Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft
File:                     fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft (raw, json)
Hash identifier:          mLLShACpreEF7J3VPK3awEiTFKUWPJ1GIQTlKPH8tn8=
Subject key identifier:   DA:11:54:05:BE:63:D1:C8:FB:80:B5:D2:13:6E:B6:C5:45:35:57:83
Authority key identifier: 7D:0B:CA:BE:C4:37:9F:2D:3B:94:18:74:10:D2:E6:E0:31:A7:41:71
Certificate issuer:       /CN=7d0bcabec4379f2d3b94187410d2e6e031a74171
Certificate serial:       01988054C5CBB1C94289B7C5DDB28F6F23F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fQvKvsQ3ny07lBh0ENLm4DGnQXE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft
Manifest number:          15AD
Signing time:             Wed 06 Aug 2025 17:01:35 +0000
Manifest this update:     Wed 06 Aug 2025 17:01:35 +0000
Manifest next update:     Thu 07 Aug 2025 17:01:35 +0000
Files and hashes:         1: fQvKvsQ3ny07lBh0ENLm4DGnQXE.crl (hash: NZqVUT4bR3hq2jtT0yW102hlmBv8wkaK+nHkn/tTgWg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fQvKvsQ3ny07lBh0ENLm4DGnQXE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 17:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:80:54:c5:cb:b1:c9:42:89:b7:c5:dd:b2:8f:6f:23:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7d0bcabec4379f2d3b94187410d2e6e031a74171
        Validity
            Not Before: Aug  6 17:01:35 2025 GMT
            Not After : Aug  7 17:01:35 2025 GMT
        Subject: CN=da115405be63d1c8fb80b5d2136eb6c545355783
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:7d:cd:3a:0f:50:b5:e0:f6:39:53:f1:45:0a:
                    1f:5a:5e:8d:01:12:61:a9:3d:b5:2d:6e:48:52:4b:
                    d3:4b:31:e9:cd:39:a0:7b:82:93:5f:d3:4b:4d:52:
                    92:bf:b7:2b:41:d6:e5:a3:f8:75:d9:60:c7:61:d4:
                    a2:28:43:e2:71:d7:15:bb:8b:ce:c0:9a:55:d7:75:
                    39:4d:4a:68:d3:1e:7f:0c:22:b6:6b:63:6c:c7:d3:
                    c4:d8:a6:a3:b1:d9:fe:6e:24:a8:bf:66:2d:c4:35:
                    3e:12:be:79:48:de:07:ac:fe:27:f3:fe:5b:2f:1f:
                    48:dc:04:96:cc:bd:5a:5a:25:da:23:8c:15:3d:9e:
                    85:f4:b0:37:1f:3a:fd:fc:21:a7:15:39:60:32:19:
                    fd:6c:ac:ef:aa:a0:e0:3a:44:94:15:ad:ab:eb:6c:
                    cc:54:8d:4c:ef:66:1f:7f:09:85:fd:de:f8:9c:16:
                    82:f6:e8:3d:20:a0:f2:53:65:58:df:ca:27:ae:5f:
                    9f:71:66:98:d4:6f:c2:07:43:4b:17:28:16:4f:2f:
                    4b:cc:b7:67:9e:80:6b:22:a5:e8:72:c8:0a:2d:45:
                    38:b2:59:e1:c8:08:bb:d2:66:bd:0c:33:a5:02:85:
                    db:f2:71:71:ba:78:94:3c:53:08:2a:04:80:d9:3d:
                    aa:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:11:54:05:BE:63:D1:C8:FB:80:B5:D2:13:6E:B6:C5:45:35:57:83
            X509v3 Authority Key Identifier:
                keyid:7D:0B:CA:BE:C4:37:9F:2D:3B:94:18:74:10:D2:E6:E0:31:A7:41:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQvKvsQ3ny07lBh0ENLm4DGnQXE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:b9:36:46:6b:a2:a3:08:d0:4a:76:31:0f:a8:8e:c7:d7:50:
         3c:dc:9c:ac:81:18:73:0d:0c:e8:1d:31:6f:48:31:8b:6c:a9:
         93:4e:f7:ab:21:0a:99:19:fe:40:be:9d:d2:d8:79:43:33:1f:
         21:78:2d:06:bc:18:e9:6d:71:f6:91:04:b1:a5:cc:2b:90:48:
         59:91:e7:31:f3:ed:af:a2:5a:15:2c:52:b1:61:97:e6:fc:60:
         d5:a1:fd:ee:61:cb:eb:a5:04:c5:e0:66:47:17:a6:8a:37:78:
         bd:4b:9b:9a:df:8e:c9:e5:52:0b:e2:bf:8b:46:d7:b0:de:23:
         4f:e5:d9:77:c3:f9:c6:2a:bf:f0:af:b2:54:fb:11:79:63:34:
         13:0f:fd:4b:13:0f:b8:4a:e1:c6:84:f2:45:3d:29:bf:e7:cd:
         ba:68:60:4a:d8:24:7e:8d:19:c9:db:0e:17:d0:9e:d7:1a:db:
         b2:96:14:c7:73:05:84:9f:69:be:94:ca:b8:40:16:0e:f2:8e:
         0c:8a:76:d3:4a:20:63:2b:e4:4a:70:7d:bb:d6:07:25:eb:80:
         4f:3a:07:06:82:7b:89:b7:3f:83:38:94:74:83:08:b2:91:c4:
         d4:be:fd:ae:64:15:07:f8:f4:f1:cc:ba:12:47:43:af:39:c7:
         fa:23:d5:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----