Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
File:                     oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft (raw, json)
Hash identifier:          Pm1MSRug5FAlfQm2UYMgkNCor0unhmyKzx5fLjxX7EM=
Subject key identifier:   5F:ED:6F:94:00:0A:14:1A:E5:59:F5:22:3A:7F:A5:32:26:AC:B1:FC
Authority key identifier: A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A
Certificate issuer:       /CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
Certificate serial:       0198D7A91E0FE8090CFB4FF9AE1CB625BDC1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
Manifest number:          1648
Signing time:             Sat 23 Aug 2025 16:00:41 +0000
Manifest this update:     Sat 23 Aug 2025 16:00:41 +0000
Manifest next update:     Sun 24 Aug 2025 16:00:41 +0000
Files and hashes:         1: oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl (hash: ivNxvwsH1i43P4UC+ChCm5uyTmKhESQep8k4zo/xSgE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:a9:1e:0f:e8:09:0c:fb:4f:f9:ae:1c:b6:25:bd:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
        Validity
            Not Before: Aug 23 16:00:41 2025 GMT
            Not After : Aug 24 16:00:41 2025 GMT
        Subject: CN=5fed6f94000a141ae559f5223a7fa53226acb1fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:84:b6:f6:77:bf:db:dd:c2:a6:1d:12:fe:24:
                    bd:44:a9:a4:fd:f3:ec:66:f5:d5:0b:1a:3d:fa:a2:
                    5a:80:ed:f9:65:82:4a:1f:c2:00:21:b5:bf:76:08:
                    b2:68:1b:18:0e:61:72:41:19:3e:5e:b5:32:5e:46:
                    71:a3:64:c0:ee:6e:98:2d:74:97:79:74:d8:0a:ea:
                    91:a1:89:52:1b:e1:ac:70:50:3d:88:00:b0:ce:a7:
                    21:8d:b9:18:69:f2:d1:20:4b:51:b6:e6:4d:a0:43:
                    28:43:0a:cf:85:be:b0:44:68:f5:80:9f:c4:38:fb:
                    e0:a4:c7:9e:98:0c:f1:43:8c:f8:8d:ce:6d:a5:93:
                    91:ad:14:9c:3f:78:bc:06:bd:9c:4c:66:e7:e0:85:
                    92:99:4a:09:d2:f1:ef:61:fa:b9:40:be:fc:a0:bd:
                    6a:0b:2f:a8:23:73:3e:1e:c5:d6:9f:b5:46:1b:e9:
                    e2:59:b7:11:c8:33:09:78:22:43:49:9d:1c:d2:fe:
                    c2:41:c3:61:5a:b6:71:cf:5c:d2:a8:b2:70:0e:13:
                    7d:bb:87:e3:43:f1:3e:86:3c:c0:60:c5:e6:c9:a8:
                    99:2b:7e:4a:2a:a0:cb:08:68:01:b4:fd:1b:fa:b4:
                    3b:6a:ec:5a:5d:de:9a:0b:5e:30:84:80:5c:4b:4a:
                    4e:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:ED:6F:94:00:0A:14:1A:E5:59:F5:22:3A:7F:A5:32:26:AC:B1:FC
            X509v3 Authority Key Identifier:
                keyid:A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:b3:76:18:ad:9d:a8:e8:cf:84:e0:32:7b:4f:97:2e:6a:64:
         a2:52:6a:63:76:f9:d8:0c:df:89:5d:a4:9e:27:a1:ff:f5:da:
         a8:2e:72:30:af:62:bf:39:48:53:e8:d2:99:74:8a:8d:d9:8e:
         21:11:01:b7:ab:ae:18:ef:07:3c:68:01:93:dd:d5:41:21:32:
         30:50:a2:1d:59:b3:e6:92:e2:56:96:54:79:96:d3:de:70:db:
         d6:e0:bb:c4:23:5c:78:ac:83:9c:49:f7:84:50:83:77:b1:ea:
         e7:d2:60:3d:92:55:1c:09:9a:a2:18:cc:99:1b:96:54:b3:59:
         82:41:96:c1:2e:f9:45:16:b1:9a:e2:3a:3a:6a:54:2c:ad:8f:
         03:06:b6:f7:01:db:78:3b:47:03:d5:76:a6:5e:94:a4:1d:52:
         8e:08:52:61:cc:df:15:1d:fb:2c:4e:2a:ef:58:5c:72:40:aa:
         f4:34:16:30:c0:56:90:69:ce:1e:9c:17:de:a5:3b:76:e8:a8:
         00:a0:8a:22:c8:d9:31:78:18:bf:97:45:64:a2:6f:bd:84:e4:
         d1:26:6c:12:27:96:1c:0c:d4:7c:1a:da:75:7d:38:fd:91:2e:
         ba:db:ef:31:b7:fc:84:c0:61:63:93:91:ce:da:ec:a9:60:6f:
         76:3b:0b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----