Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
File:                     kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft (raw, json)
Hash identifier:          xnb4x/8jMq/p30Vo0byWLixD5a7Bs1L82pv+t5MYqmQ=
Subject key identifier:   06:15:5A:40:12:BD:4A:4D:4B:2F:71:F7:D2:51:F5:A1:D9:C7:1E:B2
Authority key identifier: 91:53:53:98:EA:57:F6:AC:8C:02:E6:59:E9:2F:18:B1:38:E1:36:19
Certificate issuer:       /CN=91535398ea57f6ac8c02e659e92f18b138e13619
Certificate serial:       0198A04E8BCE07DAC51BE7361F7F75EEDA9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
Manifest number:          1396
Signing time:             Tue 12 Aug 2025 22:02:38 +0000
Manifest this update:     Tue 12 Aug 2025 22:02:38 +0000
Manifest next update:     Wed 13 Aug 2025 22:02:38 +0000
Files and hashes:         1: kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl (hash: lskQ8HTW07wsJV4Qua1XOQJZuoK2nN3LNKcF+zaaogU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:4e:8b:ce:07:da:c5:1b:e7:36:1f:7f:75:ee:da:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91535398ea57f6ac8c02e659e92f18b138e13619
        Validity
            Not Before: Aug 12 22:02:38 2025 GMT
            Not After : Aug 13 22:02:38 2025 GMT
        Subject: CN=06155a4012bd4a4d4b2f71f7d251f5a1d9c71eb2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:9a:5d:0d:06:f0:01:62:b5:19:9b:33:b8:7c:
                    a5:6e:19:21:30:8a:6e:82:8d:9e:e6:fb:53:23:85:
                    a0:4f:5c:16:87:f9:83:2d:e8:02:70:e8:b2:7f:67:
                    f3:d0:ac:9d:cd:43:e8:6c:14:e3:d5:dd:47:a9:bc:
                    75:e7:33:49:21:b5:e1:1e:a8:c4:a4:d5:2f:67:58:
                    b8:8c:5a:ac:b3:89:4d:eb:c2:a4:a6:79:e6:e0:dc:
                    08:a7:30:05:60:f1:b1:f7:17:38:cf:ba:ea:fb:71:
                    51:e7:aa:e7:2e:7f:0c:2c:aa:d0:35:d4:c6:02:c1:
                    21:b3:8f:60:4f:a2:98:57:27:38:42:b9:02:5c:20:
                    09:f1:63:53:5d:1d:ef:ce:53:5a:83:46:54:55:03:
                    5e:c0:93:9a:33:bb:10:84:a6:5b:cb:d5:4a:ef:0c:
                    37:7f:73:f4:c2:92:30:b8:78:68:3b:d5:9f:df:29:
                    d0:71:4d:f1:79:1c:31:18:e1:a8:b3:29:a6:60:7e:
                    ca:b1:59:c9:9f:d2:d7:7e:c3:67:dc:3b:db:25:00:
                    55:15:c0:39:e3:69:a9:61:c9:71:a6:31:32:52:27:
                    df:9a:6e:9b:ba:06:e2:8e:5d:cb:13:5d:87:0f:a8:
                    b6:b1:8b:19:e0:3d:3c:79:ac:3c:3b:b0:c6:31:b4:
                    97:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:15:5A:40:12:BD:4A:4D:4B:2F:71:F7:D2:51:F5:A1:D9:C7:1E:B2
            X509v3 Authority Key Identifier:
                keyid:91:53:53:98:EA:57:F6:AC:8C:02:E6:59:E9:2F:18:B1:38:E1:36:19

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:f3:8f:e6:70:4a:e4:7b:f5:49:42:ae:44:0f:02:7c:6b:ec:
         ee:45:20:03:91:1b:e5:d8:17:c0:5d:e1:3c:74:06:fa:ca:e6:
         ad:49:a2:d0:bd:a9:fb:92:07:58:29:12:7c:d8:e2:34:cc:bf:
         de:70:fb:67:3b:31:b5:e9:da:d1:bd:89:e9:dc:1e:b1:37:fe:
         f6:1c:9f:b5:08:69:17:a5:c0:98:96:2e:c3:f2:c9:31:87:fa:
         f7:51:ca:f9:5d:d6:0d:00:9b:bb:f7:a0:bc:13:e3:9d:25:31:
         20:3f:44:1a:37:1b:17:62:87:bd:60:c0:33:11:31:42:59:9e:
         32:8f:e8:66:28:12:a0:d7:9a:19:21:c8:92:46:03:dd:14:85:
         c7:8a:8c:f7:d8:44:0c:28:68:0e:2b:2f:72:4c:92:3d:3d:21:
         dc:14:9b:33:70:2e:bb:46:a6:b1:49:f8:1c:1d:a1:8b:68:da:
         ea:cc:4f:b4:dc:e0:2f:bf:6d:6f:4d:78:ea:60:f0:53:35:fd:
         cf:fb:a8:17:a4:e4:a9:98:5e:75:c4:23:ce:e5:af:e0:65:b0:
         88:8b:09:df:1b:87:f5:06:99:18:a0:af:ca:71:d5:66:33:31:
         97:1a:70:5c:da:dd:bf:56:3d:9d:56:73:b1:8f:6b:9d:6c:e0:
         d6:a6:0c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----