Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
File:                     G8qoP8mkEL2z4P0thIcgE0dxvs8.mft (raw, json)
Hash identifier:          ij2fCLfpu263DyoX7hxQdGfq/1yjZSgfRpWDZS4hxB0=
Subject key identifier:   51:4C:6A:2D:A5:9D:DB:2D:BC:C0:62:C5:DE:58:9F:1F:03:02:63:63
Authority key identifier: 1B:CA:A8:3F:C9:A4:10:BD:B3:E0:FD:2D:84:87:20:13:47:71:BE:CF
Certificate issuer:       /CN=1bcaa83fc9a410bdb3e0fd2d848720134771becf
Certificate serial:       01989F3A7A355BB59E2221B5D88B26E6BF23
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
Manifest number:          15BB
Signing time:             Tue 12 Aug 2025 17:01:06 +0000
Manifest this update:     Tue 12 Aug 2025 17:01:06 +0000
Manifest next update:     Wed 13 Aug 2025 17:01:06 +0000
Files and hashes:         1: G8qoP8mkEL2z4P0thIcgE0dxvs8.crl (hash: W7JNj9z/iLwJmqIYbLxSltbogy6SABu/wgX3AspqIHQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 13:24:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9f:3a:7a:35:5b:b5:9e:22:21:b5:d8:8b:26:e6:bf:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1bcaa83fc9a410bdb3e0fd2d848720134771becf
        Validity
            Not Before: Aug 12 17:01:06 2025 GMT
            Not After : Aug 13 17:01:06 2025 GMT
        Subject: CN=514c6a2da59ddb2dbcc062c5de589f1f03026363
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:ff:fd:e8:d1:e3:4b:d0:41:2b:a3:0d:c3:cb:
                    e6:a0:f6:bf:62:35:0f:da:63:f7:2c:68:27:3a:3d:
                    98:e4:f3:7f:19:92:70:ff:df:11:42:7b:59:1b:b4:
                    3d:7c:f3:ba:88:97:1f:a2:93:83:37:68:bc:7f:8f:
                    05:db:56:e8:70:3f:8b:4b:78:3c:1a:04:f2:01:e6:
                    ca:81:2a:9d:b1:70:f2:0a:38:80:3d:39:64:91:7c:
                    53:fc:cd:f3:ab:f6:de:87:90:f2:15:63:70:e0:88:
                    51:c4:6a:5f:1c:0c:36:6d:19:8c:e5:1a:69:70:07:
                    35:9f:b0:17:58:16:97:0d:b2:91:c0:df:c9:b1:bf:
                    98:1d:37:ad:f0:2c:28:78:4e:52:4a:66:ee:96:a7:
                    2c:e3:9f:6c:8e:67:8c:7f:6c:72:d0:f6:78:07:97:
                    fe:67:df:f5:67:4c:ed:73:ed:d7:93:92:1e:23:93:
                    f1:d7:b0:7b:88:34:a8:44:8a:ab:93:a4:51:a8:e6:
                    72:a7:fe:1e:66:7a:c9:99:55:0a:f3:a0:f4:5e:a2:
                    54:d8:dc:a1:93:57:30:8e:e8:6b:b5:35:0f:cf:70:
                    9b:bd:ad:83:d8:93:88:a9:6d:91:ec:8c:0e:b4:95:
                    c8:af:42:fa:00:be:6f:05:60:ad:02:1c:21:af:18:
                    5d:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:4C:6A:2D:A5:9D:DB:2D:BC:C0:62:C5:DE:58:9F:1F:03:02:63:63
            X509v3 Authority Key Identifier:
                keyid:1B:CA:A8:3F:C9:A4:10:BD:B3:E0:FD:2D:84:87:20:13:47:71:BE:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:f9:97:36:3e:f6:ed:b8:f6:83:d2:7c:f8:9d:4c:27:43:0c:
         e3:f6:4c:f6:2d:6b:61:97:9c:2d:e9:28:25:02:e7:5c:96:36:
         5b:4c:42:8a:eb:7a:74:13:f7:85:3b:01:e9:8c:63:a2:85:8d:
         4e:2b:6a:90:56:8c:70:09:56:15:14:0c:9f:18:f4:58:25:95:
         db:15:35:66:61:94:e6:c3:a2:01:c0:4f:88:0a:d9:ef:6f:f6:
         eb:8a:8d:6e:b3:41:58:90:d3:27:29:3f:d5:81:e4:0c:15:21:
         71:d7:d9:d2:c3:0d:a1:de:50:81:61:d7:c0:ea:a6:37:75:4e:
         7c:69:4d:f7:96:f6:91:88:f5:af:0b:3d:c9:b4:3f:27:95:fd:
         de:e9:c7:c7:47:54:81:47:b5:63:39:a8:4a:1d:40:76:b6:1f:
         64:38:c1:c2:48:f5:82:f5:b6:7d:f3:e2:5d:01:82:94:50:28:
         4f:45:b0:f2:fe:33:7f:2c:b5:8e:e8:78:3b:e7:5d:ee:65:56:
         d6:6f:4b:ed:cd:6e:a6:d4:bc:61:16:5e:51:b7:33:6d:8b:d4:
         d6:9c:a6:48:15:b0:c4:99:7a:15:27:32:dd:1b:ac:a8:76:a9:
         1e:7c:90:57:a4:80:88:b7:6c:8b:4a:9f:43:ac:c2:51:e9:32:
         7a:91:f4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----