Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
File:                     iSWuMjSiyXwn9171HT_zJr4GDiw.mft (raw, json)
Hash identifier:          K4u9lms2G/raffbB9tHqlpoJClXWJNPypCrFS1NOZ2Y=
Subject key identifier:   0E:14:BA:55:1E:19:0A:9E:78:5F:D3:C9:6E:D2:B4:E9:31:1D:A3:03
Authority key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
Certificate issuer:       /CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Certificate serial:       01987C40B147329E364F6CC0DCAE160E6181
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
Manifest number:          1617
Signing time:             Tue 05 Aug 2025 22:01:11 +0000
Manifest this update:     Tue 05 Aug 2025 22:01:11 +0000
Manifest next update:     Wed 06 Aug 2025 22:01:11 +0000
Files and hashes:         1: iSWuMjSiyXwn9171HT_zJr4GDiw.crl (hash: tH8uyluTBEYV4gMselmFh0AYnCbVWVk5wZ3aEOGJlg8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 22:01:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7c:40:b1:47:32:9e:36:4f:6c:c0:dc:ae:16:0e:61:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
        Validity
            Not Before: Aug  5 22:01:11 2025 GMT
            Not After : Aug  6 22:01:11 2025 GMT
        Subject: CN=0e14ba551e190a9e785fd3c96ed2b4e9311da303
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:87:93:c2:98:12:9f:43:c4:fe:e4:14:ff:b2:
                    53:e3:46:8f:50:2f:eb:8f:54:c9:32:18:20:97:c1:
                    6b:2e:35:59:31:48:dc:9e:ce:90:50:06:26:6b:72:
                    30:14:ff:96:1f:4e:e5:cc:18:b5:e2:89:1a:e0:3d:
                    08:24:b7:e7:1e:99:4c:fd:27:6f:01:0f:bb:e7:7f:
                    68:8c:19:6f:2e:c9:22:62:78:64:eb:94:90:e7:37:
                    e9:d2:8a:67:64:b3:4b:14:43:6f:16:fd:94:d2:1c:
                    a8:32:54:a7:26:07:98:5a:e5:2d:83:33:6e:0b:28:
                    56:94:15:b9:cb:29:2b:fa:44:bd:53:a4:c9:9a:8b:
                    f7:89:2f:54:3f:39:6a:7e:1c:f2:80:2d:86:9a:30:
                    63:49:97:4d:9a:57:ec:b7:36:a8:46:23:4d:54:20:
                    ae:f6:aa:b8:93:06:3b:d1:3b:80:6b:f1:5c:05:21:
                    5e:08:8a:04:d5:e2:b4:b0:29:24:30:f2:3f:94:59:
                    0a:b3:f6:0e:c7:a0:be:a3:af:dd:10:e7:2f:47:5b:
                    b1:7f:63:45:39:71:ae:2f:13:fd:48:f2:1a:ef:12:
                    06:cd:52:ff:30:08:15:a0:ba:9e:e6:74:8e:44:fc:
                    74:30:73:ee:31:a8:19:7a:e7:93:de:20:33:ba:6b:
                    5e:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:14:BA:55:1E:19:0A:9E:78:5F:D3:C9:6E:D2:B4:E9:31:1D:A3:03
            X509v3 Authority Key Identifier:
                keyid:89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:88:da:3e:d5:7b:4c:17:7d:af:90:b2:7c:f9:94:22:23:aa:
         7f:9d:b4:4e:ee:c4:b2:5b:84:97:cf:cc:5a:98:52:e5:64:30:
         f2:8e:b7:62:19:79:a7:8d:2f:64:18:ae:17:5c:ee:ce:6d:cb:
         4c:f1:bb:db:dc:e7:8e:dd:a1:e7:b4:53:c9:43:d2:cf:56:18:
         52:dd:08:d5:3c:01:87:1b:fd:f7:a5:c6:97:e3:54:4f:c5:f5:
         e4:63:c3:c8:e4:fc:f9:39:6a:04:6a:b0:22:3e:1c:3f:f4:56:
         5f:b1:33:7f:84:96:5d:3f:fd:57:8a:43:0d:a5:f9:be:ab:6e:
         63:95:13:63:53:92:c6:8f:e7:6d:9b:2f:48:4a:e0:01:db:e8:
         26:9c:73:fe:0d:6d:b0:77:52:a3:ed:ea:78:6c:60:73:5d:58:
         56:e1:48:9d:f6:52:3f:5c:eb:fd:fe:f6:e5:50:4b:e2:6b:f5:
         84:15:f0:77:db:c3:6e:cd:9d:89:3d:b4:64:e2:eb:9c:db:e4:
         43:8d:d0:34:36:c5:0d:fa:db:1d:69:aa:31:85:af:48:e7:62:
         69:27:ca:d7:4b:7c:b7:4b:c0:0d:22:96:e0:93:fe:fd:d6:e4:
         ad:6f:8e:02:4d:3c:85:95:ba:db:ba:5b:1b:c2:63:38:85:e0:
         44:67:95:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----