Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
File:                     J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft (raw, json)
Hash identifier:          3UlxKIRLfOUfL/MrQml3246J9ALKWH4sv8QZqAhpM/s=
Subject key identifier:   C2:CD:F6:67:86:AA:ED:F0:0F:7C:D7:4C:14:DB:9B:48:2D:F8:79:BD
Authority key identifier: 27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0
Certificate issuer:       /CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
Certificate serial:       0199FC8F9298F7BB20B75F8D35E1315C9C0D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
Manifest number:          075B
Signing time:             Sun 19 Oct 2025 13:01:31 +0000
Manifest this update:     Sun 19 Oct 2025 13:01:31 +0000
Manifest next update:     Mon 20 Oct 2025 13:01:31 +0000
Files and hashes:         1: J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl (hash: S8o7lNlTs0YRF4sfRdEJQmweFFMqleSKou2ttGUwyTA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:8f:92:98:f7:bb:20:b7:5f:8d:35:e1:31:5c:9c:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
        Validity
            Not Before: Oct 19 13:01:31 2025 GMT
            Not After : Oct 20 13:01:31 2025 GMT
        Subject: CN=c2cdf66786aaedf00f7cd74c14db9b482df879bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:9b:03:0f:17:d8:86:f5:14:3e:f9:af:4c:60:
                    24:d6:93:47:b3:f6:ea:1a:d9:c4:84:c6:bc:ab:5b:
                    88:cc:71:44:cb:86:83:53:d0:7b:76:44:24:16:ca:
                    ea:d2:2e:56:1e:e9:2c:9b:a6:0a:ab:35:c6:2c:91:
                    44:77:5b:31:a2:cb:e6:30:c6:40:eb:38:6c:d5:52:
                    bc:47:08:71:06:d0:6f:3d:7e:bf:d7:18:49:4d:f0:
                    2b:cf:69:e5:64:e0:5b:55:55:d1:26:a8:6a:71:58:
                    ac:ef:30:9b:9c:65:d8:3c:0f:b2:c2:18:98:61:7b:
                    80:39:44:a7:19:5f:bb:f8:6d:ba:e1:71:75:78:a8:
                    a6:4c:f9:c2:9c:f7:64:44:c8:b0:c3:b8:64:93:4b:
                    27:b8:5f:d8:a9:53:ad:eb:d1:8e:2b:f0:c5:41:0e:
                    64:0c:20:38:b7:ae:cd:13:84:23:e7:2e:18:b8:01:
                    71:ae:a2:5f:a9:ae:62:9a:64:3a:fd:83:87:62:44:
                    42:9f:ac:69:df:ce:91:bf:67:af:be:81:9a:30:da:
                    1c:a0:a5:33:e5:58:be:f2:ae:80:c4:d0:4b:af:a2:
                    ce:00:aa:38:4d:05:2f:98:b3:c3:00:93:46:2d:bc:
                    59:ff:40:0d:52:c2:2a:c9:af:2b:dc:89:16:50:84:
                    5a:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:CD:F6:67:86:AA:ED:F0:0F:7C:D7:4C:14:DB:9B:48:2D:F8:79:BD
            X509v3 Authority Key Identifier:
                keyid:27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:09:87:6b:cf:2d:b4:50:46:3c:b7:1b:1f:6f:2c:f7:f8:f2:
         b5:1f:f3:a6:19:cf:ed:0e:d1:db:c1:e7:e6:31:5b:ab:3d:cd:
         07:08:f5:0d:8a:2a:f7:0d:b8:1d:50:71:70:96:75:b9:7c:40:
         db:d5:d4:83:35:52:78:6a:8d:ce:95:a3:78:c2:6b:1d:3e:63:
         4e:b1:e6:94:49:fb:28:5c:89:7c:cc:e7:a9:fb:a7:36:bf:3b:
         85:6c:bd:ad:6f:2e:9a:d0:be:df:a0:17:b9:67:fc:53:9c:f8:
         b4:20:5e:f3:32:fe:52:f5:0c:ff:0d:6e:02:1e:00:70:4c:a0:
         11:db:cf:8e:76:87:4e:bc:4a:ff:95:7a:e7:c9:9c:97:fb:48:
         ce:c9:f6:bf:76:fb:41:13:29:11:a8:85:07:03:0a:86:98:84:
         d1:ce:64:08:c5:bf:34:77:9b:16:8b:a8:7e:d0:88:72:e0:70:
         e3:d1:c7:c1:b9:d3:3b:fd:71:cb:84:4f:f6:dd:c8:73:f5:79:
         36:ca:88:8f:63:46:de:91:6d:ee:12:5c:58:dd:f8:e8:5e:2f:
         3c:22:03:f1:fe:3d:09:d5:83:35:74:ac:89:18:7f:07:e3:d6:
         49:e2:4a:22:81:c7:9c:e0:b2:d4:d0:ca:b6:f7:e0:d8:1e:3b:
         8d:ae:e6:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----