Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
File:                     f5kYyrbx817xteWDyyg56bdIsVg.mft (raw, json)
Hash identifier:          wHC2Yx/zMLe02voPNRnQIA45AGVvhmoZrbHX9TGkgQs=
Subject key identifier:   92:64:A4:22:AB:2B:7C:72:8A:13:B6:84:CD:79:23:60:E1:FC:44:89
Authority key identifier: 7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58
Certificate issuer:       /CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158
Certificate serial:       0198D660E83E64F05092FEB1174F9FA242C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
Manifest number:          131E
Signing time:             Sat 23 Aug 2025 10:02:11 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:11 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:11 +0000
Files and hashes:         1: f5kYyrbx817xteWDyyg56bdIsVg.crl (hash: VfEHlh10M1+J7nmFPWSlFC1Ho/4MycXFgWrwD8J5sJI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:e8:3e:64:f0:50:92:fe:b1:17:4f:9f:a2:42:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158
        Validity
            Not Before: Aug 23 10:02:11 2025 GMT
            Not After : Aug 24 10:02:11 2025 GMT
        Subject: CN=9264a422ab2b7c728a13b684cd792360e1fc4489
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:89:13:71:4f:06:ef:a0:c4:8f:80:ad:79:0e:
                    12:0a:e2:cf:4a:1f:2b:c2:25:fd:a1:02:e1:19:94:
                    28:36:32:1f:fe:4a:47:db:5e:f8:e1:f7:25:22:47:
                    1e:87:71:f4:7f:04:80:5c:01:08:8c:86:9d:7b:54:
                    92:48:08:bc:d8:fc:16:27:51:7c:97:39:f7:62:9a:
                    cf:65:88:ef:2c:ee:22:fd:ab:cf:dc:29:f8:80:77:
                    4e:72:64:91:42:d7:bb:2e:b1:9b:b4:b6:e1:f1:95:
                    7e:07:df:5b:1b:ca:f2:1c:82:95:62:85:30:35:cf:
                    61:0e:e5:b3:0c:8f:35:74:2c:42:71:eb:3d:38:35:
                    79:ec:1a:3c:04:54:01:3a:66:3e:fa:84:50:6a:b4:
                    0a:62:4c:86:46:f3:a5:f8:d2:de:e3:72:84:3f:eb:
                    74:67:ef:36:b4:3e:f0:41:63:cf:a3:33:a9:c4:b2:
                    a6:72:e8:64:ca:14:d5:16:b3:c0:88:60:2b:b1:00:
                    37:49:e2:25:c2:e7:08:37:12:61:ec:2c:27:1c:06:
                    a6:85:d7:71:b1:44:d0:5f:c4:65:9b:7c:60:de:65:
                    b0:60:fd:28:94:aa:45:e5:34:fa:99:1b:5e:51:ca:
                    0c:96:71:59:a7:9b:34:5c:83:51:7e:68:c0:42:14:
                    7e:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:64:A4:22:AB:2B:7C:72:8A:13:B6:84:CD:79:23:60:E1:FC:44:89
            X509v3 Authority Key Identifier:
                keyid:7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:46:cf:46:a8:11:3a:2c:9c:73:2f:2c:e8:c9:32:12:b5:e7:
         3c:ec:09:34:54:5d:6c:6e:15:e4:d8:21:b3:88:ed:6a:78:68:
         71:16:b4:56:1b:e7:5c:8a:c5:af:69:d3:5d:8b:12:37:b3:28:
         e6:42:45:83:a9:9f:50:bd:f3:2e:5b:97:5d:1d:b9:ff:f3:31:
         d6:29:75:9e:12:e3:18:ea:8e:c5:3a:de:27:96:76:c9:0b:dd:
         24:87:c6:53:9c:4c:17:7b:c5:a8:95:0b:75:93:7d:9d:cd:07:
         f3:7a:20:d8:b9:33:29:e9:93:b2:11:75:30:8a:a5:4d:78:1b:
         36:63:4d:ad:36:d7:e8:a5:a0:9b:b2:77:ce:6a:de:6b:6c:89:
         d4:7b:43:c3:3d:92:b5:c5:c8:e0:05:35:17:17:97:3c:d5:ff:
         aa:bb:d8:26:3b:ce:e8:e9:92:cd:d7:5c:1d:98:91:5b:de:b1:
         14:d6:cf:af:56:6a:39:06:a6:b9:8c:56:a2:00:7f:99:c4:cf:
         d2:09:75:81:08:56:9f:51:3c:51:a7:b6:b4:20:5a:4c:81:59:
         fc:39:2f:b9:8e:3c:a4:14:c6:48:9e:ae:a4:f3:cf:15:72:9b:
         0b:4d:2c:01:b5:c6:94:94:e5:7c:fb:dc:3e:37:03:6b:04:c9:
         35:ba:6f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:03:09 2025 by rpki-client