Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft
File:                     fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft (raw, json)
Hash identifier:          hPDz5N7ZuTciePZ+DhQvCf4mJwBf4VWxhtGzIn8IWoo=
Subject key identifier:   86:DA:A2:4F:FF:C3:8F:5E:4C:AA:D0:67:57:87:2C:DC:6B:49:D1:82
Authority key identifier: 7C:82:30:28:AE:FF:C5:99:AE:FF:A5:DE:5B:90:CC:AD:33:49:7D:B9
Certificate issuer:       /CN=7c823028aeffc599aeffa5de5b90ccad33497db9
Certificate serial:       019873E1E73832BDC4956DAD60FBA36DAC15
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fIIwKK7_xZmu_6XeW5DMrTNJfbk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft
Manifest number:          05A6
Signing time:             Mon 04 Aug 2025 07:00:41 +0000
Manifest this update:     Mon 04 Aug 2025 07:00:41 +0000
Manifest next update:     Tue 05 Aug 2025 07:00:41 +0000
Files and hashes:         1: fIIwKK7_xZmu_6XeW5DMrTNJfbk.crl (hash: KQ9DDwBQ1BTpC6iPb8hYyjj+oYik4I1dbB8oVvmx6Go=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fIIwKK7_xZmu_6XeW5DMrTNJfbk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e1:e7:38:32:bd:c4:95:6d:ad:60:fb:a3:6d:ac:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c823028aeffc599aeffa5de5b90ccad33497db9
        Validity
            Not Before: Aug  4 07:00:41 2025 GMT
            Not After : Aug  5 07:00:41 2025 GMT
        Subject: CN=86daa24fffc38f5e4caad06757872cdc6b49d182
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:57:9c:f7:03:17:61:08:70:2a:96:4a:09:99:
                    44:e8:8f:72:f9:77:12:4d:d1:b4:44:eb:b7:87:2d:
                    6e:f4:3e:25:13:fe:7d:47:7f:e8:fb:f3:f4:85:20:
                    a3:a7:8e:b4:d3:81:01:0c:21:9c:aa:d3:9c:62:a0:
                    99:52:db:96:b2:be:aa:11:8e:90:e8:df:1c:02:46:
                    04:32:78:04:02:c5:bc:03:06:8a:da:ec:3f:df:12:
                    e8:08:df:0b:7a:72:bf:48:f8:c9:03:1f:58:78:cc:
                    12:7f:48:66:de:b3:6c:31:7a:fd:71:e8:84:c0:73:
                    21:6f:df:2d:e7:f4:98:32:8a:70:4f:78:e9:93:76:
                    c3:dd:bf:5e:b4:f3:5c:09:fa:67:45:8d:64:48:6c:
                    2c:ff:21:40:9d:da:82:8e:73:6c:60:33:68:59:eb:
                    82:37:04:ff:82:95:ed:a1:60:ef:a1:eb:8e:98:79:
                    38:84:d1:d7:d8:1e:74:24:52:ac:03:de:e3:eb:9f:
                    f7:13:22:b7:62:f6:1d:03:1d:0f:88:b4:9b:3c:b3:
                    11:12:dc:9b:3f:4c:48:da:3f:c9:29:47:57:fc:51:
                    f6:dd:78:8d:2f:66:90:53:a5:ac:76:cd:5b:4b:81:
                    07:4d:5c:9c:29:48:5b:57:56:86:b9:f1:34:7f:4b:
                    e6:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:DA:A2:4F:FF:C3:8F:5E:4C:AA:D0:67:57:87:2C:DC:6B:49:D1:82
            X509v3 Authority Key Identifier:
                keyid:7C:82:30:28:AE:FF:C5:99:AE:FF:A5:DE:5B:90:CC:AD:33:49:7D:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fIIwKK7_xZmu_6XeW5DMrTNJfbk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:b0:76:34:19:15:21:bd:5c:4e:dd:96:d4:57:3e:13:2b:d3:
         a1:6b:42:db:2e:d3:ba:a0:7b:cb:7a:fa:56:fc:7f:26:ec:cc:
         7e:48:4d:26:31:8e:79:d2:9c:11:0c:b4:87:4d:fe:63:bb:85:
         be:d9:b6:cc:bc:50:cf:11:28:ff:e2:50:f0:50:c3:58:40:78:
         93:60:82:55:d2:19:4c:2b:fe:d3:10:58:1a:4d:93:0e:ef:87:
         5f:be:84:60:b8:2e:91:ca:ad:69:a7:a2:5b:92:21:57:60:d9:
         91:1c:9e:21:e2:96:55:3c:02:69:eb:60:25:ec:05:0b:92:13:
         e1:82:b1:bd:c5:07:45:47:1e:17:6f:31:73:ec:bb:04:4a:ff:
         77:f6:3b:7d:b1:b2:82:99:03:33:4c:c4:f2:39:c6:0f:5a:52:
         6c:61:c0:10:45:e6:20:71:8e:d4:88:2c:d3:43:4d:3e:80:ea:
         84:4b:fe:50:13:8c:27:e7:45:19:fe:44:9f:d6:5c:9b:53:c4:
         d5:5c:ae:29:61:39:31:bb:cc:4a:cb:f4:6d:db:9b:79:39:f0:
         8c:6c:e0:f1:74:3b:c5:bf:63:7d:6a:41:d0:ec:78:dd:ea:0e:
         c6:33:cf:65:fe:db:17:a1:ee:48:75:7e:86:5b:56:8e:9e:d0:
         d5:26:db:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----