Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft
File:                     mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft (raw, json)
Hash identifier:          sm0xMbGDULkKdbCayWIJOOe/BVbsD2GUuIxU7vG3vkU=
Subject key identifier:   5E:10:68:E2:EB:91:D0:A8:77:99:A7:CE:4E:62:E6:7E:5A:64:7C:64
Authority key identifier: 98:7A:BA:6F:74:45:5C:4F:A3:AB:E2:3A:A8:23:06:7E:CF:C3:3C:48
Certificate issuer:       /CN=987aba6f74455c4fa3abe23aa823067ecfc33c48
Certificate serial:       0198729890DAE9A3A7B657EA2BDCB78154FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mHq6b3RFXE-jq-I6qCMGfs_DPEg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft
Manifest number:          01C7
Signing time:             Mon 04 Aug 2025 01:00:57 +0000
Manifest this update:     Mon 04 Aug 2025 01:00:57 +0000
Manifest next update:     Tue 05 Aug 2025 01:00:57 +0000
Files and hashes:         1: mHq6b3RFXE-jq-I6qCMGfs_DPEg.crl (hash: Och7A8IhN0Gns1SHFO89uxeJXOzK06PaMpp6AeAHBN0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mHq6b3RFXE-jq-I6qCMGfs_DPEg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 01:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:98:90:da:e9:a3:a7:b6:57:ea:2b:dc:b7:81:54:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=987aba6f74455c4fa3abe23aa823067ecfc33c48
        Validity
            Not Before: Aug  4 01:00:57 2025 GMT
            Not After : Aug  5 01:00:57 2025 GMT
        Subject: CN=5e1068e2eb91d0a87799a7ce4e62e67e5a647c64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:24:61:53:16:32:2f:72:31:44:4f:11:a9:3e:
                    f2:f3:77:4e:07:ec:b5:68:f2:23:f3:0d:2b:3c:57:
                    3b:bc:52:c7:f3:3d:f6:19:54:fe:fc:34:b6:71:74:
                    46:a7:e8:d3:f6:cd:25:09:a4:94:36:ee:fe:50:60:
                    7c:d0:fe:0c:b1:19:5b:95:70:c1:55:5d:d7:c2:b7:
                    b5:3c:c1:7b:92:4a:dc:b3:ac:df:6b:c6:45:1a:98:
                    23:4d:d2:72:ac:e6:d2:7c:eb:26:19:59:7e:8d:2f:
                    fb:33:75:59:34:e3:b5:8b:7f:0b:78:9b:90:8c:6e:
                    9a:88:da:e5:9d:61:5f:5d:30:1f:7b:6f:a1:34:5c:
                    3f:a0:3c:ae:97:06:7d:0d:d6:a0:af:68:5c:1e:3a:
                    e2:24:24:89:04:20:ca:81:09:6e:30:ed:22:2a:fd:
                    d5:57:ad:3c:74:38:23:ca:e7:79:f0:8a:aa:0c:c4:
                    8d:91:87:a2:a5:40:90:ac:38:b7:f6:af:0a:80:68:
                    36:73:d5:3c:81:25:5f:6d:2e:db:66:56:0d:48:cd:
                    cd:6d:27:6f:fa:30:98:69:e9:e0:24:ef:d4:a5:ca:
                    e1:b3:65:b2:db:5c:af:2a:b1:44:19:a6:72:fe:ab:
                    44:e4:71:65:e7:57:82:96:12:a4:cd:3a:ce:01:f6:
                    c6:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:10:68:E2:EB:91:D0:A8:77:99:A7:CE:4E:62:E6:7E:5A:64:7C:64
            X509v3 Authority Key Identifier:
                keyid:98:7A:BA:6F:74:45:5C:4F:A3:AB:E2:3A:A8:23:06:7E:CF:C3:3C:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHq6b3RFXE-jq-I6qCMGfs_DPEg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:45:d4:48:9d:e5:21:e7:5b:d8:83:a6:c4:18:29:aa:b9:92:
         dc:25:be:e2:3a:1d:3f:7b:64:0b:83:4b:b1:a6:bd:54:a8:9a:
         41:7f:42:b1:a8:71:61:d3:7e:7e:23:06:84:33:17:2e:59:0e:
         b1:88:a7:82:fb:b4:bd:57:39:7e:b4:60:b0:93:dc:07:f7:8f:
         8d:6d:54:33:66:76:e5:b2:a3:f1:5e:52:8b:e7:a3:dc:cf:c4:
         1f:ed:c5:5b:a3:38:20:ed:df:a5:82:03:4e:4c:24:04:4c:92:
         fd:96:92:e6:39:80:f7:37:39:69:01:7b:25:30:28:ad:a4:44:
         6b:85:cc:5e:4c:bd:33:7c:e4:c9:7d:d4:70:9f:e8:ac:71:d9:
         a7:06:19:85:ca:d7:5f:8b:22:f3:95:b2:9c:48:7b:e7:6b:9f:
         dd:ad:ab:4b:64:38:6c:1e:01:fe:a7:36:00:b8:0a:c5:de:e6:
         c7:1b:b2:b6:f0:8e:ef:e4:32:51:64:8b:f7:94:7d:68:f2:98:
         9c:2a:66:44:88:ce:29:6b:d7:fb:d0:e4:82:37:58:ae:b2:fb:
         07:92:9c:43:91:61:e4:be:68:a6:9d:1e:de:7c:74:60:71:19:
         c0:36:7f:17:65:96:3b:86:3d:8e:89:86:83:e6:ab:08:29:83:
         ea:f9:f5:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----