Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
File:                     tj8U3_NUhamVlBKGMDe4XfqfE9g.mft (raw, json)
Hash identifier:          3MPROeyZyaETGA+rqC0nB9pQUFx0uJ2+RBRHbephO6A=
Subject key identifier:   A9:58:1E:94:C4:67:CB:0E:1F:B3:0F:6B:BE:44:16:AE:F1:73:EA:23
Authority key identifier: B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8
Certificate issuer:       /CN=b63f14dff35485a9959412863037b85dfa9f13d8
Certificate serial:       019892236A74810ECC92582C53676E0FB21B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
Manifest number:          055C
Signing time:             Sun 10 Aug 2025 04:00:51 +0000
Manifest this update:     Sun 10 Aug 2025 04:00:51 +0000
Manifest next update:     Mon 11 Aug 2025 04:00:51 +0000
Files and hashes:         1: tj8U3_NUhamVlBKGMDe4XfqfE9g.crl (hash: fqfAgz2wgSmnpTC6CWbhYKD5gREmBXbU3JwIJZC0rDM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 04:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:23:6a:74:81:0e:cc:92:58:2c:53:67:6e:0f:b2:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b63f14dff35485a9959412863037b85dfa9f13d8
        Validity
            Not Before: Aug 10 04:00:51 2025 GMT
            Not After : Aug 11 04:00:51 2025 GMT
        Subject: CN=a9581e94c467cb0e1fb30f6bbe4416aef173ea23
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:e5:93:c5:54:83:53:45:cd:54:57:c8:28:14:
                    c2:58:95:ac:c5:66:cc:f5:6d:2c:66:e3:78:35:d3:
                    9f:26:a3:1f:d3:56:1a:9f:97:1b:a1:89:ef:b7:96:
                    67:04:3a:5a:2b:30:7c:e6:24:01:11:7d:ec:f9:b9:
                    78:3a:5a:32:12:98:03:4f:7b:9c:59:1c:c5:1e:83:
                    df:2e:65:84:98:b4:eb:6b:cb:97:fc:3d:fc:30:44:
                    dd:b7:6f:73:b6:b7:2b:2c:3f:78:d4:c3:ad:06:ed:
                    e3:86:66:4b:a7:72:fe:33:dd:cd:3b:af:c2:47:0f:
                    b7:49:0e:6c:60:61:e5:69:eb:29:57:71:0c:6f:79:
                    bf:d9:24:c5:39:3d:b7:90:d1:21:26:e0:69:82:ae:
                    35:75:c8:62:3f:ef:1f:ec:41:6c:7f:8a:f0:b6:eb:
                    16:80:f0:02:ba:aa:b6:7e:f9:e4:4b:b8:18:93:ce:
                    c2:c8:72:ae:39:71:64:18:3c:3e:64:0a:f4:f2:8d:
                    7c:31:b2:8c:be:f5:a4:5b:23:25:75:a8:af:48:c3:
                    f8:cb:54:c7:16:9f:01:e2:5f:48:3c:ed:2c:bc:d6:
                    2c:9a:bf:75:1a:da:5f:c8:ef:ef:85:47:56:5b:02:
                    10:14:ff:99:81:dd:8d:58:71:80:76:23:c0:fc:b4:
                    91:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:58:1E:94:C4:67:CB:0E:1F:B3:0F:6B:BE:44:16:AE:F1:73:EA:23
            X509v3 Authority Key Identifier:
                keyid:B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:36:43:51:ae:96:99:e1:95:f2:e7:77:54:49:98:98:ba:d7:
         3a:42:db:b1:b6:d0:70:7e:e8:35:66:a0:c5:65:d7:b3:29:2a:
         f9:0f:a3:5c:7f:39:b2:05:5c:68:5f:5a:e1:01:91:b8:6f:64:
         81:f9:01:ca:79:b7:28:cd:75:91:fa:da:f7:9b:0d:d1:45:25:
         17:b5:3a:8e:eb:da:7d:0a:52:79:14:c6:f9:98:30:85:cc:09:
         26:fb:cf:61:21:5d:d8:43:10:01:ca:40:ff:0a:ce:3e:2d:b8:
         ba:96:f1:b8:ee:01:32:9e:1c:47:9e:e9:53:31:b7:ce:e1:ab:
         5b:16:d7:7a:25:a4:4e:86:b8:71:30:2e:ed:d8:af:6e:5c:f4:
         10:c7:dd:77:e7:50:83:46:37:ea:ec:48:8a:18:db:91:af:27:
         67:f3:e9:08:62:8c:f2:e0:37:74:3b:1d:07:c1:79:59:4c:36:
         77:1a:58:5f:02:e5:02:1a:58:f7:48:39:a1:03:57:db:75:13:
         6a:d8:f1:98:46:eb:e9:8c:57:5d:bd:51:72:23:a8:4a:d3:c4:
         a8:e4:6e:3a:76:65:3c:41:de:24:a2:47:57:5d:c5:25:72:09:
         09:90:aa:c1:65:58:67:0b:c5:a7:01:e8:a8:91:ed:93:2c:69:
         42:d1:d3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----