Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
File:                     XbdXv1dG8moHySCHAbDVS2m8M2Q.mft (raw, json)
Hash identifier:          6RCaDJGzx0XTYrN3GZ9kVrSF8EnpKycu9Qh4XJFuvYE=
Subject key identifier:   92:EC:A2:10:78:ED:D3:C3:1A:3B:C0:13:4D:22:70:0F:77:8F:96:46
Authority key identifier: 5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64
Certificate issuer:       /CN=5db757bf5746f26a07c9208701b0d54b69bc3364
Certificate serial:       019872620D008386E537D48E80BC41EEB51A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
Manifest number:          04E2
Signing time:             Mon 04 Aug 2025 00:01:25 +0000
Manifest this update:     Mon 04 Aug 2025 00:01:25 +0000
Manifest next update:     Tue 05 Aug 2025 00:01:25 +0000
Files and hashes:         1: XbdXv1dG8moHySCHAbDVS2m8M2Q.crl (hash: ElQvy7xJV+ggJ02oljLc0zpj19XRgd2bBJWbrs4W7W4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 00:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:62:0d:00:83:86:e5:37:d4:8e:80:bc:41:ee:b5:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5db757bf5746f26a07c9208701b0d54b69bc3364
        Validity
            Not Before: Aug  4 00:01:25 2025 GMT
            Not After : Aug  5 00:01:25 2025 GMT
        Subject: CN=92eca21078edd3c31a3bc0134d22700f778f9646
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:d8:b2:90:d5:c9:12:77:4d:e1:52:7f:65:ff:
                    33:cd:75:7f:1a:c7:eb:61:47:11:d6:c0:0c:d3:a0:
                    10:e3:8e:f5:c2:ff:01:97:79:f1:fe:91:05:ed:ec:
                    df:83:53:ac:13:89:bc:09:91:7a:71:e6:05:89:bc:
                    3c:48:5e:af:9a:d4:3e:43:05:2e:00:59:c4:83:c5:
                    7e:39:e6:5b:63:b8:23:02:d1:08:a3:b9:8f:75:c4:
                    8f:70:99:5e:76:3f:af:69:1b:a7:6c:13:11:38:56:
                    5f:f9:65:af:0d:20:82:ab:f7:eb:dc:c8:ae:ee:49:
                    64:88:7e:04:d2:fd:14:dd:64:f0:10:4d:12:ba:60:
                    a3:4d:e3:7d:b7:bf:d9:16:57:b1:97:e6:55:0a:3a:
                    5b:32:e9:a8:08:ca:d8:43:45:3f:e8:89:f9:fb:4a:
                    b3:20:dc:1c:58:d1:67:36:02:8c:6a:a1:93:a3:00:
                    fd:72:73:44:84:6a:af:d2:95:84:b0:9c:d7:e4:d5:
                    bb:46:b5:9d:1d:75:1f:08:ef:f2:f0:9c:14:7b:73:
                    ec:fc:00:f3:62:87:2f:12:16:0b:d8:49:6a:79:21:
                    d2:1c:59:de:1a:d4:85:bc:ba:13:65:67:37:95:19:
                    c7:ba:75:2e:29:ac:37:f3:fd:e6:b4:88:6c:94:c7:
                    9d:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:EC:A2:10:78:ED:D3:C3:1A:3B:C0:13:4D:22:70:0F:77:8F:96:46
            X509v3 Authority Key Identifier:
                keyid:5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:6b:f6:08:d7:dc:d3:e1:16:96:ab:c4:af:ed:37:eb:57:0e:
         0e:51:2e:fa:98:0c:d7:bc:62:62:99:52:22:ae:4a:c1:de:da:
         e2:d1:5a:0d:91:01:56:49:75:2a:ba:b4:f7:5e:f0:67:e6:c7:
         2a:05:63:07:f7:f7:a8:04:bf:2b:d3:3f:a5:c4:f6:65:6f:ad:
         11:8c:09:09:e7:43:48:e2:de:89:57:6b:88:5f:20:b3:cb:5b:
         ac:30:29:87:e6:b3:ef:7e:7c:91:cf:4e:31:68:0d:ad:18:f6:
         27:56:67:86:28:3b:1c:90:11:d2:a6:ae:d4:b9:12:86:4d:dc:
         05:9b:84:de:a2:8f:4e:f9:f4:95:af:98:5e:69:b6:1a:66:0c:
         d2:4f:6e:f2:21:11:71:27:d3:33:38:1b:f4:39:4c:86:ba:b6:
         51:92:4b:2f:6d:08:45:05:a1:7c:73:b4:42:92:e6:33:60:43:
         93:27:dd:73:41:af:6d:89:b5:ae:64:7b:ee:06:ed:1c:b3:27:
         b1:7a:91:f8:18:09:c9:66:e7:e2:88:89:71:a9:37:98:d5:5c:
         77:85:ae:37:f4:dd:a9:38:2b:09:ae:1f:18:3c:e8:10:04:b6:
         cd:b6:24:0c:1c:a2:2b:cd:81:30:69:b3:f1:a5:58:ce:ad:fd:
         41:df:7b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----