Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
File:                     vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft (raw, json)
Hash identifier:          VYkILsnbLeCEor8zBvhk/lSXBCE3kZmmeB68gau25KA=
Subject key identifier:   8E:B4:4C:73:A6:F2:8D:2A:BF:05:35:71:72:4F:E0:A3:AD:B6:47:F1
Authority key identifier: BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B
Certificate issuer:       /CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b
Certificate serial:       0198A04EE37396E7E2E1A83F6FA05D2BDA02
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
Manifest number:          0B08
Signing time:             Tue 12 Aug 2025 22:03:01 +0000
Manifest this update:     Tue 12 Aug 2025 22:03:01 +0000
Manifest next update:     Wed 13 Aug 2025 22:03:01 +0000
Files and hashes:         1: vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl (hash: H36571fvE/kEwALj1acT5cunqC8uO0wPP+fQ9KhgE7E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:4e:e3:73:96:e7:e2:e1:a8:3f:6f:a0:5d:2b:da:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b
        Validity
            Not Before: Aug 12 22:03:01 2025 GMT
            Not After : Aug 13 22:03:01 2025 GMT
        Subject: CN=8eb44c73a6f28d2abf053571724fe0a3adb647f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:9e:e1:97:d4:d0:ed:7d:f8:16:ea:9f:5e:d1:
                    66:6c:cc:85:9a:15:ac:96:d0:4d:cb:cb:84:d8:66:
                    a1:a9:b8:80:15:f7:72:ac:7e:fb:9e:59:d0:f6:87:
                    25:89:c2:c0:28:46:82:2b:2a:fc:c8:01:1a:6b:a8:
                    6a:d3:3f:b1:2a:11:77:91:46:af:ed:b8:b0:06:e9:
                    19:1c:74:f6:e1:36:f8:f8:8e:24:24:81:f3:5f:a6:
                    c3:69:05:3f:fe:10:ee:76:18:29:66:4e:b4:0f:5a:
                    bb:8b:1a:83:46:81:24:c8:bf:65:c2:2a:2d:ec:01:
                    e9:23:1d:8b:a6:ae:ae:6f:89:6e:37:4d:30:39:71:
                    e2:85:bc:22:35:75:c9:e0:0a:54:43:0f:c1:4f:92:
                    b5:c7:04:bd:4a:86:23:9b:0b:3d:84:04:a5:75:0d:
                    9b:09:e3:29:00:32:0a:0b:89:d0:5a:29:fd:72:2e:
                    74:e6:6a:74:34:c3:b9:a7:cd:1b:a3:c3:af:16:c5:
                    7c:82:17:a3:f3:2d:c3:98:1c:e5:45:cf:6a:7b:5b:
                    41:b1:40:58:0a:43:7d:8d:b0:14:df:c1:80:d2:36:
                    69:6a:36:1b:a4:63:cb:e4:e9:de:51:0d:b8:65:29:
                    90:fb:77:b4:5f:af:0e:1f:85:d4:54:7b:ff:cf:f5:
                    0d:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:B4:4C:73:A6:F2:8D:2A:BF:05:35:71:72:4F:E0:A3:AD:B6:47:F1
            X509v3 Authority Key Identifier:
                keyid:BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:3d:16:65:29:51:8b:01:2b:0b:b6:58:15:47:4e:77:10:f7:
         1c:43:c0:82:f7:2b:50:38:1c:10:d0:1d:a3:cc:10:eb:90:b0:
         cf:1d:99:7a:cd:f2:ab:c5:82:f0:fd:aa:8c:21:7f:c9:50:b0:
         37:f1:ba:f6:41:47:b3:ae:fa:c4:44:df:79:3b:8d:90:9f:47:
         5e:35:28:6d:ba:e9:06:3a:42:c9:d2:ea:d1:b5:d2:7f:eb:1c:
         7c:81:7c:02:c2:1b:b3:69:05:b6:27:88:10:d7:74:79:b2:c2:
         7a:c1:83:4a:47:17:2c:23:07:0b:86:88:d1:78:68:6b:4f:c1:
         42:f1:80:41:3a:8a:3c:16:ab:67:ee:47:4e:aa:1f:91:94:13:
         0b:87:ae:9a:c6:15:c7:af:7f:50:63:07:ac:63:8c:63:c7:a2:
         06:03:e9:a4:da:77:13:b6:38:be:d6:98:a2:80:bb:58:e8:91:
         c6:99:d0:18:40:4a:11:2a:86:e5:9a:ff:b1:83:36:73:75:f6:
         70:5e:03:b6:5b:0b:65:f5:49:31:5e:16:74:86:11:d7:9d:f0:
         62:b9:1a:8f:87:01:18:c5:12:fc:36:f6:f4:3d:ec:cc:35:c0:
         91:54:09:6c:5b:c0:8b:07:13:e0:16:c1:26:be:81:40:ab:78:
         68:3b:70:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----