Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
File:                     cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft (raw, json)
Hash identifier:          SQjJP+UAKN2oYXj5X/2fNrX5Txtwj9gLV1CmeB7QFvA=
Subject key identifier:   21:67:D0:FE:1C:6E:FA:BC:E7:C1:7A:56:F0:61:1F:B8:1A:92:DC:24
Authority key identifier: 73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2
Certificate issuer:       /CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
Certificate serial:       0199FCC647B721ACA3DEF9892F42FC25F374
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
Manifest number:          037D
Signing time:             Sun 19 Oct 2025 14:01:16 +0000
Manifest this update:     Sun 19 Oct 2025 14:01:16 +0000
Manifest next update:     Mon 20 Oct 2025 14:01:16 +0000
Files and hashes:         1: cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl (hash: P5Dz2pD3W5yGU4pMg/ZUmoo5oBsUwI1+ZLqxER9+BPk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:c6:47:b7:21:ac:a3:de:f9:89:2f:42:fc:25:f3:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
        Validity
            Not Before: Oct 19 14:01:16 2025 GMT
            Not After : Oct 20 14:01:16 2025 GMT
        Subject: CN=2167d0fe1c6efabce7c17a56f0611fb81a92dc24
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:8d:da:54:f9:25:2d:ec:95:a3:92:3f:2a:20:
                    44:71:df:94:f6:4a:5c:f2:49:92:41:f1:2e:7b:1b:
                    de:a1:ee:b5:27:b7:80:99:c6:00:c7:d5:90:4e:06:
                    b6:bb:81:81:67:41:00:ff:44:ea:7f:bf:cd:c2:ef:
                    88:25:6a:59:ae:b3:37:ff:8b:6f:7d:3c:6e:6c:ae:
                    80:ff:5b:50:8d:a2:5e:59:ed:8b:58:08:d4:95:0f:
                    ae:89:8f:e2:5f:93:15:fe:e6:4d:2d:17:eb:36:5f:
                    48:5e:5d:07:e1:6b:4f:35:a3:5f:c2:a1:16:ab:e7:
                    5e:8b:f8:9b:c3:8d:5c:2a:8e:e7:48:52:a3:08:b9:
                    45:c8:a0:bd:69:f4:f9:0d:9c:74:27:24:0c:0b:89:
                    a2:4b:ce:6e:35:da:3b:9e:54:42:e8:0d:07:c2:4d:
                    93:9f:45:8b:42:11:cf:6b:7c:80:c2:b2:c1:ed:1d:
                    12:3a:40:4f:3e:e4:96:5c:89:ad:d8:62:ec:9e:90:
                    3e:64:10:71:bb:52:05:81:dd:27:6b:2e:69:d3:e4:
                    d0:c6:06:ff:63:01:a5:96:a6:40:52:79:ef:d4:7b:
                    81:2a:37:74:80:c6:41:a6:8b:33:7c:b0:2a:51:45:
                    7e:a6:9d:0a:37:63:2a:0e:94:e2:24:3a:0c:9e:51:
                    c8:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:67:D0:FE:1C:6E:FA:BC:E7:C1:7A:56:F0:61:1F:B8:1A:92:DC:24
            X509v3 Authority Key Identifier:
                keyid:73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:10:84:7c:8b:4f:d6:47:68:12:22:d8:d4:bf:f4:e3:f9:60:
         99:44:50:c1:f9:c0:59:ad:ff:5f:71:a4:1d:5e:78:e0:bc:9e:
         6d:0e:c0:44:da:2b:3b:00:b6:53:6d:eb:1f:1b:61:3b:db:42:
         c3:e0:46:19:25:29:2a:59:20:3f:66:c7:3d:95:bd:18:70:54:
         8c:36:34:d8:a8:9b:f6:33:67:fc:ae:68:5c:98:73:df:ed:d6:
         3b:76:00:29:7e:4e:8d:08:42:4a:7e:89:eb:12:c5:f9:2d:2d:
         3f:4d:57:91:fe:85:5b:20:de:4c:d0:4a:6f:f6:b3:57:ab:fc:
         e8:54:35:ec:50:90:81:5a:f8:2c:26:1a:60:78:d4:6d:fc:f3:
         9a:4b:67:1d:f3:2f:11:95:3c:4d:af:c4:bb:6a:f1:c4:43:69:
         db:96:d0:4f:46:40:6c:33:56:c3:66:89:2f:3a:24:f4:7e:dc:
         ea:3f:38:1c:be:19:3c:03:bd:62:ea:2b:14:8e:9a:b9:6e:bc:
         a7:3d:2d:bd:6a:a1:4e:af:a7:6a:de:02:fc:96:f3:40:a8:c4:
         ff:cc:46:d4:a2:27:09:c1:68:8e:14:81:ad:cc:c4:66:84:ff:
         4b:25:83:6d:1c:37:f7:6b:35:3e:aa:c1:86:54:24:a0:e0:46:
         a6:92:f4:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----