Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
File:                     jRHN6i8zL8ztMzil3x-y30Uh-OI.mft (raw, json)
Hash identifier:          EaioRm8LsE+C3rN2xjPyTEJ2vgmZEVQaJkdwphLGXDY=
Subject key identifier:   C5:72:8F:BB:6B:9F:A5:07:73:B7:CF:A4:EB:C0:65:CE:FA:0E:43:22
Authority key identifier: 8D:11:CD:EA:2F:33:2F:CC:ED:33:38:A5:DF:1F:B2:DF:45:21:F8:E2
Certificate issuer:       /CN=8d11cdea2f332fcced3338a5df1fb2df4521f8e2
Certificate serial:       019873E31531FAA9DFFF677D57BCE85A08F2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
Manifest number:          112B
Signing time:             Mon 04 Aug 2025 07:01:58 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:58 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:58 +0000
Files and hashes:         1: jRHN6i8zL8ztMzil3x-y30Uh-OI.crl (hash: lwxBfXHUQsEQ2wQbM4JEKg2/7NuOdLPfmgK8eTnWFCU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e3:15:31:fa:a9:df:ff:67:7d:57:bc:e8:5a:08:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8d11cdea2f332fcced3338a5df1fb2df4521f8e2
        Validity
            Not Before: Aug  4 07:01:58 2025 GMT
            Not After : Aug  5 07:01:58 2025 GMT
        Subject: CN=c5728fbb6b9fa50773b7cfa4ebc065cefa0e4322
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:83:a7:2a:b9:df:f9:e6:ca:f6:b0:c6:ed:95:
                    91:8e:52:3d:88:b2:b7:c8:53:09:97:68:39:d4:a9:
                    26:f7:0a:2b:2c:1d:21:13:c8:99:af:a7:41:c5:ef:
                    b9:93:95:2a:5d:4d:21:df:f1:4b:c3:0d:c0:27:33:
                    37:24:e9:9e:08:39:0b:b2:5f:e9:97:04:11:58:73:
                    3d:0d:37:6c:df:2d:77:2a:76:d4:2f:76:7a:9e:b8:
                    4b:3c:47:7d:79:cf:38:c8:b4:a4:f1:ac:f9:04:de:
                    cc:1f:fe:d5:ca:9f:7c:19:7b:24:9f:ca:4b:1b:3c:
                    4e:95:f4:93:c6:1f:49:18:42:0c:45:33:7e:86:84:
                    61:f7:a2:2b:15:0f:b3:dc:88:d0:16:76:8a:b2:5b:
                    b5:ff:e8:bb:72:5b:23:f5:9c:6d:21:8d:5e:28:e8:
                    31:8b:2f:d8:c6:6d:40:45:62:53:fe:6f:53:d5:46:
                    29:08:61:fa:ab:79:d8:2f:76:c7:e8:aa:7d:e0:14:
                    7c:1f:e2:84:ec:f1:74:29:56:fa:51:84:7e:f7:e6:
                    8c:90:47:90:81:d2:dd:ac:c4:57:c0:5d:e3:f8:f3:
                    d9:60:c4:f2:fb:0c:5d:53:d4:95:5c:1e:4b:55:4d:
                    d3:f7:0a:54:fc:ae:45:fb:35:f9:39:c4:61:0b:53:
                    d1:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:72:8F:BB:6B:9F:A5:07:73:B7:CF:A4:EB:C0:65:CE:FA:0E:43:22
            X509v3 Authority Key Identifier:
                keyid:8D:11:CD:EA:2F:33:2F:CC:ED:33:38:A5:DF:1F:B2:DF:45:21:F8:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:c4:b0:65:38:b8:b7:45:6e:18:0a:3e:df:87:9f:1f:34:0c:
         d7:86:44:fd:1e:d8:0c:ae:60:39:f3:2b:ab:f9:01:e6:47:f8:
         b2:81:d0:4a:e3:48:d8:9b:b3:f2:28:9d:fa:e1:5b:9f:2f:49:
         64:42:f4:c7:34:88:b5:f6:33:16:91:a6:63:41:5f:e9:11:54:
         d1:d2:39:a4:7f:94:46:59:1f:ab:8a:42:20:5e:d1:ce:86:44:
         8c:23:41:fa:21:01:f9:23:91:4a:fe:e0:83:80:78:f0:7a:92:
         ee:d7:61:5f:42:e0:c9:5d:42:bc:ab:c6:b5:33:b4:ba:a2:e0:
         09:78:ed:7f:06:40:fa:ff:a3:ae:38:05:f1:0c:67:9d:e9:34:
         c0:0e:58:c9:e7:78:f5:e8:dd:73:1d:71:30:fd:71:da:bc:4e:
         63:3a:6a:b2:85:08:53:dc:82:12:ca:ac:5e:58:9c:f6:20:af:
         c4:f3:22:41:52:a3:51:5f:7f:32:8a:a8:bf:97:d4:4c:bf:c4:
         70:2a:f1:62:1e:7b:c2:57:89:72:1d:2f:b3:69:13:86:6c:28:
         ef:fb:36:f0:b3:9c:fb:d8:0f:e6:1f:c6:3a:06:8e:51:38:48:
         48:8c:72:f5:43:66:0d:0d:f5:8e:f6:da:cb:e6:99:cc:c6:f3:
         c6:b5:7e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----