Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
File:                     kyIxLx0huzs4bKOqlzrGzSVLcDk.mft (raw, json)
Hash identifier:          7YTCsZspWy5VuXFs3XnbJhOxZ9wU5+cNpgnTCKZZ5VI=
Subject key identifier:   30:D9:95:48:37:43:9F:B0:25:71:E1:A6:EA:51:76:10:36:B3:03:A6
Authority key identifier: 93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39
Certificate issuer:       /CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039
Certificate serial:       01988BB32D5E6E3836A7376BBC19E084A6FE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
Manifest number:          161F
Signing time:             Fri 08 Aug 2025 22:00:32 +0000
Manifest this update:     Fri 08 Aug 2025 22:00:32 +0000
Manifest next update:     Sat 09 Aug 2025 22:00:32 +0000
Files and hashes:         1: kyIxLx0huzs4bKOqlzrGzSVLcDk.crl (hash: u6yF1SYbvUrGIIRQHlCtNTAgN7N61vFzwp/z+yQjJTQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:b3:2d:5e:6e:38:36:a7:37:6b:bc:19:e0:84:a6:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039
        Validity
            Not Before: Aug  8 22:00:32 2025 GMT
            Not After : Aug  9 22:00:32 2025 GMT
        Subject: CN=30d9954837439fb02571e1a6ea51761036b303a6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:79:29:2a:d9:1c:ad:e3:8c:9c:c9:00:b9:23:
                    34:46:03:c1:1f:69:64:6e:3d:1d:ab:a3:7e:70:b7:
                    a6:e9:e2:02:9a:88:2c:3f:96:14:fb:79:a9:88:a9:
                    99:ae:ff:80:3e:8c:cf:a2:a5:8e:9a:30:9a:ee:55:
                    3c:ba:12:80:c3:25:19:26:e9:13:3c:2b:40:55:45:
                    44:75:4f:69:b0:fa:cc:18:a3:9e:37:10:15:ac:8e:
                    3a:7b:37:b8:bb:94:d7:07:ef:24:81:bd:cb:49:9d:
                    3a:4f:9d:2b:9c:9c:06:5f:38:6f:a4:27:d1:61:1f:
                    6b:0b:c7:c4:62:67:d4:73:30:7f:fd:e7:28:d9:6d:
                    40:35:55:27:1d:c3:43:47:e7:48:5d:5f:64:c9:6b:
                    28:0f:44:a5:2f:86:fe:aa:43:95:53:18:47:9f:d4:
                    0a:6d:cd:e2:a2:f2:5c:44:c1:90:52:ae:7a:6d:27:
                    56:02:e7:6f:4a:68:db:6b:5a:05:c2:55:07:a7:e0:
                    e1:da:43:4e:03:fe:ba:e1:b8:70:47:87:c6:7b:6a:
                    3d:5a:8a:b1:04:39:6f:9d:6f:5b:22:0a:3e:f9:50:
                    0c:17:d8:3a:43:58:56:29:95:06:1a:61:7a:f5:98:
                    00:83:36:21:df:de:43:3a:71:d2:83:0b:64:ca:c7:
                    da:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:D9:95:48:37:43:9F:B0:25:71:E1:A6:EA:51:76:10:36:B3:03:A6
            X509v3 Authority Key Identifier:
                keyid:93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:e9:72:a0:f2:55:7c:77:3d:f8:e0:cc:4b:fe:2a:fe:7b:86:
         be:a2:6e:aa:11:cb:4a:07:b4:37:7f:e8:f5:7b:7f:96:23:f4:
         74:31:2c:09:42:2c:ac:c5:40:e4:f6:20:70:8b:cf:87:70:96:
         85:19:63:a0:4f:9e:20:70:36:cc:b2:41:81:16:f2:d7:f6:55:
         07:72:cc:ab:2f:8e:c0:dd:b6:68:9e:f9:51:dd:58:27:3e:60:
         a1:40:9d:da:6a:e8:a7:53:68:68:44:f0:c6:98:ae:ac:47:8d:
         41:5f:4c:37:6d:4b:33:ee:aa:07:ff:98:45:35:2c:38:61:f3:
         44:9d:26:38:75:d9:54:e2:6a:81:be:97:a8:38:88:e7:ea:45:
         ab:ff:18:50:65:52:4f:d4:f3:9e:2d:26:49:9a:11:8c:d2:d2:
         88:2e:e7:d8:31:bb:35:eb:6a:b4:69:29:c0:8d:60:12:f8:78:
         66:91:a7:96:29:34:a0:87:7a:35:22:33:5d:3e:3b:8e:73:25:
         bc:70:38:95:7a:92:a3:66:9e:28:ab:cd:d1:8c:1a:0c:4e:c4:
         9e:bb:37:0c:1c:d6:08:65:7f:b8:46:fb:d8:22:01:99:36:6c:
         87:af:da:04:f6:8a:1d:da:87:e2:eb:8c:ec:74:cf:2b:12:4a:
         eb:f1:56:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----