Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
File:                     AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft (raw, json)
Hash identifier:          SYzCJnwMekX6YiRE2mF1xDohsuL2rfKKpVgsZ797IjU=
Subject key identifier:   D0:4B:95:0B:49:73:83:56:73:44:3E:35:D5:51:86:AC:D9:20:24:61
Authority key identifier: 03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2
Certificate issuer:       /CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2
Certificate serial:       019887319A7166794C48F15FCBC50A1AF6BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
Manifest number:          05A0
Signing time:             Fri 08 Aug 2025 01:00:31 +0000
Manifest this update:     Fri 08 Aug 2025 01:00:31 +0000
Manifest next update:     Sat 09 Aug 2025 01:00:31 +0000
Files and hashes:         1: AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl (hash: lSP1/3uOwTKp1SjZYBopVhzEyQtQwhCiUSwiBoNdKAc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 01:00:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:87:31:9a:71:66:79:4c:48:f1:5f:cb:c5:0a:1a:f6:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2
        Validity
            Not Before: Aug  8 01:00:31 2025 GMT
            Not After : Aug  9 01:00:31 2025 GMT
        Subject: CN=d04b950b4973835673443e35d55186acd9202461
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:f0:f3:70:77:80:c6:98:86:f1:2f:15:9d:87:
                    cb:a8:53:c6:81:20:59:92:27:80:a6:6a:57:6e:50:
                    7f:12:53:95:09:4e:a8:12:48:d7:4a:d9:db:51:9e:
                    ac:dc:bb:6e:57:b2:58:d8:1d:70:59:71:5e:95:39:
                    78:56:ed:9f:25:9f:a6:41:f5:08:a1:76:04:27:3e:
                    bc:65:a5:0f:00:75:f8:d0:98:cc:41:b1:51:a5:37:
                    d3:bb:68:40:0b:49:73:a9:64:ee:6d:fb:6f:de:95:
                    13:53:b7:13:ab:2f:9f:d9:84:8b:fa:94:e6:46:7d:
                    e2:05:97:8b:6a:89:a5:d5:bc:7e:1e:30:18:2d:9a:
                    c6:c0:90:1b:57:39:c6:cb:96:87:21:f7:cd:17:ed:
                    0d:0c:85:8c:10:be:85:56:7a:6b:f3:21:df:c2:e0:
                    7b:03:b8:de:c0:44:af:cb:b1:00:86:ce:33:44:ac:
                    54:a1:9e:6e:34:8c:b0:be:eb:61:34:a6:2a:a8:5b:
                    94:03:c7:29:d3:a4:33:3a:67:52:d9:a2:e3:21:86:
                    85:69:23:d2:9a:64:7e:df:71:fb:c7:78:49:64:cf:
                    f2:5c:9a:ce:3a:d6:a6:e3:a7:7e:ca:91:e3:3b:b7:
                    5c:3a:96:94:d5:79:d7:03:07:a2:ef:98:42:62:a5:
                    90:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:4B:95:0B:49:73:83:56:73:44:3E:35:D5:51:86:AC:D9:20:24:61
            X509v3 Authority Key Identifier:
                keyid:03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:0a:59:98:ef:de:9f:f1:e5:16:e3:d7:fc:cd:89:0c:91:c1:
         ca:ba:b5:95:0f:df:84:47:c2:26:73:10:84:dc:0f:11:92:57:
         85:ae:bc:96:7b:68:f5:46:f8:b7:5f:41:32:2e:67:34:47:06:
         9e:b0:92:bf:60:c7:1e:da:26:83:75:87:f1:6e:34:88:35:10:
         9a:ee:27:96:0e:e6:4d:6f:ec:45:5d:a9:94:25:f9:0a:d1:1c:
         d5:92:cb:9a:a0:3b:dc:5b:6a:c0:d3:02:24:f1:70:37:6c:3b:
         46:b4:fd:08:53:c9:86:8c:77:fd:9a:64:03:e7:6b:40:ea:3b:
         17:a9:e9:2e:2b:82:fd:cd:27:f1:54:c9:fa:65:9f:ab:3d:45:
         5a:28:3e:55:54:92:48:4f:c6:41:0b:a2:9c:a0:ed:5f:2a:2c:
         0c:a2:17:ee:4b:64:90:5f:23:56:61:64:21:15:47:96:d8:b5:
         5b:62:c2:ce:f6:1c:19:1e:b0:e2:14:9a:ed:8d:f0:c8:a3:2f:
         41:fd:34:b4:55:a5:1e:86:28:31:29:d2:4d:01:65:c7:cb:9f:
         51:9b:30:0f:35:05:d9:d5:d7:ae:bb:70:17:b3:e2:45:c2:23:
         56:cf:d5:ee:ae:0c:df:5a:44:5c:2b:d3:51:96:a8:aa:e7:99:
         3f:02:04:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----