Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/fb34e4-ed61-4e1d-a46d-78a77f7a1342/1/fKnhWNylWE83ofg0myiaaBLbkko.mft
File:                     fKnhWNylWE83ofg0myiaaBLbkko.mft (raw, json)
Hash identifier:          9P7DqJzB0Fn0Ag/0cSkGbfq1Ojz7+rAcvj/5UmVy9m0=
Subject key identifier:   5B:A6:78:75:6D:B5:55:79:C4:DF:A7:03:F9:BF:92:8B:37:80:96:36
Authority key identifier: 7C:A9:E1:58:DC:A5:58:4F:37:A1:F8:34:9B:28:9A:68:12:DB:92:4A
Certificate issuer:       /CN=7ca9e158dca5584f37a1f8349b289a6812db924a
Certificate serial:       0198D7A8CE37F48A4E649AA48796EAAA03DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fKnhWNylWE83ofg0myiaaBLbkko.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/fb34e4-ed61-4e1d-a46d-78a77f7a1342/1/fKnhWNylWE83ofg0myiaaBLbkko.mft
Manifest number:          08B4
Signing time:             Sat 23 Aug 2025 16:00:20 +0000
Manifest this update:     Sat 23 Aug 2025 16:00:20 +0000
Manifest next update:     Sun 24 Aug 2025 16:00:20 +0000
Files and hashes:         1: fKnhWNylWE83ofg0myiaaBLbkko.crl (hash: nKWb1V9bh7OsVVkGqhxLalEGTgwvf19QZvzv5NJkcKI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/fb34e4-ed61-4e1d-a46d-78a77f7a1342/1/fKnhWNylWE83ofg0myiaaBLbkko.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/fb34e4-ed61-4e1d-a46d-78a77f7a1342/1/fKnhWNylWE83ofg0myiaaBLbkko.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fKnhWNylWE83ofg0myiaaBLbkko.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:a8:ce:37:f4:8a:4e:64:9a:a4:87:96:ea:aa:03:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7ca9e158dca5584f37a1f8349b289a6812db924a
        Validity
            Not Before: Aug 23 16:00:20 2025 GMT
            Not After : Aug 24 16:00:20 2025 GMT
        Subject: CN=5ba678756db55579c4dfa703f9bf928b37809636
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:96:a2:d3:c7:25:00:ba:1a:64:2b:f7:4a:3e:
                    b6:fb:d9:c3:12:24:3b:70:6c:f8:06:19:3b:69:2a:
                    fd:a8:75:a3:5d:cf:41:f8:5c:58:24:5a:a5:c2:ab:
                    66:84:94:82:7a:53:4b:b4:78:02:0a:17:67:48:9d:
                    60:7f:52:7c:8a:50:3c:5f:60:73:42:96:cb:52:51:
                    ac:30:e4:c9:8f:c3:8c:ba:fd:60:3a:59:bc:fc:bb:
                    fc:0e:74:a8:0a:ad:1a:d2:8a:81:8d:12:36:95:a3:
                    27:31:80:cb:44:57:75:07:97:ac:45:b2:f2:88:8e:
                    c4:11:b3:8f:d5:a8:b4:fe:ad:57:2a:50:a4:a3:64:
                    84:5c:cf:5c:4c:73:17:e5:59:2a:f4:f2:36:5e:a9:
                    cc:81:35:7c:f1:27:ee:d8:d2:20:8c:e2:9d:95:ba:
                    27:c6:20:48:4d:8d:fb:71:70:c5:1a:3b:70:a4:5a:
                    bc:1f:1e:98:69:6e:0f:2d:52:b8:ec:94:3a:03:3c:
                    9f:e7:66:32:37:b9:b1:cd:e3:28:15:91:40:8b:cf:
                    92:3f:7a:bb:33:30:d4:f9:2a:19:bc:db:31:b8:b1:
                    ac:b8:0b:e7:68:aa:87:76:7f:3f:1a:37:e8:15:8f:
                    53:a4:d6:ed:7c:b2:67:2d:e7:67:ca:c3:1a:73:91:
                    fe:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:A6:78:75:6D:B5:55:79:C4:DF:A7:03:F9:BF:92:8B:37:80:96:36
            X509v3 Authority Key Identifier:
                keyid:7C:A9:E1:58:DC:A5:58:4F:37:A1:F8:34:9B:28:9A:68:12:DB:92:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKnhWNylWE83ofg0myiaaBLbkko.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/fb34e4-ed61-4e1d-a46d-78a77f7a1342/1/fKnhWNylWE83ofg0myiaaBLbkko.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/fb34e4-ed61-4e1d-a46d-78a77f7a1342/1/fKnhWNylWE83ofg0myiaaBLbkko.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:ca:a3:95:6a:52:68:9e:a3:64:06:66:25:ac:b4:1a:39:a4:
         33:ff:e8:36:37:94:99:1e:5d:ed:22:1d:ea:e9:a6:74:8a:48:
         44:83:b1:e3:68:23:90:48:0f:84:72:90:ed:cc:66:21:4d:4a:
         f7:81:72:cc:23:bd:46:3b:85:95:cf:48:50:f1:8c:bb:24:d9:
         ec:91:24:00:46:72:4e:87:8d:0b:dd:db:6f:bc:b6:64:e1:3d:
         6a:4f:3c:b8:2c:f2:5b:56:86:90:a4:7c:b2:ce:d5:69:c8:62:
         45:4b:b1:9d:f0:b7:ce:7f:2b:d9:5b:cd:62:69:3c:a0:c5:4c:
         f8:06:a8:5d:8a:5b:f8:12:84:0b:18:34:03:92:32:00:05:86:
         5e:fd:ea:7a:06:25:87:3d:1e:39:f8:3a:d4:ac:ca:f6:8d:a9:
         e4:9e:17:f9:44:ad:5d:4c:eb:4f:da:1e:4a:a5:a1:df:b6:66:
         81:db:65:c7:c6:2f:99:b9:ea:a7:a8:dd:4e:ea:fd:2c:9e:64:
         b0:81:3a:5b:5a:5d:e0:57:33:82:53:ce:08:03:3c:2a:cf:5f:
         76:33:1f:ee:2d:18:2b:aa:4a:8e:64:db:e9:1b:3d:23:3c:4f:
         b8:18:5e:85:3f:5d:1c:ff:8f:3d:78:ac:9b:50:5f:65:3e:9f:
         6d:a1:54:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----