Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft
File:                     76psy3hXNGAC5rvEmPiLnobfGAY.mft (raw, json)
Hash identifier:          bjCKs5P8vQGP0rhU74/u4nm1rBqgos+EA9UAj8Y1MZ0=
Subject key identifier:   39:D1:95:72:92:A2:B7:BC:04:BB:6D:AD:A2:CE:59:6A:2B:CA:72:5C
Authority key identifier: EF:AA:6C:CB:78:57:34:60:02:E6:BB:C4:98:F8:8B:9E:86:DF:18:06
Certificate issuer:       /CN=efaa6ccb7857346002e6bbc498f88b9e86df1806
Certificate serial:       0198741915E0ED26795B5029DC56C19ED8BB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/76psy3hXNGAC5rvEmPiLnobfGAY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft
Manifest number:          03D9
Signing time:             Mon 04 Aug 2025 08:00:57 +0000
Manifest this update:     Mon 04 Aug 2025 08:00:57 +0000
Manifest next update:     Tue 05 Aug 2025 08:00:57 +0000
Files and hashes:         1: 76psy3hXNGAC5rvEmPiLnobfGAY.crl (hash: yzUZjKEkWYD7uWuV1WctmNllQqt/sI/LnPJuGrVogbQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/76psy3hXNGAC5rvEmPiLnobfGAY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 08:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:19:15:e0:ed:26:79:5b:50:29:dc:56:c1:9e:d8:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efaa6ccb7857346002e6bbc498f88b9e86df1806
        Validity
            Not Before: Aug  4 08:00:57 2025 GMT
            Not After : Aug  5 08:00:57 2025 GMT
        Subject: CN=39d1957292a2b7bc04bb6dada2ce596a2bca725c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:85:d7:98:2c:6b:2e:de:ec:78:e8:9d:80:9a:
                    d9:b4:72:c2:70:63:9b:24:7d:7b:6a:a0:75:85:ee:
                    af:a2:33:f3:d8:8f:d1:27:3a:23:8b:b8:e1:8f:60:
                    24:66:8d:63:47:84:94:9b:a9:c8:aa:22:59:ed:df:
                    5e:ed:f8:4e:94:04:b4:f4:9a:4e:4e:33:56:ef:1a:
                    e0:dd:1d:80:68:46:bf:7f:ad:29:e2:3a:48:0e:c2:
                    92:41:9c:08:81:cb:e4:73:a8:e6:ec:cc:46:75:a7:
                    0b:47:c9:ce:c3:c8:00:02:a2:a1:c3:5b:ec:79:ca:
                    ed:9b:c8:ae:8e:cb:ef:6e:4b:26:ac:67:63:d9:74:
                    d6:b6:1c:46:59:0d:5b:91:fd:d8:93:0c:a3:e8:3d:
                    86:ae:70:b6:fd:a7:10:c7:ee:4b:1c:68:f1:b6:6c:
                    80:d7:60:89:3b:06:4b:d5:86:23:f0:5e:c8:85:32:
                    c7:76:6b:9f:06:ae:27:b1:5a:02:db:8a:1d:57:6f:
                    cb:9f:a8:74:44:34:71:4f:5b:aa:f3:63:e8:f3:0c:
                    e4:d4:83:02:44:f7:1a:67:55:aa:18:73:1a:54:b5:
                    02:5e:05:8c:b9:27:d2:7a:df:90:3f:58:92:2a:d5:
                    98:53:b4:f1:32:44:20:5b:7d:d2:a3:81:0e:f3:ec:
                    75:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:D1:95:72:92:A2:B7:BC:04:BB:6D:AD:A2:CE:59:6A:2B:CA:72:5C
            X509v3 Authority Key Identifier:
                keyid:EF:AA:6C:CB:78:57:34:60:02:E6:BB:C4:98:F8:8B:9E:86:DF:18:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76psy3hXNGAC5rvEmPiLnobfGAY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/aa9614-f6d7-4c33-b94b-d820f65ced81/1/76psy3hXNGAC5rvEmPiLnobfGAY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:5d:9a:df:d2:1c:c7:93:90:5c:df:4a:fb:3b:9d:41:5d:bb:
         6f:4f:95:0e:c5:ae:1b:30:bd:1d:fc:bf:1d:8d:31:d6:a3:d4:
         c3:8a:c7:4d:81:45:71:a1:c9:99:b9:b2:c2:02:69:8a:ba:11:
         c4:58:45:11:25:f4:44:c9:9b:c8:6f:87:d7:e3:70:b1:fb:79:
         c5:84:54:f0:6d:bc:b5:2b:68:ce:5f:75:6b:ee:4a:47:36:22:
         a8:d7:65:96:cb:df:5a:8f:b3:da:56:e4:f6:eb:53:72:e9:21:
         4d:18:5f:bc:55:4b:90:13:d2:c5:b6:a2:56:a7:78:3c:d5:29:
         e9:e5:2a:ab:d1:e2:2a:b7:a6:3e:79:74:f7:4f:06:4c:90:c9:
         f2:f0:cf:63:bc:88:91:e7:52:51:84:e5:73:1d:43:33:02:6c:
         4e:20:b3:ab:36:a6:ce:58:a9:06:ea:19:8c:8c:44:44:5f:dd:
         9e:f8:86:ce:00:bc:63:dc:39:b3:6b:be:45:c8:52:68:a0:8d:
         b7:6c:55:3b:10:76:32:4a:97:cd:df:2e:79:1d:a8:81:29:3f:
         42:86:8f:18:81:08:92:8e:c6:07:12:40:bf:b0:98:65:13:e5:
         14:18:c8:c9:1d:e3:57:d1:ae:bf:96:a9:7d:98:9b:57:77:25:
         48:e2:d3:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----