Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
File:                     7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json)
Hash identifier:          T44s8af1SX/06N3pR7wKSCC67kUMNd8StmvmjDek4Sg=
Subject key identifier:   17:2A:75:A8:BC:B3:23:79:06:F2:60:2B:94:5F:E0:CB:D0:49:2C:43
Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
Certificate issuer:       /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Certificate serial:       0198A0BA6994DBE0DF77131E3A1BF9798E99
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
Manifest number:          162A
Signing time:             Wed 13 Aug 2025 00:00:27 +0000
Manifest this update:     Wed 13 Aug 2025 00:00:27 +0000
Manifest next update:     Thu 14 Aug 2025 00:00:27 +0000
Files and hashes:         1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: hA36tg/ItrBQRWsYUm9FZcsabmVUuSnfXygH+mJThiU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:ba:69:94:db:e0:df:77:13:1e:3a:1b:f9:79:8e:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
        Validity
            Not Before: Aug 13 00:00:27 2025 GMT
            Not After : Aug 14 00:00:27 2025 GMT
        Subject: CN=172a75a8bcb3237906f2602b945fe0cbd0492c43
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:7a:b7:ee:97:54:60:c8:91:e1:07:6f:44:0d:
                    2e:1a:44:23:5a:32:f7:42:4a:81:c5:5f:9f:b8:7e:
                    9e:65:73:63:34:46:9e:1f:9a:4b:f0:7d:c7:52:8f:
                    85:5e:7e:bf:5e:e4:8c:c7:e6:77:12:a8:10:40:41:
                    f0:6b:fa:4c:fc:bd:43:03:0a:48:23:63:42:d9:67:
                    88:bb:0e:1d:95:55:f9:f3:a2:70:c3:b9:19:9e:ee:
                    c0:8b:33:70:29:71:6c:66:df:fc:37:44:d4:4d:12:
                    79:e7:cd:58:be:d5:7b:20:22:d4:81:f1:3a:6a:7c:
                    cb:b1:2d:c1:b0:3c:00:77:b5:bd:4f:43:1d:42:53:
                    30:f1:cb:4f:b1:47:a8:39:5d:b5:50:06:53:09:b1:
                    50:7d:cc:1e:0a:ff:1c:5d:76:94:a6:25:1d:14:93:
                    17:61:c3:ba:07:c7:ef:23:28:a9:25:b3:a0:eb:6c:
                    3a:ef:b3:99:62:3b:68:89:37:b8:6b:1b:29:84:44:
                    6c:11:e3:1c:ed:f4:3f:80:28:f0:ab:50:cc:11:84:
                    8e:b4:54:07:18:06:71:a0:35:6a:74:cd:df:1a:aa:
                    d4:f6:16:89:d1:eb:68:15:a9:66:68:6e:96:3e:53:
                    e3:b0:67:9a:59:56:8e:c4:70:7e:3a:38:48:3a:8d:
                    aa:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:2A:75:A8:BC:B3:23:79:06:F2:60:2B:94:5F:E0:CB:D0:49:2C:43
            X509v3 Authority Key Identifier:
                keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:e3:7c:01:35:3b:a0:80:a3:2a:7d:d1:03:26:09:46:37:3b:
         17:e4:6c:8a:d2:b2:52:fd:80:31:13:7f:41:9c:63:5b:3b:61:
         a5:7d:f5:ae:45:0d:aa:55:b4:00:cb:69:36:9b:79:0f:8a:e8:
         46:a5:c4:bd:fe:4a:8c:4a:ac:26:44:e4:a1:7e:20:06:7d:24:
         85:6b:1b:5d:91:c7:5a:30:e5:46:6d:c1:fe:bf:c2:ae:a2:3e:
         13:06:75:d0:5a:00:c8:56:4e:e1:b4:6a:c5:18:75:18:cb:c3:
         80:5c:00:bd:c5:e9:cc:22:0c:ca:35:03:a2:6d:e6:70:43:a9:
         c5:fb:3e:c4:cf:28:d6:4c:96:2f:85:e3:af:4b:95:43:e6:b7:
         71:e0:b4:96:7e:4b:76:1c:0e:82:2f:f3:cf:3b:c2:0f:f5:43:
         f9:ec:33:ec:b4:3c:82:da:6c:48:fe:a6:14:30:37:14:dc:4c:
         e5:9a:81:72:a7:c6:04:69:5a:09:3a:98:13:3b:ef:aa:8c:e0:
         41:87:67:1e:69:e9:f0:91:51:d7:da:9b:88:5f:eb:71:48:62:
         45:3a:62:b2:8e:ab:9e:66:4a:85:01:26:b1:35:26:1d:94:1c:
         64:05:77:a6:fd:2e:92:e2:88:d4:bd:41:56:f1:e2:99:b5:f3:
         13:14:ef:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----