Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d10d4d-a2c0-4d20-8a21-24d0e62f79c0/1/K328XveedAIoXs2gg3ukvyGHYdw.mft
File:                     K328XveedAIoXs2gg3ukvyGHYdw.mft (raw, json)
Hash identifier:          IjP1RXaWfUklFKwXspgEa3Vrfrz6mBt5lOa+YASHq8Q=
Subject key identifier:   4A:DF:C3:82:F5:94:5E:BB:01:75:03:CB:E7:BD:B2:D8:77:94:AB:9C
Authority key identifier: 2B:7D:BC:5E:F7:9E:74:02:28:5E:CD:A0:83:7B:A4:BF:21:87:61:DC
Certificate issuer:       /CN=2b7dbc5ef79e7402285ecda0837ba4bf218761dc
Certificate serial:       01988E46545C76716FC5DE7B048F28BB6DA0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K328XveedAIoXs2gg3ukvyGHYdw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/d10d4d-a2c0-4d20-8a21-24d0e62f79c0/1/K328XveedAIoXs2gg3ukvyGHYdw.mft
Manifest number:          0E3A
Signing time:             Sat 09 Aug 2025 10:00:30 +0000
Manifest this update:     Sat 09 Aug 2025 10:00:30 +0000
Manifest next update:     Sun 10 Aug 2025 10:00:30 +0000
Files and hashes:         1: K328XveedAIoXs2gg3ukvyGHYdw.crl (hash: bLyQ0d/Y6x+IkJkSKlHEMr66cUczXmNGAgSxjvrkptw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/d10d4d-a2c0-4d20-8a21-24d0e62f79c0/1/K328XveedAIoXs2gg3ukvyGHYdw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/d10d4d-a2c0-4d20-8a21-24d0e62f79c0/1/K328XveedAIoXs2gg3ukvyGHYdw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K328XveedAIoXs2gg3ukvyGHYdw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 05:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8e:46:54:5c:76:71:6f:c5:de:7b:04:8f:28:bb:6d:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b7dbc5ef79e7402285ecda0837ba4bf218761dc
        Validity
            Not Before: Aug  9 10:00:30 2025 GMT
            Not After : Aug 10 10:00:30 2025 GMT
        Subject: CN=4adfc382f5945ebb017503cbe7bdb2d87794ab9c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:3e:4b:43:ad:e5:df:f9:31:8e:ee:9a:d0:ba:
                    da:15:47:fa:82:3e:5b:58:10:e6:6f:7a:c9:2e:de:
                    8e:81:2c:cf:4c:c8:4a:7a:a4:4b:10:44:d4:95:2b:
                    49:3c:44:56:96:a7:c5:3b:c7:95:25:6a:b6:c3:5f:
                    15:e3:76:29:c8:f5:11:11:d0:cd:b1:1c:3a:03:67:
                    0f:e0:33:0d:f0:d8:6e:f5:a5:d0:73:6e:d8:b2:4b:
                    40:a0:e9:8a:a5:d5:dd:5a:b6:29:4c:15:ef:5e:e3:
                    fb:73:5f:01:8f:78:c1:53:4c:dc:c3:82:63:da:43:
                    22:84:8d:2e:44:76:9d:e8:9b:6a:d8:93:19:b5:36:
                    eb:f5:dd:21:36:3e:b8:50:39:c4:d6:07:ae:87:ca:
                    e4:85:7b:02:24:02:de:f5:62:72:11:e1:1b:3a:76:
                    c6:79:e7:50:38:fc:46:c3:ac:be:3e:89:32:21:b5:
                    97:8a:58:24:22:62:4c:d4:4f:51:7b:a0:47:ec:f9:
                    4a:05:70:40:66:5c:28:3e:ae:fa:1d:5a:50:b4:76:
                    3a:7f:7c:a6:2e:d5:96:00:38:b5:3a:97:79:a0:bb:
                    42:79:05:e3:fe:a3:e9:01:a0:74:fb:a9:2e:33:c1:
                    04:5a:f0:26:31:3c:25:35:32:81:3c:9e:ae:c8:5f:
                    e7:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:DF:C3:82:F5:94:5E:BB:01:75:03:CB:E7:BD:B2:D8:77:94:AB:9C
            X509v3 Authority Key Identifier:
                keyid:2B:7D:BC:5E:F7:9E:74:02:28:5E:CD:A0:83:7B:A4:BF:21:87:61:DC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K328XveedAIoXs2gg3ukvyGHYdw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d10d4d-a2c0-4d20-8a21-24d0e62f79c0/1/K328XveedAIoXs2gg3ukvyGHYdw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d10d4d-a2c0-4d20-8a21-24d0e62f79c0/1/K328XveedAIoXs2gg3ukvyGHYdw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:60:55:c5:ce:e6:08:de:8b:7c:00:e8:ab:37:cd:9e:9d:e1:
         c7:32:7b:c6:4f:6f:59:47:df:ce:be:d1:2e:2a:d5:16:06:f1:
         e9:da:47:f7:6f:ac:dd:9f:44:c5:e8:cd:0a:8c:94:5f:e5:76:
         e1:84:67:b7:d8:1f:89:d2:d3:a2:dc:f2:69:5c:19:0e:d7:fc:
         ad:c8:bb:91:7d:e6:c4:4d:2a:b4:9c:4b:9a:91:14:cf:5b:11:
         c2:a3:bc:d3:e0:91:4a:83:51:5e:5e:2b:da:91:84:bc:6f:54:
         d1:42:59:b2:f2:51:62:91:01:95:90:33:fd:d6:c7:bb:ca:28:
         4f:31:1f:d2:45:cd:a5:38:7f:04:f8:94:bc:d5:b1:13:6a:42:
         7c:ff:60:3b:39:ff:10:bf:1b:15:3e:2a:6a:73:37:84:fd:a6:
         1b:6c:59:5e:34:d1:14:8c:8f:ea:1d:07:99:7a:5d:1f:43:45:
         79:c4:34:40:ae:8a:61:e4:67:a3:15:08:56:68:a8:05:ab:99:
         c3:03:7d:b9:15:28:dc:7a:0c:60:cb:fe:91:eb:6a:30:ed:2a:
         11:1a:a3:be:0f:b2:65:b9:80:12:90:08:63:d9:6a:43:47:95:
         e3:0c:e2:a8:a2:07:f6:ea:2f:ec:8a:6a:29:86:47:a3:b2:b7:
         94:82:d9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----