Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File:                     pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier:          Fq1Rvhi6EG9+aZnCWEqEcRPBxA4s7OwodKsEL6rDf2w=
Subject key identifier:   53:61:1B:59:C2:FE:D8:69:89:AD:D2:B3:50:23:70:E1:3F:BF:DE:58
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer:       /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial:       01988167C8DE481BEDEB27CD8FA19B42B496
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number:          0F91
Signing time:             Wed 06 Aug 2025 22:01:59 +0000
Manifest this update:     Wed 06 Aug 2025 22:01:59 +0000
Manifest next update:     Thu 07 Aug 2025 22:01:59 +0000
Files and hashes:         1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: mbdA3mEFupnustsvsQEyAqiM79KAUlCAa5n0eZHpPkg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:67:c8:de:48:1b:ed:eb:27:cd:8f:a1:9b:42:b4:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
        Validity
            Not Before: Aug  6 22:01:59 2025 GMT
            Not After : Aug  7 22:01:59 2025 GMT
        Subject: CN=53611b59c2fed86989add2b3502370e13fbfde58
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:69:64:98:94:c9:87:fc:1f:c4:a2:2b:81:01:
                    27:ff:07:1e:25:8d:33:75:c7:b9:fa:7c:73:37:26:
                    e5:0c:17:ba:c0:a4:d9:fd:38:e6:7e:f8:be:d1:86:
                    5c:98:83:41:9f:f9:57:79:02:db:6c:13:8a:d4:e9:
                    30:ae:12:55:3a:64:eb:e4:99:49:ee:c1:9d:4d:03:
                    73:55:1e:7e:11:d4:3d:cd:6f:cb:9a:5c:0a:3b:50:
                    1f:05:2d:47:71:24:ac:43:64:b9:59:b9:b4:5b:c8:
                    54:a9:65:f3:3e:d8:2a:6e:87:d5:ff:38:ec:0f:c8:
                    b4:85:ff:e1:96:eb:f5:c8:5b:3b:68:49:c5:94:63:
                    00:1c:6a:1c:1b:5e:33:2f:46:66:a5:aa:fc:1b:b3:
                    48:24:88:fd:6b:66:ae:5b:7d:cf:bf:e5:6d:11:00:
                    50:42:4b:d4:35:b9:d3:7b:71:9b:6e:ad:92:49:28:
                    5a:0d:f5:4b:cc:35:5d:d1:9d:38:07:79:e4:f7:b1:
                    74:7c:88:4d:49:a2:45:c7:80:59:4b:e5:74:1b:31:
                    bd:57:2b:a4:d3:92:f5:6e:6b:e5:7e:5a:71:60:4a:
                    e2:9c:de:ef:46:60:17:0e:c3:86:fe:19:95:b2:cb:
                    16:08:f3:72:4a:48:9b:ab:9b:f7:54:9e:5c:71:0e:
                    20:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:61:1B:59:C2:FE:D8:69:89:AD:D2:B3:50:23:70:E1:3F:BF:DE:58
            X509v3 Authority Key Identifier:
                keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         af:a9:2b:8b:8a:23:7f:7e:df:41:da:0b:4d:4a:90:9b:4f:3d:
         5a:e7:ff:cb:69:e9:e1:86:2f:d4:39:72:0d:e9:2b:93:bf:6f:
         d8:cc:2d:8c:79:c3:51:89:ea:f6:5b:3e:55:fd:11:80:cc:07:
         6c:18:14:4f:7e:5b:bd:30:5f:ea:c9:08:ee:22:35:99:48:2f:
         91:13:4f:e5:bc:7c:ea:2d:32:b3:7d:66:ac:39:62:f8:3f:a3:
         ff:6d:14:12:d3:a3:ae:86:56:da:d5:67:b9:5c:0b:db:6c:a7:
         56:52:73:48:2d:02:a1:d8:87:04:c5:70:a4:94:8d:f3:9f:8f:
         2c:68:39:a6:50:4b:fa:5f:3c:cf:2f:ae:24:02:84:0a:22:cd:
         3d:52:84:e6:d3:8e:f9:6d:61:f9:cc:86:0d:48:7f:ef:e5:71:
         e9:89:37:df:ca:27:c8:59:05:7b:60:a0:42:ec:5c:e2:7c:1d:
         a6:4b:73:f7:49:07:7c:28:53:99:1a:10:86:60:5f:73:55:b7:
         af:c7:3c:af:91:0b:91:ff:d3:12:95:8f:3e:8b:40:e2:00:49:
         46:2d:c3:6f:24:13:3e:36:44:73:b5:92:5c:4a:9c:b1:cc:87:
         d7:cc:34:36:59:c3:2b:36:36:75:66:fd:4c:59:30:2c:3e:63:
         26:de:2e:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----