Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft
File:                     YDe79svKAic6peIbuIjj4exnZ98.mft (raw, json)
Hash identifier:          HvuaNZb+rQlMlF2dToG6YAe8sLS6tLt+WvD6dAlh7DY=
Subject key identifier:   95:A0:13:68:75:E9:3B:5C:E7:18:CB:EF:68:E3:35:B9:4D:B7:4F:DD
Authority key identifier: 60:37:BB:F6:CB:CA:02:27:3A:A5:E2:1B:B8:88:E3:E1:EC:67:67:DF
Certificate issuer:       /CN=6037bbf6cbca02273aa5e21bb888e3e1ec6767df
Certificate serial:       0198A23CE3902CD97A2793AECDBC627CE324
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft
Manifest number:          0B50
Signing time:             Wed 13 Aug 2025 07:02:35 +0000
Manifest this update:     Wed 13 Aug 2025 07:02:35 +0000
Manifest next update:     Thu 14 Aug 2025 07:02:35 +0000
Files and hashes:         1: YDe79svKAic6peIbuIjj4exnZ98.crl (hash: P6/zjOiDEajtHJK/aR6oMIwp62Dxot30Pk/UrFOHum8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 23:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a2:3c:e3:90:2c:d9:7a:27:93:ae:cd:bc:62:7c:e3:24
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6037bbf6cbca02273aa5e21bb888e3e1ec6767df
        Validity
            Not Before: Aug 13 07:02:35 2025 GMT
            Not After : Aug 14 07:02:35 2025 GMT
        Subject: CN=95a0136875e93b5ce718cbef68e335b94db74fdd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:74:71:64:f8:26:14:79:c8:62:22:d4:89:a9:
                    7f:de:92:95:5d:c7:45:ce:2b:f8:79:8d:d5:a3:ee:
                    0e:8f:48:d2:6c:fe:66:fe:01:35:2a:8a:17:b4:29:
                    58:15:86:78:81:96:b7:46:d9:4d:3a:ea:3f:6a:06:
                    9e:b1:4d:e2:97:2a:a1:ea:bc:f8:1b:e8:f5:98:e1:
                    2b:f4:35:49:41:a1:d4:6e:72:b4:ac:35:2d:da:f8:
                    9f:6d:89:90:c9:bc:7d:94:4e:4f:4d:5f:82:f9:78:
                    60:c2:e2:4b:d6:f5:3d:f1:09:f7:04:80:f1:7e:1c:
                    ba:c8:3f:b2:8a:81:58:d7:b1:ff:ce:f0:7b:55:e8:
                    22:1a:3b:0c:c8:28:f6:3c:67:0c:38:a1:8f:0b:1f:
                    84:af:1f:1d:e8:46:d6:dc:c9:61:ef:03:f2:e9:4c:
                    07:37:7a:bf:72:58:38:f8:93:34:ae:47:a3:45:ee:
                    cd:b6:b3:ac:b0:b7:b8:f1:d1:71:3a:02:89:56:b4:
                    9f:d0:f4:a7:2a:c3:8e:48:b5:67:f7:44:a0:90:f6:
                    bc:7a:3e:c4:ef:62:7f:12:e9:47:ed:64:9d:d3:c2:
                    ea:b7:9e:d9:8e:8c:58:b4:dc:d7:a0:90:f4:4a:95:
                    6e:a1:76:b3:1e:26:34:f1:b8:0d:d1:2a:9d:db:48:
                    cb:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:A0:13:68:75:E9:3B:5C:E7:18:CB:EF:68:E3:35:B9:4D:B7:4F:DD
            X509v3 Authority Key Identifier:
                keyid:60:37:BB:F6:CB:CA:02:27:3A:A5:E2:1B:B8:88:E3:E1:EC:67:67:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:47:df:7e:fe:0b:1e:cf:37:62:b9:57:71:85:8c:58:72:08:
         2e:68:fc:bb:28:c3:41:06:a0:49:70:56:9a:e7:28:cf:7f:69:
         29:1f:23:82:7d:d2:aa:8a:df:0d:72:12:c2:c0:b7:28:b5:3c:
         94:c8:d6:1a:f1:cc:a0:12:e9:0b:52:6e:f4:c0:ec:d1:e9:79:
         3a:b6:4e:45:61:1b:6f:1e:6a:83:86:ae:ff:b8:99:3b:33:f8:
         e6:01:2b:fe:ad:17:ab:fb:fc:b8:f8:68:32:12:a8:09:2d:d0:
         56:35:7b:66:64:f3:8d:1a:9f:2c:80:34:42:76:7e:3e:a8:9a:
         6e:d0:e7:fb:68:a8:65:75:cf:d6:f4:a0:ee:b7:82:12:4b:15:
         8d:be:4b:7b:0c:88:9d:10:e3:1f:ae:20:d1:7d:9e:1a:12:db:
         d3:a3:0c:62:24:2b:38:6a:35:4d:18:23:12:21:98:cc:f2:92:
         84:61:3f:c8:f5:6a:2e:ef:53:a4:4b:79:ba:30:ef:ae:15:f1:
         8e:92:79:ee:45:54:c6:49:71:24:19:d8:e2:b4:92:85:8e:78:
         73:2e:1a:43:8a:56:78:14:89:da:d5:be:1b:72:2a:0e:2f:cf:
         ba:9b:0c:80:a1:93:5f:49:7f:e5:1f:66:a5:38:59:c2:64:14:
         27:33:dc:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----