Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft
File:                     b20hysOH8-N4uiOkynfeyTA7qS0.mft (raw, json)
Hash identifier:          WDktob5BCqwfGUSzEh/qofa2N6Hyf9TvSqCIy+5iFBg=
Subject key identifier:   E9:9E:58:B4:74:2F:A7:E9:96:54:70:C2:B3:B4:03:4E:A8:6A:15:5C
Authority key identifier: 6F:6D:21:CA:C3:87:F3:E3:78:BA:23:A4:CA:77:DE:C9:30:3B:A9:2D
Certificate issuer:       /CN=6f6d21cac387f3e378ba23a4ca77dec9303ba92d
Certificate serial:       01987E2EF240CD8266C1CAF824C2DA371D04
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b20hysOH8-N4uiOkynfeyTA7qS0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft
Manifest number:          1618
Signing time:             Wed 06 Aug 2025 07:01:02 +0000
Manifest this update:     Wed 06 Aug 2025 07:01:02 +0000
Manifest next update:     Thu 07 Aug 2025 07:01:02 +0000
Files and hashes:         1: b20hysOH8-N4uiOkynfeyTA7qS0.crl (hash: f7v9XsoqIXYOLwAvtBhLQiNVSMmAkqUdsT62Aw9ajcc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b20hysOH8-N4uiOkynfeyTA7qS0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 07:01:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7e:2e:f2:40:cd:82:66:c1:ca:f8:24:c2:da:37:1d:04
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f6d21cac387f3e378ba23a4ca77dec9303ba92d
        Validity
            Not Before: Aug  6 07:01:02 2025 GMT
            Not After : Aug  7 07:01:02 2025 GMT
        Subject: CN=e99e58b4742fa7e9965470c2b3b4034ea86a155c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:7f:c0:f5:14:ea:5b:61:90:11:34:b3:ac:43:
                    a5:20:b8:4e:01:59:52:1b:5c:a3:ae:95:0f:49:8d:
                    41:39:be:e9:5d:29:7c:c8:30:78:23:a0:ae:5d:c4:
                    25:72:e7:f5:17:c2:b6:1d:7f:43:1b:1a:68:25:a6:
                    83:fa:ba:07:04:15:c1:27:ed:9f:15:b0:cd:b9:1d:
                    61:1d:89:51:b5:d8:c7:77:ae:ba:95:de:6d:f5:e4:
                    55:1e:e6:16:6a:1c:45:99:a3:50:87:1f:2d:e7:5b:
                    92:ec:fe:cd:f6:97:eb:44:ff:1e:80:60:b3:f8:f2:
                    19:8f:b0:b6:ba:2d:eb:ec:db:c9:ce:27:16:18:f4:
                    a6:74:a8:0d:91:bd:20:c2:da:5b:ca:3d:9f:89:e9:
                    d0:1e:86:b9:07:09:71:d8:8c:d5:5d:c0:b6:93:92:
                    bb:40:18:4a:d4:ce:02:06:61:74:93:86:78:ad:fd:
                    e0:a5:f4:26:d3:09:b9:64:1c:bd:6d:eb:6f:27:54:
                    44:5e:df:b1:36:3b:83:ab:14:45:c7:b0:e2:bf:21:
                    27:84:d5:75:15:33:c0:0e:ba:75:91:8f:10:81:0d:
                    8d:93:5d:cd:96:45:af:c6:8d:ea:6f:e5:05:ce:a3:
                    58:07:44:71:9a:7e:85:32:62:f6:38:44:23:85:9f:
                    19:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:9E:58:B4:74:2F:A7:E9:96:54:70:C2:B3:B4:03:4E:A8:6A:15:5C
            X509v3 Authority Key Identifier:
                keyid:6F:6D:21:CA:C3:87:F3:E3:78:BA:23:A4:CA:77:DE:C9:30:3B:A9:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b20hysOH8-N4uiOkynfeyTA7qS0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/82/6ff22e-853c-4bab-84cc-1aebca4b6db8/1/b20hysOH8-N4uiOkynfeyTA7qS0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:02:14:73:ef:bb:fc:26:24:06:0a:b2:f9:d9:53:47:17:5c:
         e5:8c:aa:75:ea:4c:9a:a0:c0:5f:3b:25:9b:6f:df:f9:d8:9c:
         f7:df:58:91:34:92:a5:e9:a1:e9:56:29:33:46:07:8a:ec:4c:
         21:2a:ba:84:d8:4c:0a:3c:5d:54:fc:05:bc:45:9f:87:1a:a3:
         45:4b:11:82:86:27:80:96:f7:b6:8e:6d:3b:79:eb:a6:19:f3:
         30:3d:fa:fa:ac:0c:98:4c:2b:f7:c0:32:56:15:71:f7:73:03:
         83:fe:ab:6d:eb:a1:7e:f8:fd:80:9a:b8:ee:a3:a2:2b:52:60:
         74:ec:72:8c:63:72:a3:2b:6e:b3:35:a0:7d:75:d8:8e:4f:be:
         8b:0f:53:23:ea:6d:ff:cb:a6:d2:eb:68:c9:ea:e8:bf:1e:98:
         3a:5f:59:ff:a5:ea:b9:2c:13:51:a4:75:9e:f9:91:ee:d8:03:
         68:5e:34:c5:49:81:75:01:2e:bb:12:22:f3:b2:6d:3b:eb:4e:
         25:79:50:46:4e:9e:b8:45:73:98:da:e9:04:5a:3f:9f:4a:87:
         6f:a1:c2:d8:2f:46:ac:08:51:e8:16:f6:2b:88:de:d9:06:f8:
         79:4d:12:c4:5f:e0:8a:fc:88:91:c3:94:f8:d0:f6:bb:cb:1c:
         34:d3:4f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----