Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
File:                     GhREUllzKqZzbCSCNEZZR_wjdNA.mft (raw, json)
Hash identifier:          BC7BiDFv3ay49SjZSs02YWbj4SGpSxiuCAkifpYessg=
Subject key identifier:   80:77:2A:9F:93:0E:52:E4:4E:FD:91:B3:AB:D2:16:7C:73:8C:84:0B
Authority key identifier: 1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
Certificate issuer:       /CN=1a14445259732aa6736c248234465947fc2374d0
Certificate serial:       019873E27121F8E47B9FF41D9711E88266B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
Manifest number:          0C93
Signing time:             Mon 04 Aug 2025 07:01:16 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:16 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:16 +0000
Files and hashes:         1: GhREUllzKqZzbCSCNEZZR_wjdNA.crl (hash: WYdz9zFUXYgNJEfM9BX6W9C3MeXEUGva0NRn+PDZDAI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:71:21:f8:e4:7b:9f:f4:1d:97:11:e8:82:66:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a14445259732aa6736c248234465947fc2374d0
        Validity
            Not Before: Aug  4 07:01:16 2025 GMT
            Not After : Aug  5 07:01:16 2025 GMT
        Subject: CN=80772a9f930e52e44efd91b3abd2167c738c840b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:51:3e:3c:8c:5d:1c:da:a5:99:c2:d6:bb:28:
                    31:04:ee:ac:ba:3d:92:fc:30:4f:f2:b3:65:f0:83:
                    50:b6:47:23:60:0e:95:fe:20:a8:b6:02:24:5e:f4:
                    f6:85:6c:a0:a4:b7:f9:23:32:6b:8d:6b:45:7c:6f:
                    ec:8e:36:45:d4:ec:ad:d1:09:06:5b:52:00:7f:96:
                    71:d4:2d:e9:51:29:9c:9c:79:7f:40:06:c2:92:ce:
                    3b:07:15:c1:1a:e5:38:24:25:7b:96:45:72:d8:2c:
                    d9:27:97:8f:81:ee:bf:e4:c0:36:3c:2b:ab:36:10:
                    7b:ec:58:24:98:1f:51:32:b6:09:e2:b8:13:29:70:
                    89:0f:ac:96:b2:0c:13:32:dc:96:4b:8e:a6:9e:18:
                    cb:3a:df:1e:0a:4d:57:d6:d8:d1:e0:3e:22:4e:dc:
                    95:11:d8:51:1b:38:ec:73:36:96:74:e4:15:0e:a9:
                    de:0c:07:1f:70:0a:aa:68:ac:ea:74:e0:bd:26:e2:
                    a0:b1:ec:71:75:29:56:7f:f9:14:44:d9:7f:b3:c1:
                    ea:28:da:c1:ce:e6:1b:77:56:b2:8c:6a:20:d9:74:
                    ae:77:c6:32:d8:6b:64:52:7f:e3:35:97:8b:cf:3a:
                    af:2d:d7:a9:66:5f:57:de:26:6a:2c:9b:37:7a:c6:
                    49:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:77:2A:9F:93:0E:52:E4:4E:FD:91:B3:AB:D2:16:7C:73:8C:84:0B
            X509v3 Authority Key Identifier:
                keyid:1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:14:4e:67:61:48:38:4b:93:5e:49:18:80:d0:f2:75:ba:af:
         2c:57:91:fa:0c:9a:4c:f5:9a:0a:c6:5f:af:8b:51:ef:13:a8:
         41:7f:36:f0:73:7e:33:6d:04:88:94:ce:da:68:91:de:c4:ab:
         7a:dc:56:87:84:e7:d2:62:e9:93:96:48:85:c1:48:62:6e:58:
         b1:a7:9f:ef:ce:2e:21:36:49:70:f8:bf:07:32:47:78:9c:a1:
         70:61:74:01:ff:04:21:d6:6b:b4:42:79:df:01:0a:c2:8e:ac:
         c4:4a:8c:1a:54:c1:9f:2a:41:7a:ae:0a:6a:27:6b:31:47:7e:
         4e:2a:20:30:de:18:64:2e:cf:ca:15:e9:69:a3:71:b9:80:75:
         27:5b:d5:e8:19:88:1e:95:ba:5e:e7:82:65:34:ed:9b:f9:8d:
         9b:98:eb:66:3d:db:b9:9d:67:91:7a:98:b1:7e:d5:02:ce:e1:
         d3:9e:0e:84:85:4b:ca:66:ae:ba:bd:96:39:72:8f:69:53:cb:
         e4:db:7b:2c:86:95:e0:b9:b7:54:f5:e2:f6:e7:66:6c:30:d1:
         5a:5f:5d:72:3a:b4:8d:c2:b5:e9:88:90:b0:b8:55:78:e8:e1:
         49:4a:5f:d8:6e:e5:f1:22:fb:30:af:7e:94:ed:18:39:8d:c2:
         d1:73:9a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----