Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
File:                     TkMMADsADTVe0WnlXYzPOTg34go.mft (raw, json)
Hash identifier:          fznwi+UqylkFBa3Fnoi7SXd643xP3R4xE6e7xj78Y2U=
Subject key identifier:   7B:06:9B:76:50:CA:A3:73:6E:D4:A8:FD:2C:F3:B4:9C:3C:46:73:E8
Authority key identifier: 4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A
Certificate issuer:       /CN=4e430c003b000d355ed169e55d8ccf393837e20a
Certificate serial:       0199FC5863903A65B2C68AC43BC7577DD9E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
Manifest number:          0E66
Signing time:             Sun 19 Oct 2025 12:01:14 +0000
Manifest this update:     Sun 19 Oct 2025 12:01:14 +0000
Manifest next update:     Mon 20 Oct 2025 12:01:14 +0000
Files and hashes:         1: TkMMADsADTVe0WnlXYzPOTg34go.crl (hash: ewbCwfZdcNaZYVqSlQXO63h9TM4imfOYAIrx1Qyjb44=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:58:63:90:3a:65:b2:c6:8a:c4:3b:c7:57:7d:d9:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e430c003b000d355ed169e55d8ccf393837e20a
        Validity
            Not Before: Oct 19 12:01:14 2025 GMT
            Not After : Oct 20 12:01:14 2025 GMT
        Subject: CN=7b069b7650caa3736ed4a8fd2cf3b49c3c4673e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:92:d8:b0:76:03:9a:f6:7d:6c:78:ce:f0:0e:
                    bc:f6:9a:a3:17:8a:92:f7:98:26:48:f7:7a:54:88:
                    f0:0e:bb:8d:96:9f:d8:de:c9:b5:40:3a:b1:f4:61:
                    b3:c0:8a:bc:b0:3b:01:2a:22:1c:3d:a0:56:46:33:
                    d4:0a:ac:2d:1f:f9:ae:0a:53:10:70:f4:35:e9:52:
                    ec:d5:9d:e2:b3:32:c2:e1:d3:63:ff:32:11:45:77:
                    84:a8:08:26:51:c6:b0:5c:c7:f7:81:5d:89:cb:35:
                    a9:4c:73:2b:a4:73:20:d4:48:b5:87:98:87:9e:9d:
                    a1:2c:96:d9:d7:0e:44:2a:11:6b:6d:fa:00:9e:cb:
                    4b:4f:45:87:dd:a3:25:a3:1f:47:ef:43:84:9f:06:
                    ee:b8:65:1b:9f:ab:59:3c:fe:0c:cb:7e:84:c3:c3:
                    1c:f3:a3:f1:f9:88:c3:51:d5:9d:9b:29:6f:a3:ba:
                    20:af:65:17:9f:a7:be:c8:47:3d:15:a5:89:fa:32:
                    f5:05:ee:be:e5:af:bc:19:d8:38:b1:7f:b4:6b:47:
                    2e:f0:c3:85:be:36:2f:a8:6c:26:19:7a:73:33:86:
                    ce:90:ce:01:5e:92:a3:31:9e:ec:f7:1d:e6:ae:da:
                    25:1d:b4:16:51:6a:8c:95:b1:00:9a:8e:57:a8:f5:
                    db:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:06:9B:76:50:CA:A3:73:6E:D4:A8:FD:2C:F3:B4:9C:3C:46:73:E8
            X509v3 Authority Key Identifier:
                keyid:4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:c1:17:34:da:93:47:ce:c6:a2:b2:20:82:3b:0e:32:03:e7:
         f5:9c:af:c7:16:ea:68:4b:fb:c5:25:02:4d:39:15:b0:55:c4:
         80:42:59:ed:59:3d:c4:21:3f:c4:23:f5:38:65:95:33:9c:7c:
         ad:e4:d2:99:c5:01:9f:cf:56:85:5b:65:98:9a:c4:1b:b9:22:
         ff:96:40:63:c8:8e:a5:be:68:db:aa:e1:5d:54:56:06:bc:c5:
         e0:db:37:09:8a:c5:eb:8a:48:d9:82:07:d2:28:ac:4e:27:a7:
         a5:f3:66:d0:a2:64:76:7e:22:e4:b7:af:05:77:1e:16:bd:e9:
         b3:21:eb:7c:c4:8e:76:aa:de:be:36:da:b0:7f:0e:44:bb:ed:
         ef:13:df:91:96:f6:ec:b3:bc:ff:27:2e:33:a4:19:2b:fd:3d:
         90:3f:d7:73:38:aa:bd:f9:46:52:60:e8:df:15:d5:43:6e:b0:
         d9:53:d5:ba:dd:34:a2:84:5d:18:14:49:0d:c1:8c:36:3b:38:
         fb:3f:56:46:ea:67:6f:ed:f1:a4:95:d1:bd:31:ec:f6:d2:eb:
         18:b1:57:e3:42:5e:18:4e:19:61:68:08:d2:36:ea:df:38:ca:
         9b:bc:db:78:b1:85:1e:96:5c:88:66:34:c2:9b:3d:9f:c7:e5:
         ca:6d:89:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----