Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
File:                     DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json)
Hash identifier:          jO2zIgUL65mMZ9Hz4kuk422c9Nfnn9/+zR1dpexk67E=
Subject key identifier:   2B:EC:C7:CC:45:24:DB:63:8A:31:BF:3D:4C:72:DF:0D:AD:B9:0A:9B
Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
Certificate issuer:       /CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Certificate serial:       0198D473D8C51205FF33F1380222467E7261
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
Manifest number:          06DC
Signing time:             Sat 23 Aug 2025 01:03:38 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:38 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:38 +0000
Files and hashes:         1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: PX1ay/ko6V01eLchJYsJ6aHoL1stqWYefuEvLP6Mzio=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:03:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:d8:c5:12:05:ff:33:f1:38:02:22:46:7e:72:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff
        Validity
            Not Before: Aug 23 01:03:38 2025 GMT
            Not After : Aug 24 01:03:38 2025 GMT
        Subject: CN=2becc7cc4524db638a31bf3d4c72df0dadb90a9b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:81:0a:a7:68:c6:34:17:b7:e4:92:c7:27:6e:
                    8e:24:82:4b:e4:10:2e:55:55:3a:6c:1e:42:7f:27:
                    e7:55:9c:43:d8:7e:80:de:5c:ed:1d:18:b5:a4:0d:
                    54:86:b1:c7:d1:19:a0:97:18:2c:4c:05:9f:83:4f:
                    dc:c3:c5:94:ba:55:3a:fb:8d:ae:2b:06:3b:1f:a5:
                    43:f5:84:c1:cc:47:b7:13:c2:21:1c:4e:ac:59:1b:
                    6d:a7:cc:bf:c9:e2:1e:a1:fa:30:0c:68:d3:94:48:
                    4a:1b:8a:cb:b3:1a:01:a5:04:5a:f4:a0:f4:cf:c9:
                    43:8d:e4:6c:c2:53:a9:3c:a0:f9:eb:01:df:6a:5e:
                    56:14:23:2d:08:ed:be:22:6d:ba:83:08:3a:e4:59:
                    7e:af:d8:18:cc:4d:bf:fb:13:88:5f:88:b9:ce:05:
                    f2:3a:b8:aa:20:b6:26:c3:98:1c:33:ae:17:d0:1e:
                    e7:b0:87:86:d9:d1:3d:a1:92:c7:cf:b6:40:f4:c6:
                    3e:31:72:18:5d:51:92:60:8d:1b:e1:83:95:6a:ee:
                    fa:ec:a6:0b:d1:aa:5b:44:67:fb:80:f5:e6:2f:45:
                    cc:eb:0e:78:ec:0d:e6:2f:06:11:e3:af:dc:f8:4f:
                    39:bb:43:f5:14:ff:74:65:4a:49:ef:e6:29:08:e6:
                    a4:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:EC:C7:CC:45:24:DB:63:8A:31:BF:3D:4C:72:DF:0D:AD:B9:0A:9B
            X509v3 Authority Key Identifier:
                keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:2a:2d:10:08:ad:cb:db:4b:5b:ab:ff:c1:ab:35:0e:1c:bf:
         21:e4:58:69:fb:13:77:ec:09:dd:55:14:29:b9:6c:4e:44:f6:
         43:21:01:09:bb:6f:95:3a:03:59:62:39:4e:8c:aa:87:3c:73:
         d3:15:1a:74:20:d1:a3:a0:6a:32:2b:86:d2:de:d9:2f:de:d5:
         bc:a7:d2:e6:cb:4e:30:9d:ae:fa:80:2e:00:f4:fc:be:c7:03:
         32:7b:9d:03:45:6d:15:e2:09:ae:c1:01:fd:76:13:22:31:8e:
         dd:a0:98:c0:48:5f:e7:29:36:61:a3:fe:e9:f7:72:ea:04:21:
         0a:49:c4:45:60:e6:cf:5e:1a:c4:51:e5:1d:4e:d5:aa:01:87:
         e8:f5:0e:e2:4f:0d:f6:82:ee:44:b2:98:15:f0:8b:ca:d2:5d:
         e9:fb:44:16:0b:64:97:b3:33:ef:11:cd:f5:e4:95:47:93:b1:
         59:6c:10:62:26:b6:ff:6f:cb:22:62:3e:90:5d:d8:d5:c9:55:
         b4:ca:d0:d8:09:e5:e6:c2:5c:a2:31:a8:89:68:e1:11:67:b4:
         fe:4f:19:76:9a:a8:e2:82:5d:e3:72:66:ec:b5:42:3f:5f:a8:
         5c:09:53:91:ec:34:db:d8:9a:3e:f0:4e:e5:ac:7f:9a:8a:9e:
         39:5f:28:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----