Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft
File:                     rkIjS6xhcScD45im1b8EjFyfQDI.mft (raw, json)
Hash identifier:          +hxHTM8e/FWbLbXMbqzgpw/gWfzkxb9OEuNFU7+BV1Y=
Subject key identifier:   69:0A:89:E6:3F:DF:8D:32:D7:7B:18:26:94:11:50:0C:EA:1E:BB:EB
Authority key identifier: AE:42:23:4B:AC:61:71:27:03:E3:98:A6:D5:BF:04:8C:5C:9F:40:32
Certificate issuer:       /CN=ae42234bac61712703e398a6d5bf048c5c9f4032
Certificate serial:       019893DB2754DAFAEF872D3C123B97155E20
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rkIjS6xhcScD45im1b8EjFyfQDI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft
Manifest number:          0759
Signing time:             Sun 10 Aug 2025 12:01:09 +0000
Manifest this update:     Sun 10 Aug 2025 12:01:09 +0000
Manifest next update:     Mon 11 Aug 2025 12:01:09 +0000
Files and hashes:         1: rkIjS6xhcScD45im1b8EjFyfQDI.crl (hash: mF853vWXAv9kEqGZpWyD7aQPs8uQIgG5L5W70uUBYBM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rkIjS6xhcScD45im1b8EjFyfQDI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 08:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:93:db:27:54:da:fa:ef:87:2d:3c:12:3b:97:15:5e:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ae42234bac61712703e398a6d5bf048c5c9f4032
        Validity
            Not Before: Aug 10 12:01:09 2025 GMT
            Not After : Aug 11 12:01:09 2025 GMT
        Subject: CN=690a89e63fdf8d32d77b18269411500cea1ebbeb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:b1:1a:71:95:68:ba:ac:76:df:9a:3e:ee:72:
                    c7:e3:c0:0b:41:e8:32:92:8f:b0:76:78:a2:36:21:
                    22:8c:19:8a:75:de:19:b7:89:00:d1:01:45:8d:85:
                    fd:49:d8:ac:e2:13:da:25:0a:9f:e2:96:09:5f:bf:
                    98:2f:34:f0:5f:c6:e1:5c:80:0f:e4:fe:2b:de:02:
                    4e:35:53:b1:80:d6:de:62:5c:19:0b:fe:0d:14:dd:
                    cf:46:31:4d:ba:d3:82:8b:2b:f0:48:22:58:1d:c8:
                    96:73:77:90:c4:3b:62:cd:11:71:46:3d:88:c0:77:
                    30:ad:77:d3:ca:58:9e:cd:34:ab:0a:71:de:ac:ef:
                    e1:3a:65:0c:89:0a:1c:93:9f:3b:c1:9d:ed:b5:9e:
                    29:40:56:0c:37:be:df:ef:f0:30:68:3a:01:72:43:
                    8c:2a:8f:22:72:f6:24:d3:c9:49:dc:f2:c1:88:91:
                    81:07:c6:e5:28:f2:14:63:8e:13:73:0d:38:c9:98:
                    62:43:58:39:45:f0:c0:3f:0c:fa:4e:3f:b0:ae:9c:
                    40:43:41:0e:4d:9a:df:91:6b:0f:aa:56:e8:71:b2:
                    aa:bf:5e:40:50:a0:b3:b9:2c:f8:95:b8:ce:77:a4:
                    b6:d3:0a:bf:e1:3e:c0:81:7f:fe:b4:4b:00:bc:dc:
                    14:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:0A:89:E6:3F:DF:8D:32:D7:7B:18:26:94:11:50:0C:EA:1E:BB:EB
            X509v3 Authority Key Identifier:
                keyid:AE:42:23:4B:AC:61:71:27:03:E3:98:A6:D5:BF:04:8C:5C:9F:40:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkIjS6xhcScD45im1b8EjFyfQDI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/0893d0-d1a1-4276-a5b7-ee2bcf186f24/1/rkIjS6xhcScD45im1b8EjFyfQDI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:d2:61:51:56:5a:b8:2a:5e:46:ef:00:a8:40:f1:6d:f1:9d:
         db:82:6e:23:44:e0:00:62:98:cf:df:ba:33:35:15:c9:8b:bb:
         82:f7:d3:67:66:20:ce:88:fb:2f:ea:1a:da:b1:bc:ec:b1:19:
         a6:46:ce:1b:c8:cf:8c:29:f1:50:3d:66:1a:b5:3b:36:6e:2e:
         6f:35:d4:7d:5a:09:a5:77:1a:4f:2b:55:31:b5:15:6d:6e:1b:
         72:fe:7d:2c:8a:05:97:55:26:32:e8:54:d7:3c:0f:83:29:c9:
         0c:25:21:50:58:52:e4:b1:ad:ec:69:d1:c9:b6:3d:87:6d:71:
         e8:9e:8d:38:ff:ab:ff:a0:66:2a:18:ef:62:21:3b:dc:b2:ad:
         5f:7e:53:51:1d:e3:8c:50:4d:58:b4:56:9e:c1:7e:12:c4:56:
         e1:d3:6f:f5:63:93:3c:c3:ad:b4:ae:48:ba:b7:7f:f0:90:31:
         77:e9:21:c0:ed:ce:74:d7:9e:5e:a6:96:69:d6:ac:bc:87:1e:
         df:ae:6d:c9:11:49:13:66:97:32:b3:c9:58:d4:a2:d6:4a:fc:
         80:0d:4d:cf:b8:94:43:93:2c:4f:5f:09:6b:06:bb:2f:90:38:
         e7:24:c6:ae:dc:0e:4f:c4:cc:1f:72:5e:a0:75:b3:3d:c4:38:
         4b:e3:5c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----