Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
File:                     q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json)
Hash identifier:          BOlJRjrjjSxddQM1kzkbl+Bj5/Rs4UA0ZVxkpZAiukk=
Subject key identifier:   54:D1:4F:6F:45:34:4B:B6:C5:AB:52:FC:02:44:2C:AB:34:5B:B9:FC
Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC
Certificate issuer:       /CN=aba374394fe1080d64a219d7d35a49462e8e99ac
Certificate serial:       0198729843A9951BB7B43A04544EF7C8F1D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
Manifest number:          0723
Signing time:             Mon 04 Aug 2025 01:00:38 +0000
Manifest this update:     Mon 04 Aug 2025 01:00:38 +0000
Manifest next update:     Tue 05 Aug 2025 01:00:38 +0000
Files and hashes:         1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: PYUvrWg6/CxzHky+DkqDtkVrmJpdsFYcpHjbGfMjcc4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 01:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:98:43:a9:95:1b:b7:b4:3a:04:54:4e:f7:c8:f1:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac
        Validity
            Not Before: Aug  4 01:00:38 2025 GMT
            Not After : Aug  5 01:00:38 2025 GMT
        Subject: CN=54d14f6f45344bb6c5ab52fc02442cab345bb9fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:2e:da:6c:ad:46:1a:6d:b0:65:87:de:d7:13:
                    e6:a3:27:87:23:23:40:11:b9:9f:df:86:3d:00:8f:
                    c8:33:ce:9a:bf:7e:60:91:58:20:c3:a1:f5:5c:d4:
                    ae:25:e2:8c:eb:6e:97:5d:8e:ad:aa:f0:8f:28:9b:
                    dd:b1:fb:00:6c:c6:e0:98:ce:85:9a:04:14:03:4e:
                    96:a8:73:af:f9:9e:24:98:00:11:b7:d5:09:24:0a:
                    00:68:71:a1:aa:1e:34:9e:1c:18:75:1b:a3:2a:fc:
                    a1:66:9b:c2:ee:52:2e:77:84:ef:cc:e5:5c:57:db:
                    c3:76:ec:dc:df:a0:b0:22:28:7e:ac:f2:04:d1:bd:
                    e8:60:5d:1b:93:27:e9:7c:e0:f2:9f:bd:81:7b:75:
                    45:5e:24:db:b7:51:5f:cc:2f:a0:21:cb:a5:5a:63:
                    aa:4a:70:30:05:4e:c0:7a:2a:26:d9:d2:49:c0:05:
                    c7:e8:df:91:5d:22:37:6b:32:4d:c1:19:05:ca:20:
                    89:3a:d2:f4:69:76:45:03:4d:21:66:91:29:96:ba:
                    46:f9:6f:84:d2:8d:72:d0:d7:7b:0d:07:53:36:23:
                    ca:ec:a1:d0:11:6a:78:10:0e:59:d2:07:80:b7:36:
                    df:c0:48:00:5d:ff:5d:6c:1e:25:29:39:48:4b:55:
                    08:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:D1:4F:6F:45:34:4B:B6:C5:AB:52:FC:02:44:2C:AB:34:5B:B9:FC
            X509v3 Authority Key Identifier:
                keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:3e:2c:1d:02:e3:48:0c:dd:37:1a:50:73:a3:9e:0a:0a:02:
         ed:a2:02:67:c1:5f:eb:b0:38:e6:07:86:28:f9:9a:ec:8e:78:
         13:23:19:72:84:53:a9:e0:18:db:f9:de:23:45:6a:32:7c:85:
         30:08:7c:b0:5d:fa:2e:83:f5:2e:57:40:40:f9:0c:55:b5:a7:
         ce:dc:6c:db:ec:4b:3c:74:94:98:89:37:c8:af:6d:1d:44:d1:
         82:32:c1:14:0a:5c:4c:7f:00:8a:2a:9e:28:fa:6d:8f:ad:5f:
         26:d9:84:b2:73:58:4d:96:80:3d:9b:a3:30:4b:81:86:e0:fe:
         49:71:70:98:8c:b5:4b:f4:4f:10:e2:55:b0:93:de:d8:56:eb:
         90:a5:70:19:43:38:83:47:bc:99:ca:01:b9:f5:32:57:df:fe:
         3d:69:05:7e:49:03:c5:91:df:20:4c:c5:e0:7b:12:18:96:7a:
         03:e8:00:91:6c:1a:a5:bb:d1:fe:27:ca:8d:15:58:f8:18:7d:
         8f:68:28:cb:de:5b:85:f0:36:71:98:9e:dc:7b:64:ff:fa:2d:
         3c:72:c5:88:2b:7c:82:29:70:b6:99:55:3c:da:d5:45:a8:db:
         ce:45:67:8a:a1:4e:ce:8d:59:95:55:85:b3:e9:3b:49:da:f9:
         4e:c2:77:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----