Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
File:                     Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft (raw, json)
Hash identifier:          MtXQFCueWQaA9EBjTlhu0GFXML3la2fkFyVIJZ+yxP8=
Subject key identifier:   0B:0B:D4:5B:8D:E5:EC:5F:FB:DD:8E:84:10:2B:A0:93:5E:0F:03:DD
Authority key identifier: 16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56
Certificate issuer:       /CN=1686f7be9ba171c32746ab4ed20be882bd304356
Certificate serial:       01989FA818B51C2C28286770CD1DCD88DC06
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
Manifest number:          03BD
Signing time:             Tue 12 Aug 2025 19:00:50 +0000
Manifest this update:     Tue 12 Aug 2025 19:00:50 +0000
Manifest next update:     Wed 13 Aug 2025 19:00:50 +0000
Files and hashes:         1: Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl (hash: qkDjvgcUPu2tpWO3nSxqxpL5U01/GJ5mSBVV3SZiaKU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 19:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9f:a8:18:b5:1c:2c:28:28:67:70:cd:1d:cd:88:dc:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1686f7be9ba171c32746ab4ed20be882bd304356
        Validity
            Not Before: Aug 12 19:00:50 2025 GMT
            Not After : Aug 13 19:00:50 2025 GMT
        Subject: CN=0b0bd45b8de5ec5ffbdd8e84102ba0935e0f03dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:f5:19:e6:59:5a:5b:84:f4:1b:66:1a:1d:9c:
                    fe:7d:16:3e:ea:b6:aa:07:86:db:d0:a7:2b:13:bb:
                    05:9b:c0:ef:89:b1:2c:91:3b:8e:c1:cd:a3:5d:ff:
                    0b:f8:f8:3f:2f:a4:26:d0:b2:95:39:6d:ab:63:03:
                    cc:d8:31:b0:b6:55:77:bd:0f:f6:7a:03:50:b8:0e:
                    fc:f8:b3:ab:5b:d2:1c:2a:23:5c:0d:0b:16:07:94:
                    c4:60:8e:db:bc:f3:1e:35:b7:1f:05:79:3c:b0:a6:
                    1a:5e:d4:90:5f:48:3c:ed:b9:21:38:1b:cd:71:21:
                    60:dd:b6:26:e3:b2:00:b6:05:48:4b:1d:b5:7d:82:
                    b2:63:ea:f0:72:03:05:e2:0c:c5:b1:2b:12:a3:50:
                    26:ce:47:c2:e4:f5:a1:b7:b2:06:55:9b:0c:39:65:
                    be:d3:6e:c1:a4:38:45:e4:87:3f:93:75:d6:a4:7a:
                    93:09:fd:70:99:ab:df:05:13:eb:3d:eb:a9:d1:01:
                    67:e1:3e:67:24:0d:e7:9b:3b:be:42:65:da:5f:14:
                    bc:f0:9e:20:cc:9c:eb:25:a3:d7:f4:39:10:0c:76:
                    5c:ee:f8:bd:3e:ae:99:b9:ca:a1:ec:e1:96:36:8c:
                    a4:b7:8e:e7:fe:6e:99:ee:b0:e1:aa:d9:70:a4:66:
                    37:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:0B:D4:5B:8D:E5:EC:5F:FB:DD:8E:84:10:2B:A0:93:5E:0F:03:DD
            X509v3 Authority Key Identifier:
                keyid:16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c4:56:e9:1e:53:48:bc:06:b5:6f:63:ec:c3:aa:a9:37:b0:3f:
         d7:f6:2e:b5:83:a8:a6:2b:7f:e8:9c:f6:8f:d6:25:ed:8a:d4:
         bf:8b:a5:01:26:1a:4c:4b:8e:70:31:95:17:c1:ac:b3:bb:be:
         6e:eb:a5:19:93:ad:09:c0:c3:44:67:cc:3e:b4:1a:1d:31:e3:
         1a:d3:88:4a:30:6a:99:75:17:d3:71:04:a0:01:e8:c0:2c:2e:
         f5:13:53:61:58:8f:92:1d:90:30:66:62:9e:82:ca:0e:52:9e:
         70:20:b5:2e:cd:ac:ef:b1:59:8e:55:39:b3:d0:0a:89:57:b0:
         24:21:d1:0d:2f:93:68:41:a5:45:f7:fb:e4:d7:bd:9e:9a:72:
         d1:7c:da:03:87:4a:95:db:1b:96:4b:d2:53:e3:c9:70:2b:61:
         36:ae:01:82:8b:96:9e:59:32:21:9c:02:fc:8f:af:82:e4:6d:
         a1:b5:d2:df:5c:4d:9e:85:5d:3e:b7:52:ae:f7:b9:81:bf:3a:
         16:39:2a:19:96:ff:31:ef:d6:b9:ba:3a:33:13:c8:0d:f5:1c:
         a9:38:d4:35:fe:00:b8:ee:87:1c:50:2d:5f:f6:28:9a:32:09:
         45:c4:cc:75:c4:14:60:9b:bf:da:55:a3:21:89:4b:5e:d2:3b:
         d6:06:a7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----