Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft
File:                     z5dREMc5t0-E1BcDxIgoMnJ73cw.mft (raw, json)
Hash identifier:          JpCeF+FnD2Ob5Qc6kt+qA41RA4aTq7J5x3JZ1+StIfM=
Subject key identifier:   9E:7F:D0:7A:60:9A:DE:11:97:2A:2A:E9:A9:3D:B4:03:E8:CE:12:C5
Authority key identifier: CF:97:51:10:C7:39:B7:4F:84:D4:17:03:C4:88:28:32:72:7B:DD:CC
Certificate issuer:       /CN=cf975110c739b74f84d41703c4882832727bddcc
Certificate serial:       0198A04D420E7DD333DE9420953D8CD2DE4E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/z5dREMc5t0-E1BcDxIgoMnJ73cw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft
Manifest number:          15BB
Signing time:             Tue 12 Aug 2025 22:01:14 +0000
Manifest this update:     Tue 12 Aug 2025 22:01:14 +0000
Manifest next update:     Wed 13 Aug 2025 22:01:14 +0000
Files and hashes:         1: z5dREMc5t0-E1BcDxIgoMnJ73cw.crl (hash: wltSD1fOvF42WABfQrk7Jcxg7+VmrnSxgUt68mczbvA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/z5dREMc5t0-E1BcDxIgoMnJ73cw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:4d:42:0e:7d:d3:33:de:94:20:95:3d:8c:d2:de:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cf975110c739b74f84d41703c4882832727bddcc
        Validity
            Not Before: Aug 12 22:01:14 2025 GMT
            Not After : Aug 13 22:01:14 2025 GMT
        Subject: CN=9e7fd07a609ade11972a2ae9a93db403e8ce12c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:17:20:b8:5d:6f:5c:cf:60:07:c0:d9:ce:77:
                    c0:76:c0:36:63:51:51:d7:ab:fb:37:2b:0c:5f:8d:
                    3c:d3:f2:2a:e2:ba:22:d5:ca:a8:5f:23:68:f2:5c:
                    a5:79:30:d7:15:5e:9d:f2:4f:2e:a6:76:85:ab:3c:
                    10:f1:db:3d:72:5e:7d:02:63:12:9b:23:a8:99:80:
                    7d:68:2c:4b:d8:75:55:84:6f:22:79:53:2e:c8:23:
                    dd:55:4d:9a:19:da:33:58:12:7f:fd:a1:02:8d:f2:
                    99:49:e2:0f:aa:d7:9b:98:91:88:a9:31:fc:14:f8:
                    cd:cd:ed:c7:7c:30:71:84:48:b6:e8:1f:bb:c5:f2:
                    85:e6:96:42:02:98:3d:0b:a7:31:a4:38:66:4b:91:
                    c5:ae:f2:33:24:82:74:09:8b:7c:77:c4:e8:a5:f2:
                    5c:81:96:d6:62:65:0c:38:a6:6d:f4:50:7b:60:44:
                    2e:8f:24:5d:c8:be:ca:25:aa:a8:14:8c:ce:8f:d7:
                    cd:2b:62:8c:c7:38:38:e9:57:b8:2c:46:e9:1a:e2:
                    ae:72:f5:ef:c3:7d:83:97:ab:de:99:98:ed:ad:ba:
                    69:b3:80:df:2b:21:d2:08:a5:cb:bf:88:6f:ba:fb:
                    fe:3a:b7:18:11:8c:04:35:67:ef:3a:e2:de:5d:c5:
                    57:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:7F:D0:7A:60:9A:DE:11:97:2A:2A:E9:A9:3D:B4:03:E8:CE:12:C5
            X509v3 Authority Key Identifier:
                keyid:CF:97:51:10:C7:39:B7:4F:84:D4:17:03:C4:88:28:32:72:7B:DD:CC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z5dREMc5t0-E1BcDxIgoMnJ73cw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:fb:8d:f7:ad:83:8c:3a:bc:c8:db:74:ff:5c:63:3a:ad:12:
         49:22:97:00:63:8c:a3:0d:4f:7d:28:8e:c8:44:63:d3:30:3c:
         32:0f:58:1d:88:ce:da:7f:b9:d7:d3:36:a9:a3:e5:c7:d0:9b:
         53:9a:65:02:b8:4d:ed:98:ca:25:e0:58:28:3a:9b:ca:6b:a4:
         3c:ef:0a:d1:1d:ab:2a:76:09:c1:5a:95:5e:cf:05:73:5d:68:
         6b:c4:48:42:a7:08:d0:73:7e:0f:9e:9f:6f:d1:f9:71:a2:2a:
         7f:6e:8c:80:57:a5:b9:d7:03:7c:46:72:29:4f:5c:35:8d:04:
         e5:c6:9e:00:63:c2:12:ec:63:93:be:99:76:5c:41:23:55:82:
         b7:54:08:be:e3:a9:d0:0c:5e:f2:f7:36:8d:c2:5c:29:d8:a1:
         8e:75:a2:b2:1c:12:7c:89:7d:46:bd:89:b6:a6:7f:26:6d:94:
         54:47:8c:ba:cc:e1:bb:59:b0:37:3f:e6:be:b3:78:e9:0a:4b:
         2c:c9:f2:b7:99:5e:d7:b4:11:67:9e:35:84:54:e3:35:dd:f1:
         92:a6:88:7b:cd:12:18:4f:81:db:a3:ac:b2:fe:42:ad:22:a3:
         82:ac:6f:61:6c:ef:3e:74:ba:46:ee:df:d0:6d:2b:a6:73:41:
         4c:3e:f9:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----