Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
File:                     Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft (raw, json)
Hash identifier:          iRze2Z9ThYekWuUOtcU291Z89vfTvOgXt1ymgLauWIY=
Subject key identifier:   F6:FC:F8:3E:FF:23:04:6C:0A:BB:37:3D:AF:7C:BE:58:A3:FA:73:35
Authority key identifier: 4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
Certificate issuer:       /CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Certificate serial:       0198D5157FC79A18420F0AFD928E9C921D4C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
Manifest number:          1648
Signing time:             Sat 23 Aug 2025 04:00:12 +0000
Manifest this update:     Sat 23 Aug 2025 04:00:12 +0000
Manifest next update:     Sun 24 Aug 2025 04:00:12 +0000
Files and hashes:         1: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl (hash: jdf6FyJSmoauXqkwmYJ5qkDppdjItPON5INl3DV0ZJQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:15:7f:c7:9a:18:42:0f:0a:fd:92:8e:9c:92:1d:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
        Validity
            Not Before: Aug 23 04:00:12 2025 GMT
            Not After : Aug 24 04:00:12 2025 GMT
        Subject: CN=f6fcf83eff23046c0abb373daf7cbe58a3fa7335
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:31:7d:ea:4b:3a:02:67:cb:5a:6c:cf:fa:68:
                    34:68:51:09:0a:dc:48:b7:5c:d8:81:cd:b6:12:81:
                    40:75:09:a2:a1:1c:0a:81:8d:10:89:20:ab:a6:b4:
                    e6:95:b8:bf:1b:68:78:4a:c6:cb:2e:e6:70:9b:67:
                    be:6a:2d:d9:47:1b:d8:43:b4:49:a1:76:4e:ed:a7:
                    2f:86:8a:48:ae:b0:a1:d7:7c:98:9e:dc:09:fe:60:
                    43:8e:44:47:6e:d4:7a:df:2f:33:91:c8:7f:f4:3b:
                    16:f3:0f:70:ba:7d:59:e6:5c:8f:a2:11:37:c6:6b:
                    cd:87:38:5d:66:b8:53:72:b0:c3:3b:20:1c:17:e9:
                    e1:bb:b9:55:38:97:0a:96:a6:91:ca:40:f7:7f:ea:
                    c9:e4:13:65:9b:ee:20:6c:46:8a:be:f3:5f:93:68:
                    62:40:29:f0:9a:7d:10:7a:57:cb:77:1f:74:60:01:
                    48:03:63:a7:fb:21:e2:91:ec:ed:d3:93:3a:e3:11:
                    82:80:34:6e:84:1b:5f:2a:cf:bc:79:89:08:b2:5e:
                    ae:9c:77:9f:a6:3a:3d:de:eb:c6:c8:32:fd:8b:52:
                    15:d1:0c:fd:1d:94:06:e2:c6:ea:7d:1c:2f:3e:fd:
                    56:f6:79:bb:e0:8e:4b:a9:ef:5a:41:e8:de:ac:93:
                    ff:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:FC:F8:3E:FF:23:04:6C:0A:BB:37:3D:AF:7C:BE:58:A3:FA:73:35
            X509v3 Authority Key Identifier:
                keyid:4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:29:20:b4:62:32:fe:14:ed:6f:d8:02:e5:ab:87:df:e8:3a:
         0d:34:81:a0:5d:53:12:32:07:1c:4a:5f:02:03:39:d4:e6:10:
         7f:69:28:7d:e3:7c:9c:e1:a3:90:de:4f:b1:e8:59:9f:b5:fd:
         56:83:e8:0d:b0:e7:7b:10:6c:d0:63:cb:33:ba:43:1b:34:33:
         6d:b5:91:98:72:1b:77:97:74:a8:c4:5b:15:dd:e4:83:14:43:
         cb:a8:7d:f1:40:9c:63:1f:9d:ea:57:bd:8b:85:5b:2d:d7:0e:
         19:51:28:39:8f:76:c2:a3:ae:36:e9:b6:05:0a:05:03:3d:d4:
         0f:39:1e:e2:78:c2:63:73:af:7d:2a:93:3a:4b:83:3b:5e:9e:
         e2:89:4e:c8:d2:e0:60:c7:21:0b:ec:a9:56:69:5c:86:6c:e2:
         b6:63:26:9d:87:de:c9:c1:36:17:bc:bb:aa:2f:b5:22:9c:15:
         68:89:ee:ba:71:b2:cf:db:8c:5e:46:e3:65:15:0c:01:c9:81:
         da:16:79:a2:1c:31:03:8c:6f:c7:bd:ed:75:e7:55:25:cb:7e:
         9a:e6:ce:bc:10:9c:99:9d:f3:06:e4:64:5f:fa:b5:54:36:36:
         1a:20:2f:cc:6f:6e:94:df:1c:91:46:32:36:f7:94:ba:81:2b:
         f5:62:53:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----