Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
File:                     yigmXgq4MyeqVJI0yrsT64_2ZDc.mft (raw, json)
Hash identifier:          q94KPyE3cdwmW6C6s93lxwKPjO67JqRPyZXPaInwhlI=
Subject key identifier:   53:C2:7E:D7:12:82:CE:AA:94:AF:0F:43:C9:A1:92:C3:E3:76:5B:5A
Authority key identifier: CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37
Certificate issuer:       /CN=ca28265e0ab83327aa549234cabb13eb8ff66437
Certificate serial:       019872CFD9F31537442B7135669647BF47CA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
Manifest number:          0F77
Signing time:             Mon 04 Aug 2025 02:01:20 +0000
Manifest this update:     Mon 04 Aug 2025 02:01:20 +0000
Manifest next update:     Tue 05 Aug 2025 02:01:20 +0000
Files and hashes:         1: yigmXgq4MyeqVJI0yrsT64_2ZDc.crl (hash: mcnnM3rLIYSTgJLPjeguYpG6eShVVH9IbJNQ8wkOGUY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 02:01:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:cf:d9:f3:15:37:44:2b:71:35:66:96:47:bf:47:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca28265e0ab83327aa549234cabb13eb8ff66437
        Validity
            Not Before: Aug  4 02:01:20 2025 GMT
            Not After : Aug  5 02:01:20 2025 GMT
        Subject: CN=53c27ed71282ceaa94af0f43c9a192c3e3765b5a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:cf:9b:65:d4:81:cf:f0:c9:57:62:c6:3d:2a:
                    13:1a:9b:8f:1c:a2:b9:f1:02:e5:c0:c2:4c:09:82:
                    8a:8a:a6:58:63:48:7a:d5:1f:b5:0f:d8:6b:e0:70:
                    e5:14:d6:08:84:8a:e6:c5:c4:7a:19:62:b0:d7:87:
                    f7:28:a3:2f:06:7e:ad:48:2d:2e:d2:00:74:70:a9:
                    5b:5b:a9:04:79:77:35:6c:a4:98:74:aa:30:b5:03:
                    08:a5:12:5c:67:c3:3a:2f:85:c4:6f:e6:68:35:f1:
                    49:87:d9:64:85:8d:0a:e3:4e:2e:77:05:a3:92:95:
                    25:3e:02:8a:54:6e:4b:b9:d9:7c:84:bb:52:75:a1:
                    fb:8d:a5:9a:76:95:f2:39:f7:1e:9d:69:75:71:3e:
                    5d:6a:f9:4f:c9:d6:41:aa:98:ce:f5:b9:42:29:0f:
                    eb:d9:af:48:52:f9:cf:a0:ee:a4:31:eb:ab:51:a9:
                    2d:19:24:47:41:eb:3d:8d:f7:b7:fd:be:23:9a:94:
                    ca:6c:eb:a7:2d:e9:6d:8b:7f:20:74:f5:52:e1:70:
                    87:b0:40:1d:ea:05:d4:f5:1e:a7:2a:85:eb:82:4d:
                    37:49:ee:7e:d8:7c:45:90:f8:60:48:2a:51:93:9e:
                    4f:77:e3:f1:d0:c1:42:18:02:81:10:e4:ba:a0:cb:
                    16:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:C2:7E:D7:12:82:CE:AA:94:AF:0F:43:C9:A1:92:C3:E3:76:5B:5A
            X509v3 Authority Key Identifier:
                keyid:CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:a9:54:e2:0b:72:dd:46:24:fe:af:6c:12:7c:c3:3e:be:b0:
         1a:9e:0c:9f:6d:94:1f:e2:7a:37:c0:51:c6:02:5a:02:f9:e2:
         67:90:00:a1:d2:2b:0c:7d:f4:35:dd:fe:7b:a4:b5:98:6e:bd:
         71:bf:b8:c6:1a:9f:5f:e2:dd:7c:56:71:38:76:ef:53:49:31:
         e5:75:25:37:8e:f1:c4:14:71:a3:82:c9:90:b1:e9:9f:87:65:
         43:ad:20:94:2f:84:a5:56:02:58:4d:b2:5d:84:02:fc:b0:9a:
         98:45:c7:d8:35:30:0a:4e:7b:7b:ee:16:3b:8d:da:19:d9:9a:
         5d:1d:ef:ce:8d:1c:cd:6e:4f:93:da:1e:b6:30:26:26:a1:72:
         99:55:71:49:fe:4b:04:be:2f:31:ca:2d:6b:75:b7:46:6c:03:
         bc:84:e8:0a:a0:59:ee:9a:90:47:ba:c4:21:32:cb:a8:50:ff:
         fd:9e:99:94:11:71:eb:83:df:3d:45:ef:4a:c1:9e:98:76:12:
         5e:eb:d3:81:d0:08:5e:c9:a8:52:10:cd:b1:8e:f0:02:a1:7f:
         ec:c6:5e:31:98:40:06:81:56:19:2a:bf:4a:d6:34:eb:ba:d5:
         81:7d:40:aa:14:df:77:70:0e:12:8f:4d:37:26:05:62:e7:72:
         5d:70:bf:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----