43:c5:3d:b2:98:2e:d2:49:
                    70:19:68:3e:2b:be:66:4a:ef:e3:48:a8:3d:5b:ed:
                    cd:90:85:02:bd:52:59:cf:14:59:c3:1c:81:3a:84:
                    2f:72:e3:4a:2b:7b:e0:e6:fd:ce:32:b4:79:44:ab:
                    5d:2a:8e:02:2c:fd:45:de:4a:c2:7c:df:68:07:3d:
                    9d:22:f3:fc:3e:33:45:34:db:61:bb:0f:cb:a9:b3:
                    5b:86:fd:19:16:6c:e5:7c:18:43:ee:d6:5e:92:54:
                    39:9c:fe:0a:ae:95:b5:a3:14:5f:b6:5e:98:dd:e8:
                    74:d4:b0:5c:6d:1c:71:af:4e:48:2f:a1:2a:ff:ba:
                    cc:3d:cc:8b:9b:ec:76:e3:83:c5:fa:7c:4c:17:4f:
                    9c:09:6d:09:5d:5d:5d:f4:87:31:9b:1a:11:33:a3:
                    a6:0c:ae:ae:6b:27:1b:59:32:7e:47:d4:e0:f9:60:
                    3a:d2:c3:9d:7f:d3:80:46:3c:07:d4:b5:c7:9e:54:
                    d9:d6:b0:ce:0e:4c:d9:3b:f1:6e:12:3c:28:7e:c5:
                    2f:1d:2f:f4:3b:0b:a6:88:b1:f1:44:1d:27:7b:1a:
                    59:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:8F:2A:25:E3:21:1D:EE:D5:87:00:4A:A7:86:B7:D5:BE:42:71:48
            X509v3 Authority Key Identifier:
                keyid:E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:d0:4a:44:96:bb:c3:91:d6:5e:ee:d3:75:2a:70:39:8e:59:
         18:74:63:44:52:22:cc:40:1f:cf:35:59:b6:c2:4b:c3:cb:e8:
         74:6a:2c:d9:86:ce:31:0c:97:7f:d2:ca:c0:a8:b2:b2:80:17:
         52:24:7e:b5:79:5c:28:c6:c3:79:e7:23:7f:35:9b:e2:ea:d4:
         68:97:ec:6c:6d:8a:b3:55:25:54:ec:29:6a:bb:ea:e2:84:60:
         83:80:a5:d1:35:9e:04:55:c0:f8:56:a1:15:08:29:f1:fe:a1:
         1b:39:46:bc:d7:5a:39:65:44:26:16:d7:c0:05:7d:59:bb:e6:
         eb:5a:e5:a0:b2:f3:85:68:d8:f3:3c:0b:7e:f1:d5:2a:2e:2b:
         43:32:39:3e:02:83:de:29:5e:41:90:e4:1a:e2:b7:3f:20:33:
         a5:98:39:81:e7:3e:44:22:65:33:e8:1e:02:51:d0:d5:3c:7f:
         ab:98:39:77:fc:95:06:db:10:6d:f8:a9:dc:1b:64:ed:1d:8d:
         5a:32:f3:56:1a:cb:76:b0:4e:02:62:81:38:e6:0b:30:92:e6:
         bb:40:21:6e:5a:eb:55:7a:01:5d:7d:02:01:7f:bc:3a:84:e7:
         ba:8b:62:97:bb:67:1b:c9:ea:bd:1b:25:e1:bd:1b:cf:08:f9:
         6d:c1:9a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----