Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
File:                     TkMMADsADTVe0WnlXYzPOTg34go.mft (raw, json)
Hash identifier:          4Y0bdHwLy1nShOQSMy/cuFxDR99NU/ExhqWTqNLTJ7M=
Subject key identifier:   29:B5:5B:20:4E:83:2C:CC:61:CB:EF:7F:03:EC:EC:33:CF:5F:B4:EC
Authority key identifier: 4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A
Certificate issuer:       /CN=4e430c003b000d355ed169e55d8ccf393837e20a
Certificate serial:       0198D4DFEF241F62AA1EF004EFFF2E31690C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
Manifest number:          0DCD
Signing time:             Sat 23 Aug 2025 03:01:42 +0000
Manifest this update:     Sat 23 Aug 2025 03:01:42 +0000
Manifest next update:     Sun 24 Aug 2025 03:01:42 +0000
Files and hashes:         1: TkMMADsADTVe0WnlXYzPOTg34go.crl (hash: l/o9EkpElJfjaYannS9TLNtV3ou8XMYCH3TuxNTuY8Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:01:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:df:ef:24:1f:62:aa:1e:f0:04:ef:ff:2e:31:69:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e430c003b000d355ed169e55d8ccf393837e20a
        Validity
            Not Before: Aug 23 03:01:42 2025 GMT
            Not After : Aug 24 03:01:42 2025 GMT
        Subject: CN=29b55b204e832ccc61cbef7f03ecec33cf5fb4ec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:52:31:92:09:02:ee:71:07:4c:14:24:58:7e:
                    cf:ed:62:ca:16:eb:b9:92:80:87:63:96:fb:cd:41:
                    90:be:19:13:e6:87:bf:a0:cc:09:1d:1f:44:9a:09:
                    ac:cd:3c:00:25:ed:41:07:39:cb:8c:04:87:47:99:
                    fb:c1:39:0f:d8:38:9f:ac:c6:7f:a9:5e:c1:99:3b:
                    10:bd:d1:e6:3d:6c:e3:cf:13:e9:a2:64:f6:9a:96:
                    fd:9e:b3:58:b3:22:e4:0b:54:0f:b8:02:50:b6:7a:
                    37:79:2d:2d:f6:8a:8f:c3:55:65:6d:46:39:fa:e6:
                    ff:80:98:35:b8:45:ff:d0:16:56:4d:34:9d:5e:38:
                    29:9d:c3:41:cd:62:a4:4d:a0:6e:ef:e8:d0:54:55:
                    d2:b3:39:17:f9:15:60:6a:2c:3f:5a:c6:57:e4:09:
                    5f:19:1c:a5:8d:98:b5:8d:97:cb:50:7d:a9:47:32:
                    97:5c:b8:43:4d:4e:1e:0c:99:07:d1:2b:47:b8:b3:
                    3b:1c:3a:93:c9:9e:9b:38:1e:81:6a:e2:27:6c:8f:
                    a5:26:12:84:f0:4a:58:27:ff:e6:8b:60:c8:7d:1d:
                    ad:ba:39:50:1c:73:f0:01:03:60:11:87:df:92:22:
                    3c:d7:87:44:1a:2a:0b:8e:77:e2:62:90:9f:31:4b:
                    20:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:B5:5B:20:4E:83:2C:CC:61:CB:EF:7F:03:EC:EC:33:CF:5F:B4:EC
            X509v3 Authority Key Identifier:
                keyid:4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:c7:8f:b8:dc:18:ea:d7:42:75:8e:85:25:3f:83:8d:b0:2b:
         4e:e0:5b:65:be:32:a3:17:f2:4e:8b:79:81:9c:70:4f:3c:98:
         b8:b1:25:83:df:32:ad:df:d8:4b:e1:ed:db:9b:4a:b5:e5:a6:
         76:78:60:36:16:2b:d9:39:15:33:74:cd:3b:01:12:8d:54:73:
         be:d0:f5:96:dd:7b:5e:dd:34:1f:97:42:82:ef:9a:67:18:63:
         cb:cf:28:db:c2:53:db:c7:66:c1:2d:fe:49:64:31:ba:20:8e:
         f9:8a:d6:ae:4c:ac:e4:b4:06:ff:75:89:57:6c:ca:c7:e4:0f:
         6a:b1:96:34:1d:a6:28:1f:5c:ab:5b:45:b8:c8:81:7b:9c:35:
         71:44:2c:f4:4d:a5:f5:45:69:5a:0d:88:32:4b:a3:41:3e:07:
         7d:c6:c7:d5:28:e9:de:a8:3a:ac:85:c8:5e:55:b1:6d:93:18:
         a3:10:6a:97:c6:44:41:d5:a1:50:9f:3d:19:17:eb:aa:bc:98:
         14:33:f2:bc:c7:78:a7:86:6c:d4:9e:5d:73:a5:2a:3a:e2:91:
         49:2a:a0:8b:64:85:45:61:05:22:92:1b:1f:38:d3:ce:7b:bf:
         60:88:61:4b:1f:01:4f:56:f6:fe:84:ba:0b:ad:9a:be:36:9b:
         a7:4b:8f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----