Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
File:                     7GV-idqz-xXjuuDrGsf6yT32OF0.mft (raw, json)
Hash identifier:          TIoOhU4FdyY/hMR3jlg1ommYnyFnW03c71SdcP0AbSM=
Subject key identifier:   98:47:3B:E4:BF:4F:A8:DF:96:2F:98:DF:62:C8:95:37:E8:1E:3B:D7
Authority key identifier: EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D
Certificate issuer:       /CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
Certificate serial:       01988A3313B1CF2B3C3E95CDBBD3B3C03C00
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
Manifest number:          0614
Signing time:             Fri 08 Aug 2025 15:00:59 +0000
Manifest this update:     Fri 08 Aug 2025 15:00:59 +0000
Manifest next update:     Sat 09 Aug 2025 15:00:59 +0000
Files and hashes:         1: 7GV-idqz-xXjuuDrGsf6yT32OF0.crl (hash: gthmg/qRkfvkSccRWuakP+QMnGjcyarybESLbAzLaGQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 15:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8a:33:13:b1:cf:2b:3c:3e:95:cd:bb:d3:b3:c0:3c:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
        Validity
            Not Before: Aug  8 15:00:59 2025 GMT
            Not After : Aug  9 15:00:59 2025 GMT
        Subject: CN=98473be4bf4fa8df962f98df62c89537e81e3bd7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:b3:1e:47:66:b1:7f:70:78:74:79:71:46:38:
                    08:53:93:b2:5d:c4:ef:e3:2c:fe:40:72:0d:be:a5:
                    c3:ea:c0:0c:93:29:4c:37:b8:01:8b:ec:56:2c:eb:
                    d6:93:82:e8:0b:c1:19:15:6d:5c:a9:d1:f0:34:2c:
                    1c:1c:c0:bb:1f:a0:b3:9f:de:36:d3:c8:63:11:95:
                    6b:4b:bb:c8:8e:f9:2d:5f:80:82:11:75:5e:d6:97:
                    69:98:54:04:85:6f:ca:63:73:31:2d:12:21:aa:ea:
                    bf:ab:29:13:91:53:62:2b:e7:fb:7c:a4:bb:08:60:
                    b9:e7:0d:b0:f3:d8:26:f9:d0:8a:e5:91:f7:b7:36:
                    88:69:ea:f1:56:46:1c:98:95:6a:7e:40:49:82:6c:
                    01:d9:57:1e:c0:2f:02:6d:bc:ea:0f:e5:1e:69:25:
                    11:cb:b5:7b:6a:62:aa:1f:50:71:a7:94:4d:77:a9:
                    c4:33:69:d8:c4:50:b7:4d:92:f1:4d:a7:2d:fd:81:
                    cb:98:6c:39:fc:57:f5:4b:ff:e8:34:0d:a6:bc:4c:
                    17:30:55:fd:dc:cd:58:e2:51:fb:e0:23:25:ac:20:
                    db:8d:86:b3:d0:b0:01:19:64:fd:d7:07:55:a6:2d:
                    00:83:85:1c:d4:89:97:f5:a8:a9:e5:86:9e:30:a0:
                    ce:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:47:3B:E4:BF:4F:A8:DF:96:2F:98:DF:62:C8:95:37:E8:1E:3B:D7
            X509v3 Authority Key Identifier:
                keyid:EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:07:4c:76:61:b0:84:48:21:3a:ec:2f:93:aa:94:15:79:99:
         9b:c4:0a:f5:5c:aa:23:0d:0c:76:5b:35:ea:10:8a:a7:6e:11:
         65:a1:77:23:0e:e2:91:a5:64:45:31:e3:5b:0f:99:26:78:e2:
         9f:d3:f6:7f:74:88:c6:e1:b3:b4:d5:8e:fe:db:d7:d4:c8:d0:
         f0:84:c8:43:24:22:2f:63:23:b7:44:73:8a:57:b1:8d:00:9e:
         01:4e:24:08:91:57:b4:8a:1d:a0:bc:7f:67:89:d7:2b:90:18:
         4d:3b:59:ff:34:ac:e9:cd:ff:9b:10:67:23:03:de:c8:55:c6:
         98:b1:ce:7f:b3:e8:d6:52:c2:1d:91:60:d7:bd:b4:38:71:5f:
         cf:cb:dd:f7:22:28:20:d4:de:1e:3e:28:6c:d7:5b:2a:c0:a1:
         6f:03:34:60:a4:a8:d4:9d:1b:9f:7d:15:5b:31:1c:b8:46:06:
         f8:9b:7b:ff:77:13:6a:23:00:55:14:a8:4a:b8:07:cc:ae:40:
         14:46:7c:bf:1a:96:8f:a4:d3:8c:d5:c9:c8:6b:7c:f9:35:5c:
         a4:73:e9:9d:6a:d0:f8:10:52:b3:46:8b:7b:6a:44:22:3e:a1:
         89:11:a0:e5:56:c5:ec:b8:67:92:d7:a5:ed:99:54:0d:b9:ba:
         a7:a9:f9:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----