Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
File:                     A-aapu504w79uBm5yxvyHnhub6M.mft (raw, json)
Hash identifier:          NWM3/YfrxYZA89UhtJIO6k6cdZPvhVP7AtvdjweVJHU=
Subject key identifier:   EA:33:67:34:A3:27:80:03:13:BA:B9:A9:10:9F:DF:E9:12:D1:3C:72
Authority key identifier: 03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3
Certificate issuer:       /CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
Certificate serial:       0198D7E15366A49BACEF63194ABFC7BD3A10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
Manifest number:          04E7
Signing time:             Sat 23 Aug 2025 17:02:05 +0000
Manifest this update:     Sat 23 Aug 2025 17:02:05 +0000
Manifest next update:     Sun 24 Aug 2025 17:02:05 +0000
Files and hashes:         1: A-aapu504w79uBm5yxvyHnhub6M.crl (hash: XomPqkLB63mC4XR7/dhDXnlTDGJoA3Pp8TSAWJ2t1Jc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:e1:53:66:a4:9b:ac:ef:63:19:4a:bf:c7:bd:3a:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
        Validity
            Not Before: Aug 23 17:02:05 2025 GMT
            Not After : Aug 24 17:02:05 2025 GMT
        Subject: CN=ea336734a327800313bab9a9109fdfe912d13c72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:c9:e1:d6:28:3d:48:61:0a:cd:98:5a:57:48:
                    7a:1f:c3:3b:d6:d9:13:9d:9c:21:a2:a7:fd:a3:a9:
                    ce:d4:de:8d:d7:65:52:2e:0c:17:f6:ac:40:ca:c8:
                    45:67:cc:d2:c6:fa:33:72:1e:a2:1f:ec:f4:9f:c4:
                    1d:05:ef:05:57:4e:55:6d:30:58:59:0b:98:16:11:
                    b1:34:1c:fd:cd:25:77:c7:3b:18:15:f8:f2:83:82:
                    5e:ab:8c:8e:2e:d0:c8:a9:2e:d2:8e:dd:f1:c8:24:
                    7f:6d:5b:d2:8f:38:f5:b9:f2:1c:31:6b:13:44:3b:
                    a7:35:0c:b3:b9:92:1d:59:78:a2:a3:a3:1a:88:dd:
                    d1:ef:ef:bf:57:01:5a:1f:02:a5:8e:39:35:06:08:
                    ca:77:73:ef:4b:94:7a:44:1c:14:30:7e:c0:46:33:
                    ba:bc:46:e0:5e:97:81:d2:9e:cd:8e:bf:db:28:dd:
                    ac:30:a2:95:79:c0:ef:ac:e2:1d:a3:73:19:9e:b3:
                    c7:f9:fd:1d:5e:60:ce:8e:90:24:92:d2:b4:8e:36:
                    4b:6e:e6:5f:a8:6c:09:66:45:6e:6f:89:3a:9a:8b:
                    68:a0:a0:f2:91:51:73:4e:af:fc:f9:06:50:a9:09:
                    98:d2:79:35:85:3b:a3:f3:49:76:19:f4:01:e5:de:
                    62:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:33:67:34:A3:27:80:03:13:BA:B9:A9:10:9F:DF:E9:12:D1:3C:72
            X509v3 Authority Key Identifier:
                keyid:03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:d6:86:41:86:ea:64:f9:22:25:b6:be:53:00:b9:4d:89:eb:
         95:20:0b:97:bf:86:1b:f2:de:ca:68:bf:21:f5:b0:d4:60:d0:
         90:58:8f:ff:08:64:7f:88:c4:eb:1e:a5:98:d7:d6:52:a2:2c:
         b0:8d:77:64:42:ce:85:91:d2:23:14:1a:c3:79:b3:2b:90:be:
         fe:e5:f8:ac:96:e5:06:de:5b:a0:17:b0:b6:2e:51:ae:dd:e7:
         20:cd:b7:9e:ff:00:79:fe:ab:c8:ad:36:3c:bf:9d:97:04:b2:
         11:c5:a8:46:73:e4:76:a8:ee:25:cb:86:c2:35:7e:8a:01:7e:
         34:00:7d:b0:55:c8:f7:1f:79:3d:f1:99:0f:74:80:c5:bf:91:
         e1:58:2d:5d:94:bd:db:32:7e:de:e8:9b:16:8a:d7:86:1d:bf:
         da:ad:e5:f5:a1:d0:a4:f5:1e:d5:a8:8c:03:95:f8:18:43:ea:
         a6:f8:9b:0d:00:91:d5:f8:4e:ec:02:f2:4e:19:13:9e:a1:1a:
         eb:f4:f0:1c:fb:60:12:cb:c4:5e:47:97:6f:90:43:21:b5:8f:
         65:79:69:31:eb:c8:26:01:b4:e3:f6:02:21:12:32:25:21:35:
         9c:ef:f3:be:3b:f0:9a:e3:38:aa:5e:ad:c9:91:89:92:9c:e0:
         f3:1f:e2:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----