Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft
File:                     a-BR-5PgFam3YbtFr-EJ2740fGY.mft (raw, json)
Hash identifier:          blNmkTmhKWRI4q3dVjci/LuMq7SYsAWPDwqzayHtZmA=
Subject key identifier:   73:21:12:9D:52:AD:05:A3:1E:82:70:19:6A:2A:6E:7E:C8:E5:81:68
Authority key identifier: 6B:E0:51:FB:93:E0:15:A9:B7:61:BB:45:AF:E1:09:DB:BE:34:7C:66
Certificate issuer:       /CN=6be051fb93e015a9b761bb45afe109dbbe347c66
Certificate serial:       0198D73ADC710A05360E8790DFE920602B66
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft
Manifest number:          05FB
Signing time:             Sat 23 Aug 2025 14:00:15 +0000
Manifest this update:     Sat 23 Aug 2025 14:00:15 +0000
Manifest next update:     Sun 24 Aug 2025 14:00:15 +0000
Files and hashes:         1: a-BR-5PgFam3YbtFr-EJ2740fGY.crl (hash: M1B7ytNFCSEVL7SqxxTRt+PZLHTCsDkrp7vVsSKIvas=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:3a:dc:71:0a:05:36:0e:87:90:df:e9:20:60:2b:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6be051fb93e015a9b761bb45afe109dbbe347c66
        Validity
            Not Before: Aug 23 14:00:15 2025 GMT
            Not After : Aug 24 14:00:15 2025 GMT
        Subject: CN=7321129d52ad05a31e8270196a2a6e7ec8e58168
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:eb:bd:a3:dc:7b:1b:ea:1a:fa:38:6f:95:56:
                    01:52:51:f0:0b:7b:db:49:0d:62:d1:da:15:83:f3:
                    35:d8:3d:ad:04:9b:ab:7b:d8:79:e2:24:37:12:65:
                    e9:ad:5b:77:37:9d:d4:e4:9d:2a:73:74:27:a2:1e:
                    35:d3:c6:82:6b:6e:1f:13:bc:8b:5f:8e:80:3e:a1:
                    30:13:75:7b:1c:5c:ea:42:d7:d8:e9:f1:17:09:9c:
                    f8:54:a2:87:21:7b:62:bc:63:17:de:20:ab:ea:dc:
                    22:4f:be:09:c0:93:f1:87:6b:f3:cc:92:1e:48:6a:
                    2a:79:62:45:76:90:ce:bd:b2:67:06:53:26:9b:33:
                    1a:dd:09:e6:55:07:a5:5e:f4:b9:ee:b8:12:71:fa:
                    ff:14:8b:80:eb:5e:27:56:fc:91:81:1c:78:bf:79:
                    4a:dd:84:1e:9c:1f:ad:0f:8d:17:9f:b0:c4:74:3f:
                    78:d3:3a:6f:aa:94:b5:af:12:23:8c:c2:df:f6:e3:
                    74:6f:40:54:93:ff:2f:e0:85:d0:d7:7b:5b:1e:7f:
                    25:5c:c7:25:07:cb:d0:6a:03:73:3c:50:b5:7d:68:
                    fa:31:97:cc:ac:4d:72:f4:9d:84:6b:a8:a7:6f:73:
                    88:bc:b3:df:b2:91:22:a8:20:32:6e:b4:b3:6f:1a:
                    14:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:21:12:9D:52:AD:05:A3:1E:82:70:19:6A:2A:6E:7E:C8:E5:81:68
            X509v3 Authority Key Identifier:
                keyid:6B:E0:51:FB:93:E0:15:A9:B7:61:BB:45:AF:E1:09:DB:BE:34:7C:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:eb:6f:40:44:5e:d0:d9:3b:d2:31:f0:a8:15:64:18:a0:84:
         44:40:13:0b:af:6e:f2:73:76:ea:15:f4:dc:40:94:5a:74:7e:
         68:93:1e:10:a5:dc:a6:9c:87:62:57:19:ca:37:d8:dc:06:e7:
         38:66:fd:1e:5a:c7:29:b9:96:7b:c8:7e:d6:4d:2a:cc:74:4a:
         3f:f7:12:78:31:dc:62:91:3b:eb:58:2e:05:bf:77:44:86:8e:
         1b:a2:b7:50:ef:5e:d5:81:3c:74:8b:38:f0:2f:63:54:b8:5d:
         e5:95:5b:23:80:0f:84:06:74:e6:12:29:6b:7a:15:43:51:9c:
         79:1c:1f:f0:1c:f7:07:66:89:85:d3:e5:e2:37:98:0f:bd:2b:
         d9:45:66:82:08:d6:0f:9c:e8:e4:eb:45:c9:bd:23:6a:f0:3b:
         cd:29:92:cd:40:cd:5b:52:93:c4:21:dd:c4:5b:bc:99:8f:c7:
         b3:ee:ab:11:d0:b0:fe:ad:4d:30:ea:c8:aa:18:c4:89:d9:63:
         c7:05:2d:9f:81:67:84:0b:8d:ae:0a:ac:00:c6:0a:0f:e9:3b:
         41:a8:85:36:de:43:88:85:91:d8:94:76:50:2b:12:3c:d2:51:
         99:3e:2c:a7:85:13:32:ad:5f:66:8b:59:4c:a8:c2:8a:96:a2:
         e5:ba:0d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----