Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6fd3ef-d558-4e70-a214-52aefb6568ae/1/cLqzJoCFMIofjVcIS52qHr-V4Nw.mft
File:                     cLqzJoCFMIofjVcIS52qHr-V4Nw.mft (raw, json)
Hash identifier:          elwZqIcXKla75i8meUtoi/IlutJqq0n2DseC2rey/uw=
Subject key identifier:   83:AB:81:87:7A:80:6A:5C:F7:C4:30:88:B1:30:92:5F:CD:94:D5:B2
Authority key identifier: 70:BA:B3:26:80:85:30:8A:1F:8D:57:08:4B:9D:AA:1E:BF:95:E0:DC
Certificate issuer:       /CN=70bab3268085308a1f8d57084b9daa1ebf95e0dc
Certificate serial:       01988356A64BC8A2867C4004D474621884DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cLqzJoCFMIofjVcIS52qHr-V4Nw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1a/6fd3ef-d558-4e70-a214-52aefb6568ae/1/cLqzJoCFMIofjVcIS52qHr-V4Nw.mft
Manifest number:          1619
Signing time:             Thu 07 Aug 2025 07:02:30 +0000
Manifest this update:     Thu 07 Aug 2025 07:02:30 +0000
Manifest next update:     Fri 08 Aug 2025 07:02:30 +0000
Files and hashes:         1: cLqzJoCFMIofjVcIS52qHr-V4Nw.crl (hash: SIaRAYIbzZsJa4ta81D/McxgDnvSDlLAo22Leryn4Lw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1a/6fd3ef-d558-4e70-a214-52aefb6568ae/1/cLqzJoCFMIofjVcIS52qHr-V4Nw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1a/6fd3ef-d558-4e70-a214-52aefb6568ae/1/cLqzJoCFMIofjVcIS52qHr-V4Nw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cLqzJoCFMIofjVcIS52qHr-V4Nw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 07:02:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:83:56:a6:4b:c8:a2:86:7c:40:04:d4:74:62:18:84:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=70bab3268085308a1f8d57084b9daa1ebf95e0dc
        Validity
            Not Before: Aug  7 07:02:30 2025 GMT
            Not After : Aug  8 07:02:30 2025 GMT
        Subject: CN=83ab81877a806a5cf7c43088b130925fcd94d5b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:ba:45:65:1a:d1:47:76:a6:f8:a7:42:72:71:
                    4a:a8:52:bc:79:40:17:c8:a4:79:96:fb:34:c3:48:
                    85:69:73:d5:9e:7e:36:ee:00:a4:5f:fb:b0:1d:61:
                    0e:de:5b:ee:f4:e0:c0:fb:4e:62:3b:d8:e6:3b:49:
                    53:59:a1:69:1d:1c:37:3b:f3:6b:10:50:a5:4a:f8:
                    94:f9:50:7b:c2:4d:77:d9:4a:fe:83:d0:69:db:0a:
                    2a:fa:78:a4:46:eb:f7:ec:ca:fa:9c:18:8f:a9:0a:
                    f7:e9:8f:b5:64:29:11:52:3f:57:20:3e:91:5d:bf:
                    cb:c8:2d:42:5a:81:cf:cc:c4:84:a8:c2:50:f2:bf:
                    af:62:b3:9e:1f:40:75:38:8f:32:21:03:98:5c:dd:
                    8b:19:04:9f:f0:e3:c9:6c:fa:df:22:47:20:42:0f:
                    b2:07:bb:14:62:09:52:c3:2c:5d:75:42:22:5d:6b:
                    3b:d3:6c:51:15:51:a1:34:9a:11:50:eb:74:0a:28:
                    ab:5b:c8:f1:11:43:f6:80:a7:5a:b7:1f:d8:55:0e:
                    ba:30:d7:d1:d2:23:3b:da:49:97:fb:68:6e:64:3a:
                    a7:48:88:69:2d:2c:82:3f:d1:34:43:71:1a:57:25:
                    9c:17:86:5e:d4:b5:9b:7f:a9:c4:dd:67:a3:00:62:
                    d0:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:AB:81:87:7A:80:6A:5C:F7:C4:30:88:B1:30:92:5F:CD:94:D5:B2
            X509v3 Authority Key Identifier:
                keyid:70:BA:B3:26:80:85:30:8A:1F:8D:57:08:4B:9D:AA:1E:BF:95:E0:DC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLqzJoCFMIofjVcIS52qHr-V4Nw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6fd3ef-d558-4e70-a214-52aefb6568ae/1/cLqzJoCFMIofjVcIS52qHr-V4Nw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6fd3ef-d558-4e70-a214-52aefb6568ae/1/cLqzJoCFMIofjVcIS52qHr-V4Nw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:cd:f6:54:97:36:fb:3d:4e:e6:51:df:61:99:1e:47:9e:94:
         f5:84:e9:4e:71:4a:cb:5f:5a:f5:e0:97:4a:a7:2e:a2:e3:10:
         3b:34:b7:b1:bb:87:37:b6:ad:79:c5:e9:ba:0e:a4:8d:28:f1:
         5e:76:94:17:e5:a2:a0:ff:07:11:d7:46:9e:34:16:c2:89:8e:
         45:b8:b7:dd:5a:2e:38:4a:06:3e:c2:19:4b:63:f4:ae:84:b8:
         e5:6f:c1:7a:61:1c:9e:21:f9:f5:cb:91:e1:bd:61:64:c0:dd:
         ab:8d:ae:6d:70:f5:83:22:92:3d:9f:ec:d5:46:b0:6e:ee:7c:
         ff:54:e5:6c:7e:04:cc:09:ce:bb:f8:f2:b7:8e:75:37:d6:89:
         b4:fe:02:21:f6:7a:35:d5:bc:7b:20:ba:33:91:77:01:57:c1:
         4c:8b:cf:b9:bb:fb:80:d3:34:fc:67:f0:fc:d5:16:67:51:4f:
         45:30:b0:4b:c0:4a:3b:90:63:64:c9:ea:40:41:18:f8:ef:e4:
         9b:3d:5e:4a:ab:86:df:99:2a:ac:bd:c8:45:7f:40:4b:bd:8b:
         f9:20:c7:4a:37:44:57:27:1a:a8:74:a4:6b:58:8d:b4:01:52:
         73:02:e1:bc:53:62:71:2a:02:f0:a9:82:21:b6:e9:79:d2:b2:
         07:86:d7:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----