Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
File:                     rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft (raw, json)
Hash identifier:          K67gnU38ftuY6JQKc6VK7xBuvwqaPyfvJ/9Aocg43u0=
Subject key identifier:   C2:1E:3F:5C:83:50:B0:D2:D7:81:65:E3:6E:37:2C:77:FE:20:54:A4
Authority key identifier: AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78
Certificate issuer:       /CN=ad30fb4388ee67144ae04ddc86812d63e028f478
Certificate serial:       0198D474452D78902EF80960F6B1A68CF5EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
Manifest number:          1645
Signing time:             Sat 23 Aug 2025 01:04:06 +0000
Manifest this update:     Sat 23 Aug 2025 01:04:06 +0000
Manifest next update:     Sun 24 Aug 2025 01:04:06 +0000
Files and hashes:         1: rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl (hash: 4zg+XLvtgR82J3VZ+7q+vBUBYivhrpepm4A3koqG/CU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:74:45:2d:78:90:2e:f8:09:60:f6:b1:a6:8c:f5:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad30fb4388ee67144ae04ddc86812d63e028f478
        Validity
            Not Before: Aug 23 01:04:06 2025 GMT
            Not After : Aug 24 01:04:06 2025 GMT
        Subject: CN=c21e3f5c8350b0d2d78165e36e372c77fe2054a4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:4f:4a:98:4e:dc:81:93:19:f4:ac:5d:f7:54:
                    48:93:9d:a3:e2:6b:25:20:1b:5c:ff:c4:f2:03:c9:
                    6e:8f:08:8d:c1:b3:b2:3f:5b:ac:b2:7a:1b:e4:64:
                    65:7d:ed:11:f3:b2:81:89:60:95:ea:4b:9e:79:d9:
                    06:60:d2:e8:1f:fb:4c:e7:ac:d4:8b:18:9c:12:04:
                    cc:39:fc:d1:de:43:24:8f:8c:7c:f6:56:88:3d:a6:
                    a1:5a:b4:fd:c0:2e:d7:91:78:be:50:31:71:b8:d9:
                    e6:d2:69:b0:63:75:70:3c:76:00:84:31:0e:81:f6:
                    90:42:bb:97:f7:7a:e9:b0:2f:e8:bc:86:30:ac:86:
                    be:d7:76:03:8b:bb:31:e0:37:ad:c3:c4:c1:d1:1a:
                    3c:79:cd:3e:19:28:09:e3:31:b3:2e:8c:4b:12:c7:
                    4d:07:5b:58:3b:a4:b6:ba:9a:03:60:80:5f:a9:57:
                    1e:ea:3d:1d:80:dc:47:e9:47:e6:55:ef:b5:0d:77:
                    db:fb:66:dd:17:34:7c:42:3d:ce:a0:86:0c:bd:d5:
                    21:e2:ea:60:30:da:44:a5:92:18:c9:c5:e5:43:5e:
                    c4:1d:74:a7:0c:72:57:8d:7d:a2:d2:e0:70:cb:fa:
                    3e:93:94:23:8d:54:2a:26:ec:7d:fa:f1:7c:d5:e3:
                    56:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:1E:3F:5C:83:50:B0:D2:D7:81:65:E3:6E:37:2C:77:FE:20:54:A4
            X509v3 Authority Key Identifier:
                keyid:AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:7f:a6:d5:97:af:9d:bf:f1:e1:d0:d1:00:e4:cb:df:c3:f8:
         7d:68:05:26:74:37:c5:45:5d:a4:28:22:04:70:cd:67:32:0b:
         50:3c:d7:ef:12:35:da:df:d4:6f:f3:80:9d:6b:5f:89:9d:f1:
         a3:ec:b8:54:d3:f2:79:fd:87:89:ff:70:c5:49:c7:07:5e:a0:
         50:9f:ae:b2:f9:15:d5:4d:07:e4:50:e0:b5:59:dd:d8:35:1c:
         cf:4a:c7:6e:f7:24:35:7d:fa:67:41:15:5c:42:d4:98:60:19:
         8e:bd:94:b5:2d:a2:5e:45:f7:1c:02:d5:e2:ad:59:6c:a7:8f:
         fd:f4:58:b1:84:c0:1b:5c:83:a9:0f:82:ec:fa:dc:b6:44:2c:
         4d:38:49:44:48:87:d1:2e:8d:eb:de:4f:f2:b2:bb:51:7e:6b:
         fe:66:d2:66:ba:c2:13:b2:65:0f:41:8c:b1:44:8f:8c:0b:51:
         d2:2d:42:45:a7:19:e6:69:46:09:eb:bb:df:94:fa:37:d3:39:
         b8:da:3a:27:28:f7:93:53:7e:9c:ba:28:e1:7a:30:1f:44:e4:
         83:97:4f:8e:94:db:e0:d6:4a:1e:b3:f6:eb:d3:13:22:74:33:
         f8:c0:cf:1b:ef:8c:19:f4:38:b4:b0:01:df:4a:6b:67:17:e4:
         62:5e:d7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----