Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
File:                     YzMz1xUm9TOxwc8L6fwyG2IzltM.mft (raw, json)
Hash identifier:          M5Mz69xC7/4jaQo2x/zOfjfbT6cKYiEsf/0OUyKHc9A=
Subject key identifier:   6B:E5:C0:16:DF:C5:52:83:93:12:FD:BE:E8:2E:CF:81:E7:DC:21:30
Authority key identifier: 63:33:33:D7:15:26:F5:33:B1:C1:CF:0B:E9:FC:32:1B:62:33:96:D3
Certificate issuer:       /CN=633333d71526f533b1c1cf0be9fc321b623396d3
Certificate serial:       01988BB3361309B0F9CB33D93E9916183036
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
Manifest number:          06B8
Signing time:             Fri 08 Aug 2025 22:00:34 +0000
Manifest this update:     Fri 08 Aug 2025 22:00:34 +0000
Manifest next update:     Sat 09 Aug 2025 22:00:34 +0000
Files and hashes:         1: YzMz1xUm9TOxwc8L6fwyG2IzltM.crl (hash: 74WbK3TervNhSsc2f/a9JFe2nqFkC8NXs1P9M2zapSk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:b3:36:13:09:b0:f9:cb:33:d9:3e:99:16:18:30:36
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=633333d71526f533b1c1cf0be9fc321b623396d3
        Validity
            Not Before: Aug  8 22:00:34 2025 GMT
            Not After : Aug  9 22:00:34 2025 GMT
        Subject: CN=6be5c016dfc552839312fdbee82ecf81e7dc2130
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:cd:b0:ab:fd:9a:8c:60:93:9d:a8:5e:56:e3:
                    09:7e:99:aa:d1:ae:8c:e3:4b:b1:d1:d4:00:67:dd:
                    a2:c3:a1:23:2b:bd:c2:28:87:8e:94:55:9a:aa:5c:
                    37:88:16:14:8e:28:e4:1d:7f:7c:cd:1f:3a:60:99:
                    87:15:f8:f3:27:b3:31:c8:72:c3:e3:41:e6:77:ff:
                    b7:29:d8:8b:52:16:ef:7d:67:92:7d:4d:aa:7a:f8:
                    e8:47:68:ce:13:d2:33:f9:58:05:7a:5a:ed:84:7e:
                    14:57:2a:3b:e5:8f:cf:57:dc:d9:f0:61:78:51:66:
                    3d:15:cd:77:47:0a:04:46:55:8e:fe:1a:c2:19:ea:
                    4b:0e:e1:16:a3:ad:32:02:d0:3f:e8:f9:9d:54:55:
                    e8:b0:be:60:a5:89:90:42:fe:fe:3b:b7:a3:59:b1:
                    b1:84:71:3e:34:1c:7e:13:aa:70:a6:63:b6:52:26:
                    e2:65:93:a7:4b:c0:63:07:f1:ca:d1:b8:3d:36:5b:
                    f8:33:73:ac:0b:de:46:ea:cf:7b:04:ba:ed:bd:93:
                    51:19:70:63:72:82:29:23:94:07:b1:6d:de:1b:6e:
                    45:56:91:38:04:54:70:63:2f:0e:3e:a2:96:2f:1d:
                    eb:7c:2c:08:9a:4c:7e:d9:35:23:52:64:df:92:e6:
                    71:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:E5:C0:16:DF:C5:52:83:93:12:FD:BE:E8:2E:CF:81:E7:DC:21:30
            X509v3 Authority Key Identifier:
                keyid:63:33:33:D7:15:26:F5:33:B1:C1:CF:0B:E9:FC:32:1B:62:33:96:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:8b:46:14:2c:65:f4:da:93:21:2e:3a:18:cb:bc:69:14:25:
         cb:62:eb:4a:b4:56:0d:ad:79:77:f8:e1:8e:51:c8:39:31:42:
         4b:6f:15:2e:cd:83:09:5c:7d:6a:50:2d:21:04:88:57:6d:3d:
         28:ca:b4:70:3e:f4:fe:3d:26:be:de:c7:c9:76:90:5d:e4:5e:
         d4:58:da:14:8b:c0:ad:f2:15:bb:69:5b:5a:13:ee:eb:b9:73:
         e8:6b:e7:d5:69:50:24:37:be:9a:61:0f:35:6d:92:5d:6d:2c:
         19:f0:86:88:e5:97:ea:67:cb:08:46:b6:a1:76:67:8d:a0:65:
         f2:a9:8a:31:4e:d7:b1:e8:c8:eb:2a:3f:d1:e9:ef:a3:34:fc:
         99:70:33:8d:ee:35:aa:f1:c8:be:d4:74:e3:f6:8e:ae:a0:76:
         69:5a:9a:66:01:c5:12:bd:29:88:af:c1:7d:b6:d8:4b:04:dd:
         ee:7a:c5:6c:29:e1:3c:20:3c:f7:d9:9f:1e:5f:c9:c3:1c:db:
         30:7f:e7:da:d1:ba:5b:ca:68:a5:ba:ca:c0:d7:80:1b:ab:7e:
         de:04:0c:f9:27:f7:61:bf:d9:37:d3:87:38:da:9a:35:89:a3:
         50:a2:1a:fa:5b:4c:c1:a6:79:05:78:b7:40:21:d4:c2:f1:8b:
         dc:5d:75:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----