Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File:                     Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier:          F2b+ti2C2R5zX7rth0d7vQXue+Z1TLXgoT+oFmU6iUg=
Subject key identifier:   E0:07:4E:8F:FA:E9:02:9E:1B:9F:D0:43:9B:B9:83:39:29:AE:55:31
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer:       /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial:       019896A6D5A3262F68C9734C51408BC2A6BD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number:          0D3B
Signing time:             Mon 11 Aug 2025 01:02:52 +0000
Manifest this update:     Mon 11 Aug 2025 01:02:52 +0000
Manifest next update:     Tue 12 Aug 2025 01:02:52 +0000
Files and hashes:         1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: PmOUZCJeKI0brNW6nKMab/jrwkIV7IVOoL8PA7s+i9w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 12 Aug 2025 01:02:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:96:a6:d5:a3:26:2f:68:c9:73:4c:51:40:8b:c2:a6:bd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
        Validity
            Not Before: Aug 11 01:02:52 2025 GMT
            Not After : Aug 12 01:02:52 2025 GMT
        Subject: CN=e0074e8ffae9029e1b9fd0439bb9833929ae5531
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:7f:d5:66:2c:a1:ca:b7:a7:72:0c:4e:8c:38:
                    1d:7f:95:19:3d:da:41:47:78:05:b6:81:ab:86:62:
                    64:90:85:50:de:b4:d4:34:be:33:4b:86:13:fb:6d:
                    43:f9:6e:15:24:6c:d3:1b:2f:07:ba:04:02:56:72:
                    99:27:26:5b:0d:f9:f2:35:47:84:af:e6:2d:3c:50:
                    29:94:8f:66:54:72:79:58:3c:7f:35:f7:fd:d2:27:
                    3d:f2:c6:dd:c4:25:f8:9f:bc:67:d6:78:c5:6f:2d:
                    d8:7b:77:af:bd:12:80:c4:0e:27:2b:bc:78:df:8f:
                    4a:a2:c0:18:18:ae:40:9e:27:a9:9d:1e:c2:f1:37:
                    77:a9:3d:9a:7d:69:a2:e0:e0:02:b6:49:bc:f1:89:
                    7f:0f:95:68:9d:c8:35:18:16:b4:b1:de:59:55:89:
                    74:25:ca:99:21:92:f4:5e:a0:53:bc:19:b5:f8:a3:
                    cf:3a:c4:bb:15:34:47:2e:dc:fb:cc:f7:77:f8:78:
                    8e:c0:a1:a7:4f:cf:29:27:48:05:77:d7:fb:84:e0:
                    5b:d4:be:1e:2d:8c:13:5a:e3:56:49:eb:d7:e7:39:
                    d3:27:24:31:ca:0b:5a:5d:fc:8a:b2:8f:6d:0f:e1:
                    78:ac:8b:04:57:63:0f:87:c5:7e:ce:c8:c3:34:ea:
                    e6:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:07:4E:8F:FA:E9:02:9E:1B:9F:D0:43:9B:B9:83:39:29:AE:55:31
            X509v3 Authority Key Identifier:
                keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:4e:cf:3c:1e:ab:f6:8f:95:e7:89:8c:03:e9:db:5a:e9:b7:
         b6:53:0a:ef:8b:bb:8e:a9:76:b4:8a:1a:1d:a2:8f:b6:e0:c6:
         20:dd:be:57:01:c9:08:9c:2b:c5:16:3f:33:c1:6a:ec:37:0d:
         cc:dd:34:d8:de:70:f9:ed:fe:8f:ba:19:70:5a:66:2b:ca:61:
         9f:42:32:49:34:1c:15:8c:96:7c:2f:3e:e8:e7:a9:d1:61:0d:
         dc:79:59:f7:0a:85:e3:d4:34:b4:7b:fa:5f:b1:01:9b:71:40:
         19:11:56:c0:9c:85:5e:d7:40:7f:36:8c:ac:9c:b1:06:31:70:
         c6:fb:db:ac:35:91:a8:a2:84:f7:62:0d:9f:b9:bb:c3:4a:ad:
         80:84:86:65:92:2a:81:2f:41:6d:cc:fe:cd:07:70:c4:46:cb:
         ba:b1:f8:44:a7:2c:1a:c7:b3:fb:b6:b0:6f:6c:26:90:1b:58:
         38:15:be:fa:3e:99:89:b1:bc:2b:c1:36:da:f2:a0:7e:48:c9:
         be:e3:d1:31:5e:69:c8:8b:86:ce:3b:8d:2a:09:bd:24:69:98:
         9a:3f:d4:04:a3:76:94:b6:d3:70:42:af:84:51:79:20:ce:b2:
         3e:3f:53:0f:7f:81:f7:2d:a2:76:51:ec:2f:a2:1b:7c:25:6a:
         bc:9d:ec:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----