Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
File:                     jTgcV7CbXiZ91UcVDbRVg46si6M.mft (raw, json)
Hash identifier:          JcZoBmYj1LPEhYsCfcHbJXM1mfAM9qAmHk39uzrtEL8=
Subject key identifier:   8B:DD:A7:98:32:34:F2:20:8F:97:27:E7:C6:D2:69:00:20:DD:FA:02
Authority key identifier: 8D:38:1C:57:B0:9B:5E:26:7D:D5:47:15:0D:B4:55:83:8E:AC:8B:A3
Certificate issuer:       /CN=8d381c57b09b5e267dd547150db455838eac8ba3
Certificate serial:       019892C88850F3F991412C03B078B816FCD2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
Manifest number:          03AD
Signing time:             Sun 10 Aug 2025 07:01:12 +0000
Manifest this update:     Sun 10 Aug 2025 07:01:12 +0000
Manifest next update:     Mon 11 Aug 2025 07:01:12 +0000
Files and hashes:         1: jTgcV7CbXiZ91UcVDbRVg46si6M.crl (hash: PN9WxlebJONWjpk+UkSlBC0IC1AiTHFYpsw2802Dow8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 07:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:c8:88:50:f3:f9:91:41:2c:03:b0:78:b8:16:fc:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8d381c57b09b5e267dd547150db455838eac8ba3
        Validity
            Not Before: Aug 10 07:01:12 2025 GMT
            Not After : Aug 11 07:01:12 2025 GMT
        Subject: CN=8bdda7983234f2208f9727e7c6d2690020ddfa02
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:26:e8:11:ab:39:25:f6:5f:fd:2d:32:95:e5:
                    9c:45:a2:41:54:1c:4f:73:78:48:58:55:b8:49:59:
                    8b:94:c2:9f:60:9b:03:1b:e0:6c:da:d6:b1:87:72:
                    aa:eb:47:88:09:f2:8a:ae:59:f7:be:0b:fd:fa:ba:
                    88:64:ce:8e:9b:f4:1e:d8:97:7d:a6:e8:fa:d4:6d:
                    7c:c1:3f:59:bd:d2:ba:14:f4:73:d5:57:69:5d:9d:
                    6c:3f:28:1b:00:70:c7:1b:e5:a2:ba:1b:88:84:9c:
                    1d:77:fd:e0:b8:e2:8a:6c:77:b6:e8:63:34:7b:f0:
                    07:51:ea:56:86:e3:38:06:54:9e:11:52:90:f0:09:
                    f9:74:7f:a0:2c:e2:7b:0d:53:fa:a1:53:9d:c3:d8:
                    05:95:9f:33:08:56:53:9a:f2:b5:3d:b2:0a:04:1b:
                    be:ed:5e:80:87:6b:34:29:f5:5c:4e:df:39:b3:89:
                    3f:8b:08:7b:a6:55:c3:c9:6f:25:bf:09:f0:62:70:
                    c3:95:41:c2:b6:a3:20:09:9a:86:9d:f8:d7:d4:57:
                    79:5b:61:63:3a:1f:71:6c:5f:8d:fb:40:92:d7:13:
                    e9:71:5d:b2:1c:6f:3a:dd:98:11:0a:79:1f:00:4b:
                    4a:96:a5:57:5c:b1:7f:41:d4:ac:e4:3d:7f:ea:1f:
                    cf:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:DD:A7:98:32:34:F2:20:8F:97:27:E7:C6:D2:69:00:20:DD:FA:02
            X509v3 Authority Key Identifier:
                keyid:8D:38:1C:57:B0:9B:5E:26:7D:D5:47:15:0D:B4:55:83:8E:AC:8B:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:13:60:fd:46:03:23:fe:ee:ea:95:10:43:08:d9:8d:62:f1:
         70:9e:65:ab:d4:a7:c0:00:83:bf:24:5a:08:12:ce:48:a1:b4:
         e0:5a:11:cc:61:3c:b3:f8:25:ce:81:7e:d2:5d:fd:e2:fa:ee:
         c0:5a:64:60:48:26:de:b8:c5:63:b5:47:c0:fc:20:43:7e:49:
         64:d4:b3:d4:a7:91:be:54:1b:d2:fc:53:2d:3b:02:0c:9c:a5:
         05:e9:25:14:da:ef:b2:e8:8b:3b:bf:11:48:49:6f:f1:ea:cf:
         0c:fa:ba:a5:a7:c5:5b:7a:b7:24:98:8c:63:6c:da:2d:55:e6:
         55:6f:9a:43:2c:01:2e:e6:a8:12:be:5d:b9:84:85:da:bb:cb:
         d4:a5:34:74:ce:25:0f:a1:b3:3e:6a:0c:1e:e1:3c:6d:db:2c:
         eb:ef:e3:e4:d2:9c:a6:2f:26:0f:b6:3d:a4:83:d0:c5:48:7f:
         b4:8a:38:a2:78:0a:06:a6:b3:8b:21:33:05:ea:de:32:6b:46:
         42:2b:ce:30:88:1d:81:44:5e:ff:3b:9a:e2:a4:43:b2:c2:dd:
         76:13:7c:65:4a:40:cc:15:0f:d3:ec:73:d6:30:88:d1:63:b5:
         d6:90:78:64:9d:cf:93:cc:4c:7f:88:b1:77:d0:99:68:60:6c:
         4c:34:33:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----