Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
File:                     5i7oJCK3hJkSKWNhQEZJp__smOU.mft (raw, json)
Hash identifier:          9Rb63CMgoYJlvMP/Sr37EQtBOH6cPa0TCEBzOHfJYjc=
Subject key identifier:   F4:84:59:A8:BC:BA:B6:4A:CA:89:78:52:60:FA:96:8E:FB:80:69:6C
Authority key identifier: E6:2E:E8:24:22:B7:84:99:12:29:63:61:40:46:49:A7:FF:EC:98:E5
Certificate issuer:       /CN=e62ee82422b7849912296361404649a7ffec98e5
Certificate serial:       019892C7F947E4D858F887C6D3A6DDB78F26
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
Manifest number:          0CE7
Signing time:             Sun 10 Aug 2025 07:00:35 +0000
Manifest this update:     Sun 10 Aug 2025 07:00:35 +0000
Manifest next update:     Mon 11 Aug 2025 07:00:35 +0000
Files and hashes:         1: 5i7oJCK3hJkSKWNhQEZJp__smOU.crl (hash: py2ByBCbJ3a+TYUWRqfTd+NpA9TJrMhJEoGGwzAhlTE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 07:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:c7:f9:47:e4:d8:58:f8:87:c6:d3:a6:dd:b7:8f:26
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e62ee82422b7849912296361404649a7ffec98e5
        Validity
            Not Before: Aug 10 07:00:35 2025 GMT
            Not After : Aug 11 07:00:35 2025 GMT
        Subject: CN=f48459a8bcbab64aca89785260fa968efb80696c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:eb:f1:10:12:5e:4a:69:7a:01:2f:62:b7:6d:
                    34:04:93:0a:b6:72:43:83:32:3a:b7:6b:c7:40:0b:
                    48:45:a3:14:09:61:d1:2c:40:94:9e:a4:36:8d:0c:
                    d7:d5:94:65:2a:21:2f:5f:c2:59:83:74:de:c4:03:
                    82:9e:bb:1c:6e:0c:a7:19:46:18:db:85:ab:99:46:
                    bc:7c:31:75:c1:b0:3c:70:0e:ed:6c:3c:73:e9:57:
                    5f:d2:37:b7:38:cc:86:08:c0:ba:9e:55:17:be:4e:
                    fa:87:96:6d:ad:08:12:b1:83:96:ff:ac:93:88:f5:
                    d4:61:dc:82:50:56:3a:67:07:02:af:48:b2:ac:b9:
                    0d:4c:20:f7:81:a8:74:2b:04:6e:ab:a7:7e:e2:45:
                    95:59:2f:f6:38:15:f9:eb:8e:8f:81:15:f4:53:7e:
                    3b:69:96:06:68:34:c3:2e:5f:7f:72:c0:64:70:5d:
                    6f:0b:be:6d:5c:63:31:25:d5:a9:2e:e1:5f:f0:27:
                    83:28:b5:61:d7:81:9e:10:c7:c5:bf:63:29:09:a1:
                    cb:db:ad:29:03:e0:7a:1f:8c:6b:08:57:9a:51:78:
                    7a:cf:db:db:14:81:d9:df:46:ab:64:ce:97:66:30:
                    76:41:11:5b:7c:c0:d8:b6:2d:b4:df:c9:50:ca:ef:
                    cd:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:84:59:A8:BC:BA:B6:4A:CA:89:78:52:60:FA:96:8E:FB:80:69:6C
            X509v3 Authority Key Identifier:
                keyid:E6:2E:E8:24:22:B7:84:99:12:29:63:61:40:46:49:A7:FF:EC:98:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:39:c2:13:4f:71:79:55:6e:d8:d6:d6:f0:b1:1f:fa:cf:65:
         c9:77:6c:6d:b9:ab:9f:ab:fd:65:d2:5a:3f:13:ae:c4:97:ab:
         58:c7:aa:2c:4f:53:55:25:57:c3:ae:78:93:6d:42:04:e3:a3:
         ab:2e:15:6f:91:54:35:6d:2a:ec:9d:cf:5c:64:68:0b:49:18:
         6e:32:ec:be:78:f3:93:b9:23:97:15:cd:02:32:2f:00:16:cd:
         bf:3b:5a:b7:5b:48:d3:78:22:b3:9e:a5:dc:81:56:6e:66:3f:
         f5:8d:65:ef:e1:59:60:72:92:0b:00:a0:91:7f:ff:20:6e:77:
         91:63:71:b8:0c:29:af:3a:23:b7:ba:c7:b3:61:c5:a5:8d:f3:
         7b:34:a0:fa:23:00:4e:db:d5:d5:9c:2a:fb:09:42:77:2b:5a:
         db:da:02:5f:9e:12:29:20:09:f5:bc:28:83:a4:08:9f:a8:1e:
         6c:af:fc:1e:38:f0:9c:d7:bc:88:fc:39:03:d1:42:5a:16:72:
         ed:86:6c:8e:a6:ba:ef:f2:4a:01:39:cc:8c:d6:ce:16:f0:be:
         4e:3a:6e:48:73:19:b4:99:1e:1a:de:93:10:1b:4b:d0:72:68:
         25:36:c6:cd:55:e2:69:7f:5f:da:81:b6:59:18:59:63:ad:53:
         4b:e2:22:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----