Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
File:                     LphQiZ2cq14AM9C-lyKn6zBdfGA.mft (raw, json)
Hash identifier:          5GWOiwBKEaQ7jPQbmVsuDQD5C8z3IXcD9tLNQoSBePM=
Subject key identifier:   45:FE:E6:CD:5C:CB:5F:BC:05:E3:11:50:5E:42:F3:82:3E:4B:72:F2
Authority key identifier: 2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60
Certificate issuer:       /CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60
Certificate serial:       019873E1D0433E40D16191959CA4B7D27176
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
Manifest number:          1614
Signing time:             Mon 04 Aug 2025 07:00:35 +0000
Manifest this update:     Mon 04 Aug 2025 07:00:35 +0000
Manifest next update:     Tue 05 Aug 2025 07:00:35 +0000
Files and hashes:         1: LphQiZ2cq14AM9C-lyKn6zBdfGA.crl (hash: Plw7r/2l+o74VycS2941d55RTbTkes6srSwKlvSeV44=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e1:d0:43:3e:40:d1:61:91:95:9c:a4:b7:d2:71:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60
        Validity
            Not Before: Aug  4 07:00:35 2025 GMT
            Not After : Aug  5 07:00:35 2025 GMT
        Subject: CN=45fee6cd5ccb5fbc05e311505e42f3823e4b72f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:9b:c7:d4:85:ce:79:b3:6a:1d:d4:52:d1:3f:
                    e4:9c:9a:2c:8e:66:d7:ce:33:b1:bf:90:51:7f:01:
                    23:2d:51:d8:0f:97:d5:1d:d1:eb:62:cb:1b:fe:ed:
                    3e:fd:37:8b:95:c4:37:4c:6e:b6:54:a5:43:ed:1b:
                    6f:a0:7a:af:c9:01:21:d8:b3:ab:6e:e3:af:b5:71:
                    18:8c:43:6b:d8:64:28:90:a6:aa:b2:e3:32:2f:aa:
                    95:3e:94:c3:e8:57:2e:7f:53:4a:24:70:00:e9:6c:
                    a0:c2:c4:b2:a5:a7:54:da:c6:82:3b:76:7f:bb:b2:
                    ac:ee:09:d1:0a:84:54:1e:81:3a:68:af:f2:24:c0:
                    7d:bd:6a:31:a7:80:cd:e7:c7:46:f3:1c:77:4b:15:
                    f5:78:77:11:75:d0:62:fd:76:68:ef:17:a2:0e:0c:
                    2f:b8:e8:96:ea:12:9f:f9:c3:fc:de:3b:8b:0c:76:
                    28:cf:b3:00:67:71:cd:d3:ac:9c:34:13:76:11:41:
                    71:2a:f0:12:0d:d6:6f:87:61:b2:68:cf:3a:0e:94:
                    16:a7:2a:d1:4d:76:4f:08:36:2b:82:34:a7:52:1a:
                    10:4a:0b:5d:37:0a:f0:38:f9:2b:bd:40:09:28:a5:
                    00:f4:96:e8:0a:f8:1c:c9:d8:63:fc:e8:e3:c7:38:
                    6d:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:FE:E6:CD:5C:CB:5F:BC:05:E3:11:50:5E:42:F3:82:3E:4B:72:F2
            X509v3 Authority Key Identifier:
                keyid:2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:1c:13:e4:9b:a6:1a:b1:a2:de:24:3f:71:1d:7f:cd:7b:b9:
         58:f2:18:5f:47:d4:c9:16:79:67:04:9f:d2:de:b0:97:8b:5c:
         bb:7f:a0:50:93:65:da:85:33:b2:8b:c8:a3:69:71:c4:8b:5e:
         fe:cc:b6:16:76:e5:d2:b3:15:8f:f4:07:99:39:37:9d:3d:90:
         40:36:38:b3:a6:46:0d:55:90:85:2e:df:9b:ab:2d:84:80:81:
         19:15:95:d3:63:89:61:6f:e5:e6:2c:a8:8c:45:45:0f:3a:88:
         46:ef:d8:98:f4:8c:eb:63:88:33:62:31:f7:33:35:36:2e:da:
         57:83:06:8f:af:aa:c6:54:8e:1e:d7:4c:70:e9:df:f0:ae:3c:
         8d:9e:38:db:84:9b:b4:b4:6c:59:67:7d:4a:38:6f:49:b3:0f:
         6c:9e:98:31:ab:03:e8:91:bb:e5:76:15:b5:01:9e:1f:ed:b2:
         0b:47:35:98:69:3b:f6:b9:6a:11:e8:44:38:75:40:2a:6b:df:
         d8:e2:62:c5:00:c8:9f:2e:e8:c9:93:25:d4:d3:6a:2c:9e:d4:
         d6:11:0f:d0:47:de:3f:39:c0:77:8d:c0:53:49:bf:72:89:17:
         9a:5d:24:cb:fa:c4:35:c7:26:3e:46:a6:29:b8:4a:0d:fb:9e:
         61:d2:ba:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----