Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
File:                     Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft (raw, json)
Hash identifier:          Q5zIeqye02vGSDALzQ3lNovEqaLGgclVzi9gyLxSWVE=
Subject key identifier:   60:AB:F5:41:DB:04:D3:38:7D:08:12:FF:6D:11:20:20:72:63:0F:39
Authority key identifier: 46:7F:0D:67:62:FE:96:F0:49:E6:EC:33:2D:04:2E:8B:9D:5C:DE:E4
Certificate issuer:       /CN=467f0d6762fe96f049e6ec332d042e8b9d5cdee4
Certificate serial:       01987B9D7202EE9F56CE81B52F1432ED1E80
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
Manifest number:          0575
Signing time:             Tue 05 Aug 2025 19:02:52 +0000
Manifest this update:     Tue 05 Aug 2025 19:02:52 +0000
Manifest next update:     Wed 06 Aug 2025 19:02:52 +0000
Files and hashes:         1: Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl (hash: 4UouiCONVY17nRs6lLo0YPyDJDeGEO8X2mNNg2ZEqs4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 17:44:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7b:9d:72:02:ee:9f:56:ce:81:b5:2f:14:32:ed:1e:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=467f0d6762fe96f049e6ec332d042e8b9d5cdee4
        Validity
            Not Before: Aug  5 19:02:52 2025 GMT
            Not After : Aug  6 19:02:52 2025 GMT
        Subject: CN=60abf541db04d3387d0812ff6d11202072630f39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:27:b3:2e:ca:1e:42:10:f8:97:1f:9f:ef:8f:
                    3b:9d:88:ec:cf:bc:2b:e0:a5:9f:70:83:a0:61:0d:
                    e0:e0:db:da:42:3d:cf:41:d6:70:12:41:cf:45:55:
                    42:aa:de:27:cb:3e:10:7f:e1:0d:a0:1b:a9:2a:aa:
                    9d:94:26:21:d3:ac:b2:43:ed:f3:50:6f:0b:58:22:
                    75:ce:0d:27:3a:0a:3e:af:13:c5:ca:76:54:53:0d:
                    d6:61:8d:f4:58:06:82:bc:cf:23:f1:a6:e4:16:72:
                    47:22:af:f6:9e:93:1f:b5:b5:94:3d:e5:5c:86:fa:
                    02:e3:22:2e:a9:c3:55:5a:d3:1a:8d:d8:69:d0:5e:
                    c1:5f:4b:ec:64:0c:64:be:22:78:63:2f:d7:3d:68:
                    d8:a0:b3:e0:6e:87:9d:b1:63:3b:46:0c:95:59:a9:
                    30:8c:36:f8:03:8e:2f:cb:00:2e:aa:a7:c6:59:da:
                    95:f9:d9:b0:73:84:27:88:60:f9:c8:d5:27:9d:ca:
                    1e:6b:60:d6:65:d9:e1:97:5c:e8:d6:00:b9:d9:b1:
                    1d:ed:1e:ee:52:78:20:2e:ea:09:37:fd:74:62:29:
                    6f:4b:89:a5:c3:40:15:e5:7c:58:82:23:51:13:18:
                    9f:c2:bf:b9:49:2d:26:f2:69:39:ac:82:75:4d:cd:
                    73:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:AB:F5:41:DB:04:D3:38:7D:08:12:FF:6D:11:20:20:72:63:0F:39
            X509v3 Authority Key Identifier:
                keyid:46:7F:0D:67:62:FE:96:F0:49:E6:EC:33:2D:04:2E:8B:9D:5C:DE:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:94:c4:04:66:0f:7d:51:54:0e:b2:0c:6d:a3:92:d1:ff:71:
         36:a5:e4:d3:ef:7c:93:83:66:29:06:56:d5:61:b0:7c:98:62:
         4c:5a:86:ba:59:6a:6c:84:e7:46:2f:9a:ea:eb:5a:d9:a3:ab:
         16:00:69:4a:42:93:b8:1c:f6:a9:e8:89:c9:f1:0b:05:04:1f:
         11:6d:1a:c2:20:b3:56:3e:b4:c3:84:97:9d:c2:47:df:cf:09:
         d6:1b:de:9c:10:d0:06:0f:3a:34:c2:5c:3e:77:28:ae:50:3a:
         fa:da:f7:90:c6:40:6d:ee:64:a3:f0:40:de:91:d9:0e:24:d7:
         91:94:3b:3c:15:cd:ea:99:7f:1f:b6:03:e6:a5:a1:91:3e:2c:
         45:0d:05:05:25:4c:6b:33:dc:a6:ed:bd:02:c5:10:1b:f4:cc:
         73:2e:be:be:af:56:ec:98:1e:d6:65:38:e1:12:9b:89:19:85:
         69:96:82:f3:7b:e5:03:eb:b9:6b:83:e3:b2:6b:8f:31:fc:77:
         9f:6b:30:d7:68:e7:23:e9:0e:4f:1a:de:f4:9c:40:4d:00:80:
         a8:39:7a:e2:2c:84:8e:df:58:d1:b8:15:0e:46:fe:c3:45:13:
         32:03:7f:b9:19:87:a4:30:fe:eb:e9:5d:9f:89:ba:8c:0d:fd:
         d6:25:7c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----