Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
File:                     wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft (raw, json)
Hash identifier:          siLUHH9D0oi1HU8R01biYKTEF8ljL6eIgxvK/BIi8cw=
Subject key identifier:   11:F5:2D:DA:73:52:97:B1:11:05:B5:CD:D5:72:FB:FF:FE:F7:D8:49
Authority key identifier: C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55
Certificate issuer:       /CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
Certificate serial:       0198A15FD906F049BAC89E94747997E296C3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
Manifest number:          0366
Signing time:             Wed 13 Aug 2025 03:01:09 +0000
Manifest this update:     Wed 13 Aug 2025 03:01:09 +0000
Manifest next update:     Thu 14 Aug 2025 03:01:09 +0000
Files and hashes:         1: wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl (hash: AZblh0K3EXb6dVeyWY/I11UBAqF8voMshkBI5jpLpuU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a1:5f:d9:06:f0:49:ba:c8:9e:94:74:79:97:e2:96:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
        Validity
            Not Before: Aug 13 03:01:09 2025 GMT
            Not After : Aug 14 03:01:09 2025 GMT
        Subject: CN=11f52dda735297b11105b5cdd572fbfffef7d849
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:68:71:2d:59:36:3a:27:d5:96:88:ad:f7:4b:
                    d7:ae:18:2b:5e:fc:e2:32:a5:f8:e0:ac:19:f4:40:
                    92:be:49:06:fb:eb:ae:f3:c8:a5:db:37:f9:94:71:
                    17:7a:6f:ca:ec:79:b7:ec:00:e2:30:15:d3:d8:98:
                    80:6e:0d:41:37:a6:ec:7f:ed:e2:85:b1:84:dc:00:
                    af:40:a2:13:9c:b1:7d:52:fe:a2:1f:9a:f9:c9:b3:
                    94:1d:95:8a:4b:21:4a:5b:d2:33:77:38:1f:6f:e6:
                    24:23:5a:e1:56:a2:f8:ef:39:39:5a:33:d3:81:5a:
                    6d:21:ec:25:29:c9:48:9f:74:c0:64:d9:cf:63:77:
                    cb:8c:8f:9d:2d:37:d7:c1:34:e9:03:d7:3b:2a:b8:
                    23:b3:db:92:ec:af:2a:3e:99:e3:f1:20:02:4d:b6:
                    50:ba:6d:3d:87:cd:34:85:ac:c0:74:95:6e:89:11:
                    95:1c:e1:9e:8a:bd:fb:35:7e:71:0e:50:8a:57:ed:
                    1e:67:af:c8:0a:c5:6b:c4:b1:5e:cc:e3:37:48:90:
                    53:9e:1a:2d:fb:04:13:81:c4:27:4e:30:fe:7e:22:
                    c1:b6:a1:cd:81:61:a8:71:25:df:20:83:73:aa:67:
                    c6:70:41:d9:4a:7d:af:c2:a0:e2:0f:e1:f5:ee:62:
                    91:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:F5:2D:DA:73:52:97:B1:11:05:B5:CD:D5:72:FB:FF:FE:F7:D8:49
            X509v3 Authority Key Identifier:
                keyid:C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:d7:82:df:85:fe:09:4e:bc:cd:37:f3:72:35:dd:59:b1:be:
         25:5f:17:da:d2:57:b2:1e:74:d5:cc:de:1c:67:1e:1e:6d:69:
         f1:30:4e:44:6c:bc:e7:0b:21:1a:cd:cd:62:6f:bd:66:5b:89:
         da:7e:c0:62:d5:68:cd:a9:b2:e6:f2:90:18:18:70:f0:13:bd:
         34:74:20:61:6f:f8:bc:d5:64:b2:c7:e2:87:ec:58:22:15:25:
         4a:8b:6e:40:ee:b6:3b:5a:9e:f6:40:ea:6b:b3:48:43:62:c0:
         e6:68:70:9f:2c:07:11:e6:9a:dd:75:ac:db:69:9a:14:16:4d:
         f1:ee:bb:f3:14:56:bd:67:e5:42:ee:a7:16:74:e6:76:49:b8:
         36:60:25:68:11:b9:42:9b:9f:37:28:06:97:bb:84:eb:5b:07:
         b8:0c:9d:1e:19:b6:84:1d:6b:48:bf:5c:09:cc:07:71:fc:34:
         93:49:89:f6:cc:02:b5:53:74:17:87:95:87:da:97:da:ea:3d:
         ec:eb:38:55:e5:85:62:49:66:1b:7b:fb:3a:15:6b:11:f2:51:
         aa:e9:25:7e:04:01:29:4e:65:5c:3e:e5:6a:ca:0b:ab:6a:e0:
         95:75:8d:e4:e6:f1:42:31:3c:cd:7d:c1:78:da:b7:c8:a4:db:
         23:19:ea:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----