Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft
File:                     PQJjyVdcvQESY66Ig5p4iLdPoHY.mft (raw, json)
Hash identifier:          OweZxpCVEiuBMSkjf/GbOEYNLSTpOSVsLe4VW+1Ab14=
Subject key identifier:   D4:97:E4:81:13:E1:ED:7D:B4:FE:BB:BD:46:9A:D6:39:01:53:16:C0
Authority key identifier: 3D:02:63:C9:57:5C:BD:01:12:63:AE:88:83:9A:78:88:B7:4F:A0:76
Certificate issuer:       /CN=3d0263c9575cbd011263ae88839a7888b74fa076
Certificate serial:       0198D65F22517E82AD4E75704DCD30AC9187
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PQJjyVdcvQESY66Ig5p4iLdPoHY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft
Manifest number:          1175
Signing time:             Sat 23 Aug 2025 10:00:15 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:15 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:15 +0000
Files and hashes:         1: PQJjyVdcvQESY66Ig5p4iLdPoHY.crl (hash: /ERtIzeJT73LRM1R406/wxn+8F3vGwyBegP0vrPvBF0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PQJjyVdcvQESY66Ig5p4iLdPoHY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:22:51:7e:82:ad:4e:75:70:4d:cd:30:ac:91:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3d0263c9575cbd011263ae88839a7888b74fa076
        Validity
            Not Before: Aug 23 10:00:15 2025 GMT
            Not After : Aug 24 10:00:15 2025 GMT
        Subject: CN=d497e48113e1ed7db4febbbd469ad639015316c0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:b4:c1:e3:f5:eb:e5:79:36:3e:ac:ad:60:e0:
                    f3:4e:8f:0b:d9:51:8e:fe:30:0c:ba:80:c5:e0:1c:
                    7e:3e:54:07:f9:68:bb:d8:1c:92:05:29:ac:27:0e:
                    e8:70:80:cd:2c:79:3b:41:b4:a2:24:d2:ff:b3:b6:
                    81:01:6b:93:36:7d:af:d9:e2:b5:c9:f8:00:a3:2f:
                    86:35:33:72:bf:38:84:dd:9e:ea:02:65:29:b2:87:
                    62:38:83:f4:b0:2f:9a:96:59:bf:08:ec:01:70:76:
                    e8:7f:7b:92:29:d3:1a:dc:23:1b:c4:0e:11:cd:75:
                    0c:9b:ca:bb:f9:af:40:fd:59:94:a5:c1:ca:87:7b:
                    bd:3d:be:c1:4e:55:c4:67:d2:59:a7:e3:97:dc:bb:
                    32:4c:90:bf:50:70:12:95:38:c8:3b:1b:6c:9c:e3:
                    c2:92:95:22:1a:98:cd:d2:38:d4:f2:31:38:a5:92:
                    e1:c3:c4:cd:2d:cb:1b:81:64:84:20:9e:2f:e5:10:
                    6f:d2:39:10:ff:bd:cb:87:20:57:64:b2:c8:01:e3:
                    42:c4:0c:b5:92:7e:ad:08:1b:3e:79:8e:bb:18:ea:
                    ec:27:fe:0d:df:a8:aa:f1:d4:7f:fc:f1:e0:c9:47:
                    33:1e:e6:e4:47:2a:67:56:7d:1d:13:9c:79:e4:f8:
                    17:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:97:E4:81:13:E1:ED:7D:B4:FE:BB:BD:46:9A:D6:39:01:53:16:C0
            X509v3 Authority Key Identifier:
                keyid:3D:02:63:C9:57:5C:BD:01:12:63:AE:88:83:9A:78:88:B7:4F:A0:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQJjyVdcvQESY66Ig5p4iLdPoHY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/37423a-0537-45f4-9915-12f4e6273877/1/PQJjyVdcvQESY66Ig5p4iLdPoHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:8b:7b:84:bb:89:04:b4:f5:87:6c:4f:68:5a:13:e2:80:b3:
         a8:7d:ea:db:ef:80:1c:d5:52:2b:c4:a1:42:a0:17:b3:0a:e0:
         3b:b4:0c:aa:b1:44:b2:aa:6b:72:de:cc:4a:01:7c:28:5a:0c:
         67:dc:f2:76:fa:0a:ec:bd:31:d9:bc:f0:2d:70:0b:52:51:ce:
         f4:d3:7d:3a:a2:7a:d5:c6:53:65:f3:b9:0b:cc:af:0b:2a:32:
         d3:63:5a:e0:5b:1b:43:1e:34:4d:87:ae:bc:b8:12:4e:3c:b6:
         05:08:1b:df:98:44:4c:8e:fe:21:f7:b9:e7:9f:cd:07:2e:7d:
         94:a8:ed:ad:ac:63:80:a6:35:a6:d7:3c:67:82:12:f7:4a:ab:
         4d:f9:fb:ae:2e:3c:d8:12:e6:30:e4:94:3b:c3:27:ab:be:32:
         10:e6:f5:59:b1:c3:6e:97:e7:2f:a0:38:7d:a6:77:ed:14:2e:
         9a:10:7b:92:e3:6b:de:c6:7c:77:b2:b6:b8:16:94:4b:04:1c:
         c1:a8:bf:87:cf:cf:dd:0e:0f:cc:37:87:5c:6e:dd:85:3c:36:
         0f:17:0f:24:11:51:f9:9d:ee:3e:3d:c7:1f:c3:6e:91:9c:4f:
         ed:1c:6f:80:05:d5:24:81:58:fd:43:0c:f1:d8:bc:f8:21:0e:
         62:e9:94:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----