Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
File:                     HkQmt06M9v_e23sGBBgIMqhiXzI.mft (raw, json)
Hash identifier:          pkokZ8TSXmTa9oj7Vn6wFem3MBYWsCx+987L3VQi6vY=
Subject key identifier:   17:E8:57:78:65:EF:31:B5:24:84:8F:EF:96:40:B1:C1:97:42:F5:AC
Authority key identifier: 1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32
Certificate issuer:       /CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
Certificate serial:       01988B0EAC17AE122C812B5DB157C54CA5E2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
Manifest number:          0734
Signing time:             Fri 08 Aug 2025 19:00:51 +0000
Manifest this update:     Fri 08 Aug 2025 19:00:51 +0000
Manifest next update:     Sat 09 Aug 2025 19:00:51 +0000
Files and hashes:         1: HkQmt06M9v_e23sGBBgIMqhiXzI.crl (hash: 1HgCBVcEG101/8qJtSuPDg77yfMYwE3ozQb5rT1R8Wk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 19:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:0e:ac:17:ae:12:2c:81:2b:5d:b1:57:c5:4c:a5:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
        Validity
            Not Before: Aug  8 19:00:51 2025 GMT
            Not After : Aug  9 19:00:51 2025 GMT
        Subject: CN=17e8577865ef31b524848fef9640b1c19742f5ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:cf:2e:41:6a:46:30:d4:6c:fb:8b:0a:3d:70:
                    67:c3:91:ab:5f:37:e5:0a:7e:9f:c3:e8:64:8a:b0:
                    12:00:da:54:78:91:4c:32:9e:8c:b0:ab:8e:3e:c2:
                    06:55:c2:47:e1:aa:64:00:8f:cc:fe:97:41:03:48:
                    4a:50:ee:14:41:f3:36:20:0b:11:07:45:33:d2:e7:
                    11:e1:94:d6:25:a4:e9:d0:c8:d7:e9:b1:02:22:0f:
                    35:74:7f:80:6d:e7:36:68:00:89:da:a8:1a:f7:b7:
                    84:8f:27:bb:cd:14:d1:a6:48:d7:ea:d7:e7:22:e8:
                    b8:47:5d:b6:f4:38:88:3b:d4:36:41:2d:30:77:f2:
                    02:1d:43:62:bc:87:15:9b:22:9c:33:64:97:08:3b:
                    10:de:e5:6f:21:35:03:59:b0:96:cf:49:47:fd:a4:
                    95:3b:bc:5c:bf:30:d0:80:49:92:07:71:1d:79:b2:
                    5b:df:95:e6:1d:0f:59:e9:52:85:d6:3c:09:fa:46:
                    0e:c9:dd:56:08:49:fd:7f:ed:f6:8c:67:c0:a7:20:
                    f4:84:91:8c:59:d7:fb:b9:8b:ea:b4:6b:af:0a:a5:
                    81:fe:2d:95:2f:f9:27:85:f4:57:dc:c9:2a:69:cb:
                    34:ad:a4:31:31:7f:ce:f9:e4:bf:c1:4f:f7:4a:66:
                    6a:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:E8:57:78:65:EF:31:B5:24:84:8F:EF:96:40:B1:C1:97:42:F5:AC
            X509v3 Authority Key Identifier:
                keyid:1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:fc:72:69:96:e3:91:98:2f:ae:3c:82:4d:83:03:e7:9a:cc:
         de:7b:c6:d6:d5:68:1d:33:ad:99:cc:9e:86:fd:ea:77:ff:ff:
         5f:5f:c4:5b:e9:6d:d7:0a:c5:a6:d2:7d:26:8f:82:c2:a5:5c:
         51:d4:2a:64:9d:9a:a9:6f:d9:8a:21:b9:f1:1f:28:ff:c8:90:
         95:bb:bf:92:74:92:ae:cb:85:37:13:0b:73:29:a8:bf:cb:d7:
         2c:6e:f4:7c:5d:0f:cb:76:a6:b4:3d:1d:8e:73:04:78:7e:2f:
         05:d5:15:65:77:69:26:99:b7:3a:a1:6c:2c:2e:43:67:fa:f4:
         44:12:1c:3c:71:ff:8d:11:14:94:4e:77:05:c5:41:3e:3c:e3:
         da:e5:84:f5:3e:b3:1d:34:79:d4:87:f3:de:fe:6b:94:0d:d7:
         92:8e:56:df:e9:02:cd:37:6a:ad:a9:97:8e:dd:b7:a5:fe:c5:
         eb:82:f8:ec:e2:0c:f9:f2:82:76:5f:99:1b:46:bf:8a:d4:30:
         02:89:9b:57:e6:a4:fa:ff:7c:7c:d3:0c:12:0c:5d:3c:b0:f1:
         d9:48:e4:f7:b2:5d:ab:8c:36:70:52:5c:61:15:45:01:19:c2:
         64:70:d1:8f:e1:21:b1:36:2a:10:42:83:cf:03:ff:a8:07:34:
         4b:fd:92:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----