Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
File:                     RmSgU4XAYmgVApGX6xUGSF09bRw.mft (raw, json)
Hash identifier:          Nm2PxsDqZeofRqb7KOBUL1WFa9paiTnwntOWiiBTiLg=
Subject key identifier:   1C:EE:5B:CE:EE:6D:5A:14:5A:7B:0A:5D:51:A5:1E:60:A2:54:75:DC
Authority key identifier: 46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C
Certificate issuer:       /CN=4664a05385c0626815029197eb1506485d3d6d1c
Certificate serial:       0198752BFE9D9070939404C6FDCC0B200C1E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
Manifest number:          076D
Signing time:             Mon 04 Aug 2025 13:01:13 +0000
Manifest this update:     Mon 04 Aug 2025 13:01:13 +0000
Manifest next update:     Tue 05 Aug 2025 13:01:13 +0000
Files and hashes:         1: RmSgU4XAYmgVApGX6xUGSF09bRw.crl (hash: rNzKxVjz44uAeZq1LvMlLHT7vabPeNKKCD3kI5G/uQo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:75:2b:fe:9d:90:70:93:94:04:c6:fd:cc:0b:20:0c:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4664a05385c0626815029197eb1506485d3d6d1c
        Validity
            Not Before: Aug  4 13:01:13 2025 GMT
            Not After : Aug  5 13:01:13 2025 GMT
        Subject: CN=1cee5bceee6d5a145a7b0a5d51a51e60a25475dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:64:8d:77:bb:0c:35:14:25:a3:45:dc:95:57:
                    8b:ec:99:4d:36:b7:31:1a:dc:4f:0e:34:98:10:73:
                    f3:b5:3f:c0:d0:39:cd:4c:6d:37:17:31:96:a8:85:
                    34:11:cb:7c:f3:01:8f:78:68:3e:87:fb:9c:47:64:
                    1e:50:c5:1b:90:cb:31:91:7e:e9:c4:61:f9:ea:dc:
                    32:75:db:e6:d0:c2:c1:88:2c:5b:45:df:c6:21:c7:
                    26:04:31:e7:f9:0d:69:19:1f:cd:60:73:f0:90:eb:
                    55:fd:7c:3c:40:d0:4f:29:68:46:5e:ae:50:0e:7d:
                    c5:98:94:b3:7a:0c:22:18:04:29:6a:8f:cf:c7:85:
                    e7:1b:1a:a0:8d:a3:29:98:2f:62:52:f3:70:2e:94:
                    79:df:e5:58:3a:80:1b:3b:23:80:b5:b2:74:87:25:
                    02:06:af:b6:06:3e:5e:b7:7b:1d:0b:e7:4e:66:14:
                    d0:04:1d:fa:2e:28:e9:94:0b:3d:5d:5d:11:6f:3e:
                    cf:4a:9e:a5:f4:d9:b7:c8:1e:68:a3:65:0a:e9:e3:
                    50:d5:f1:9c:8b:36:f0:4b:7f:a5:ea:3f:4b:15:cd:
                    60:ad:8a:f7:0d:09:4e:29:0a:6f:96:9a:aa:98:4e:
                    fd:7c:3f:1e:1f:1b:83:fa:5e:07:d1:aa:66:1b:02:
                    d6:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:EE:5B:CE:EE:6D:5A:14:5A:7B:0A:5D:51:A5:1E:60:A2:54:75:DC
            X509v3 Authority Key Identifier:
                keyid:46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:08:59:f7:1f:af:dd:6f:c0:2c:1b:bb:4a:59:92:b0:3e:01:
         83:e9:88:8d:98:6f:41:1d:49:f9:a0:40:c6:db:1c:b9:6e:29:
         c4:8b:f0:d0:d5:da:3e:7c:4f:72:f8:cc:62:06:56:38:e4:2e:
         90:56:6e:f1:27:be:f8:f8:a7:17:48:e4:c2:33:26:8c:55:f3:
         da:b3:45:94:76:ea:d8:64:09:1d:dd:23:08:20:38:4c:98:c5:
         27:1a:c0:47:59:95:c2:72:b3:56:7f:68:63:38:51:f8:9d:67:
         f8:4e:87:ca:fc:90:2c:25:27:d5:71:ab:60:8e:a5:f3:df:53:
         a7:a2:5c:13:11:ab:37:80:04:ba:4a:33:b6:63:9b:a4:dc:60:
         ee:14:fb:e1:25:61:af:d2:02:36:11:6e:aa:52:60:f7:00:9e:
         d5:16:a5:43:b8:f8:45:41:0d:39:8d:4e:3c:7f:3c:17:76:93:
         ee:4b:d1:4e:cc:85:c5:c9:c9:64:c9:06:64:f8:be:2e:b8:f4:
         17:a5:cb:af:62:bc:fc:72:40:3b:97:9b:45:bf:66:b2:80:89:
         68:54:98:c0:3e:d9:99:e7:ef:93:2d:55:ce:68:c9:20:62:50:
         99:0c:84:d4:c1:ab:04:bf:ae:21:1a:f3:f5:30:13:6f:07:26:
         3d:fd:01:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----