Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1c2984-fd83-41ba-b1dc-f683b9681d61/1/tU0YlEyigIUFOR3pf6nWsrxhiZo.mft
File:                     tU0YlEyigIUFOR3pf6nWsrxhiZo.mft (raw, json)
Hash identifier:          XdU//XafNdsCxkEqtQMvhmCxGL8aP2N1ihk2I7dbioI=
Subject key identifier:   6A:84:A5:71:C9:10:6F:B2:D9:3B:B6:3E:61:C2:CC:36:ED:DE:BB:8B
Authority key identifier: B5:4D:18:94:4C:A2:80:85:05:39:1D:E9:7F:A9:D6:B2:BC:61:89:9A
Certificate issuer:       /CN=b54d18944ca2808505391de97fa9d6b2bc61899a
Certificate serial:       01987B9D49AC330041FA4D562FD07AEE5BAC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tU0YlEyigIUFOR3pf6nWsrxhiZo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4d/1c2984-fd83-41ba-b1dc-f683b9681d61/1/tU0YlEyigIUFOR3pf6nWsrxhiZo.mft
Manifest number:          10B8
Signing time:             Tue 05 Aug 2025 19:02:42 +0000
Manifest this update:     Tue 05 Aug 2025 19:02:42 +0000
Manifest next update:     Wed 06 Aug 2025 19:02:42 +0000
Files and hashes:         1: tU0YlEyigIUFOR3pf6nWsrxhiZo.crl (hash: 3qF6qnbpWQAXXmWaxTSeHwpqoKvIJWOmzaxv6Hg2N18=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4d/1c2984-fd83-41ba-b1dc-f683b9681d61/1/tU0YlEyigIUFOR3pf6nWsrxhiZo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4d/1c2984-fd83-41ba-b1dc-f683b9681d61/1/tU0YlEyigIUFOR3pf6nWsrxhiZo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tU0YlEyigIUFOR3pf6nWsrxhiZo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 19:02:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7b:9d:49:ac:33:00:41:fa:4d:56:2f:d0:7a:ee:5b:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b54d18944ca2808505391de97fa9d6b2bc61899a
        Validity
            Not Before: Aug  5 19:02:42 2025 GMT
            Not After : Aug  6 19:02:42 2025 GMT
        Subject: CN=6a84a571c9106fb2d93bb63e61c2cc36eddebb8b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:ff:1a:15:3e:49:11:12:51:18:24:ce:59:b8:
                    b0:13:f8:86:d5:40:42:0d:b2:4c:85:7d:4a:12:dd:
                    b4:a2:5b:9f:56:83:4e:95:d6:06:cf:ba:d1:09:cd:
                    17:f4:77:20:de:0d:16:c8:3e:cc:ea:1c:63:25:26:
                    0e:0b:bc:44:43:bf:9c:80:bd:7c:14:1e:56:90:d1:
                    d6:cb:75:09:20:e1:e8:ae:a4:66:ee:47:63:ef:88:
                    fe:da:0d:ec:12:11:91:01:21:76:2e:28:1b:ec:43:
                    a3:0d:5f:10:96:f3:39:44:e2:0a:e9:be:f3:0e:cd:
                    2b:35:11:ba:51:aa:ca:25:10:c5:ad:1e:8d:22:d3:
                    09:51:eb:a5:4a:bf:8d:9e:13:99:89:bc:0f:00:b6:
                    66:68:3c:ae:c3:2a:87:be:e0:0f:c2:d3:f5:a9:a9:
                    6b:28:b6:55:8a:4e:b8:89:96:76:8c:5d:98:c7:6f:
                    dc:7b:af:b9:01:fd:1b:eb:b0:57:af:63:d1:9b:cf:
                    e6:93:28:88:32:c5:3c:ea:16:64:c8:9e:af:40:86:
                    09:e4:03:52:36:e0:c1:66:21:df:c7:d2:a1:7e:de:
                    07:09:be:d3:4b:b3:d3:c6:92:e3:84:02:ae:95:03:
                    26:be:ba:e0:21:da:b1:2e:a7:f7:45:85:36:ad:e1:
                    dc:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:84:A5:71:C9:10:6F:B2:D9:3B:B6:3E:61:C2:CC:36:ED:DE:BB:8B
            X509v3 Authority Key Identifier:
                keyid:B5:4D:18:94:4C:A2:80:85:05:39:1D:E9:7F:A9:D6:B2:BC:61:89:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU0YlEyigIUFOR3pf6nWsrxhiZo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1c2984-fd83-41ba-b1dc-f683b9681d61/1/tU0YlEyigIUFOR3pf6nWsrxhiZo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1c2984-fd83-41ba-b1dc-f683b9681d61/1/tU0YlEyigIUFOR3pf6nWsrxhiZo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:96:07:2c:92:ba:fd:8a:a9:e3:32:e1:eb:dd:bf:92:ce:03:
         97:30:9d:11:4f:15:86:16:3c:a8:4b:e8:fc:2c:fe:27:ef:84:
         e6:ae:d0:fe:fd:e4:8c:84:4d:82:87:f4:23:87:31:b0:ca:58:
         16:9f:68:a8:e7:4b:3a:f9:41:d9:02:12:97:d3:10:1a:28:ca:
         71:67:b3:b1:76:cb:2c:07:77:fd:33:db:8a:4c:68:79:a9:0f:
         47:cf:58:f4:61:9e:84:75:da:12:87:cd:be:9a:cf:dc:f5:e6:
         5e:18:4f:f2:2e:ad:18:97:17:a5:12:58:87:7b:de:fa:23:f4:
         bc:5f:d7:04:2f:07:5a:02:6c:c7:e5:e6:20:90:b3:1e:4b:6b:
         12:14:ac:da:d3:2b:be:68:dd:c8:fa:c5:52:0d:aa:0c:2c:66:
         64:4c:70:27:d2:21:4d:ec:57:5f:71:e7:2d:29:6f:a0:dd:0b:
         19:c8:9d:7f:64:de:6a:73:2c:d2:78:52:e0:98:5f:e0:87:4a:
         d6:38:db:b8:99:48:f6:5f:ef:36:bc:68:d5:4f:71:61:72:4a:
         73:24:74:92:d5:09:ec:4e:e2:b8:ff:e5:8c:5f:d8:38:5a:c2:
         61:ad:2b:85:17:c5:eb:7d:51:80:94:bc:c9:0d:08:6e:bf:cc:
         a8:2f:4e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----