Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft
File:                     ROzsULCd1G04TQgbUH0juv71HJw.mft (raw, json)
Hash identifier:          HQeqTG+fDjMQo5uCVaF4L9SqIab5N6zUG022uM/NE5Y=
Subject key identifier:   4C:47:85:12:18:9E:00:93:EF:EC:8E:FB:C3:F8:3F:9C:BD:F5:09:38
Authority key identifier: 44:EC:EC:50:B0:9D:D4:6D:38:4D:08:1B:50:7D:23:BA:FE:F5:1C:9C
Certificate issuer:       /CN=44ecec50b09dd46d384d081b507d23bafef51c9c
Certificate serial:       01988DA1C9750B67782B49C18AE0B278BFB1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft
Manifest number:          1622
Signing time:             Sat 09 Aug 2025 07:00:46 +0000
Manifest this update:     Sat 09 Aug 2025 07:00:46 +0000
Manifest next update:     Sun 10 Aug 2025 07:00:46 +0000
Files and hashes:         1: ROzsULCd1G04TQgbUH0juv71HJw.crl (hash: W673FOeePQNdDLnz8l9kg/0hLmXBWpiimd3SNxo7i3o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 05:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8d:a1:c9:75:0b:67:78:2b:49:c1:8a:e0:b2:78:bf:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44ecec50b09dd46d384d081b507d23bafef51c9c
        Validity
            Not Before: Aug  9 07:00:46 2025 GMT
            Not After : Aug 10 07:00:46 2025 GMT
        Subject: CN=4c478512189e0093efec8efbc3f83f9cbdf50938
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:1b:0f:8d:39:54:db:0f:0c:8e:96:70:fb:90:
                    37:56:d2:1a:63:44:51:24:60:00:cb:f7:f7:2e:be:
                    5a:7f:ee:94:40:d7:f4:ff:7a:ba:c0:c5:3c:de:2e:
                    9f:f6:fc:e9:2d:96:a2:d1:27:02:f2:4a:b7:3f:2c:
                    cc:79:8a:cd:0a:34:96:47:5e:38:a2:5c:ce:1a:f5:
                    3e:0a:46:32:61:32:c9:46:5f:32:3e:80:27:03:2c:
                    f1:89:7c:3d:d8:4f:74:d8:f6:1c:44:d9:c0:94:30:
                    ed:c2:63:d6:77:0d:76:4a:9c:e5:48:b8:de:21:2d:
                    c6:b1:48:99:66:f6:ad:b2:ca:cc:08:21:78:39:93:
                    8a:4c:89:9e:e5:1b:0f:93:bc:48:37:b7:9d:c1:48:
                    c9:25:0f:7d:40:25:b5:f5:7d:ca:b3:cf:ad:c1:d4:
                    6c:d9:1a:06:e4:b5:55:0b:a4:d2:4b:b3:81:9b:da:
                    73:d1:20:8a:4c:bd:99:5a:24:d7:d6:89:cc:47:3b:
                    90:a1:7f:b9:0d:d6:2e:78:cd:14:28:08:41:d1:82:
                    08:cf:21:ab:7a:d5:b2:21:c8:a9:ee:96:9d:21:9b:
                    23:d3:be:7c:f4:e1:59:bb:73:4f:f4:d1:fe:03:bc:
                    67:cf:34:74:7e:84:8e:ce:f1:12:e9:f6:b0:68:4b:
                    ed:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:47:85:12:18:9E:00:93:EF:EC:8E:FB:C3:F8:3F:9C:BD:F5:09:38
            X509v3 Authority Key Identifier:
                keyid:44:EC:EC:50:B0:9D:D4:6D:38:4D:08:1B:50:7D:23:BA:FE:F5:1C:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:e9:93:9b:f7:3d:52:21:f3:63:df:05:f6:c4:4d:13:0a:36:
         c3:07:b0:0c:03:18:1f:bd:ae:da:16:33:42:9a:ed:6e:f8:b0:
         a9:02:03:7a:c3:94:7c:5b:93:51:6e:85:d4:11:57:7d:ea:97:
         93:07:57:14:80:3b:b7:13:bc:92:17:d2:76:b0:90:ef:c9:9a:
         66:f4:57:43:4a:f8:c0:d0:e6:98:79:0b:d4:d8:74:1e:d3:6a:
         fe:9f:eb:fc:b1:34:aa:b7:5f:61:02:17:94:53:14:29:7b:5a:
         84:76:16:66:6b:8d:6b:bd:39:8a:50:a8:b0:c5:68:df:c7:a2:
         5a:df:5e:a1:a9:8f:c2:f6:3c:e9:81:80:a9:67:90:3c:a5:f5:
         81:c9:21:12:eb:75:d7:d0:39:ba:64:17:8a:9e:48:cd:45:2f:
         11:d9:16:87:77:2a:1a:17:8d:e5:8e:4a:91:7a:ab:f2:dc:53:
         73:b8:de:29:0b:02:85:5d:38:fa:b7:18:19:3e:3b:7d:8e:d7:
         f1:a9:9e:75:b1:17:be:f2:97:c1:8d:be:66:03:b7:40:cc:fe:
         e9:7b:82:10:4e:bd:2a:27:ae:4e:8b:a8:ce:9a:84:7c:ec:63:
         be:fb:07:68:ce:03:b9:17:0f:e6:e7:ab:39:cf:cd:7f:0a:fd:
         ce:d9:d6:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----