Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft
File:                     UDCmlphoVt51uCLWrpX-ATE4IK8.mft (raw, json)
Hash identifier:          Q+BtDyfbh06dqPz6hFboTVOtU/+P/z83G70sZS1qnN8=
Subject key identifier:   E6:08:8E:5E:9B:A9:73:44:66:F6:2C:FF:BF:F8:85:A7:D8:C5:05:C4
Authority key identifier: 50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF
Certificate issuer:       /CN=5030a696986856de75b822d6ae95fe01313820af
Certificate serial:       01988C58BEAEA855227EF84D5811356AC736
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft
Manifest number:          101C
Signing time:             Sat 09 Aug 2025 01:01:22 +0000
Manifest this update:     Sat 09 Aug 2025 01:01:22 +0000
Manifest next update:     Sun 10 Aug 2025 01:01:22 +0000
Files and hashes:         1: UDCmlphoVt51uCLWrpX-ATE4IK8.crl (hash: Qe6UC0AL5W5jatfyMlxN+sMomx39zynD2ml4JHhqTAc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 01:01:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8c:58:be:ae:a8:55:22:7e:f8:4d:58:11:35:6a:c7:36
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5030a696986856de75b822d6ae95fe01313820af
        Validity
            Not Before: Aug  9 01:01:22 2025 GMT
            Not After : Aug 10 01:01:22 2025 GMT
        Subject: CN=e6088e5e9ba9734466f62cffbff885a7d8c505c4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:05:c5:4c:8e:b9:04:1f:d3:1b:a1:01:1e:19:
                    00:d0:05:fc:b0:78:d0:08:8b:72:12:7d:b8:1a:78:
                    86:52:2a:11:26:2d:e9:0f:17:9b:45:0f:ed:2b:2f:
                    27:c1:2f:35:83:3e:75:56:7a:99:0e:02:d5:72:5f:
                    2a:1d:34:2a:fe:1c:9b:dc:05:b4:ad:d8:4d:05:f3:
                    58:44:7b:31:d4:f8:2f:43:2d:56:f2:62:19:7d:00:
                    77:9b:3e:2a:0b:80:b4:1e:39:24:cd:e0:10:68:c3:
                    5a:ee:5f:df:b2:b7:93:42:e0:5c:c6:af:77:7b:2f:
                    ca:01:80:3e:97:6d:7c:fd:fc:47:00:0b:00:1a:9d:
                    bf:8a:f5:7d:4e:76:25:e5:a9:e0:f3:0d:11:a8:fc:
                    ef:88:fb:ed:1a:21:8a:0c:35:e1:29:40:8c:13:ee:
                    4c:7b:bd:ec:37:8a:bd:34:9f:3e:67:bc:72:28:25:
                    7c:93:55:b0:82:dd:d6:dc:da:e9:91:1f:93:b3:85:
                    8f:5b:74:17:83:96:77:ba:13:c5:f9:4d:ed:a5:b3:
                    2a:cd:e7:4f:64:90:68:70:3c:35:85:52:ef:98:72:
                    b7:a1:e6:68:f1:32:94:44:e0:13:da:37:49:5d:d9:
                    df:5d:0f:93:bb:7e:fd:d3:05:67:90:bc:d3:da:c6:
                    27:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:08:8E:5E:9B:A9:73:44:66:F6:2C:FF:BF:F8:85:A7:D8:C5:05:C4
            X509v3 Authority Key Identifier:
                keyid:50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:b0:2d:84:72:62:c9:47:a1:b4:13:03:43:55:ce:59:83:9c:
         06:0c:88:44:28:a1:9c:26:b1:39:58:de:db:1d:95:56:9e:4b:
         d3:22:4e:d6:d3:08:d7:37:c0:74:79:16:5e:12:65:11:80:22:
         75:c4:15:74:ff:b7:10:a8:b7:26:44:40:78:58:b5:cd:a1:91:
         1c:bd:52:40:7c:9c:ed:a7:a9:43:e0:85:5d:22:ce:76:23:75:
         7f:98:2b:d3:29:ae:18:33:36:7b:88:4b:4f:61:04:a9:e8:3b:
         84:c7:f4:33:46:28:50:b3:18:1c:6d:3a:ad:71:09:87:07:66:
         21:df:64:d3:e7:c2:90:8f:1e:ce:ae:50:61:f5:54:17:78:24:
         62:35:b1:18:19:38:2e:61:81:5d:3f:86:e8:19:61:d4:27:2b:
         11:05:a1:17:cf:98:12:c1:12:3f:cf:66:28:c3:af:c7:29:89:
         43:f0:ae:ae:6b:ee:8c:13:4b:d6:f6:37:09:06:e5:a6:15:34:
         45:4e:2b:76:78:40:10:e5:72:88:2b:a4:e9:65:5d:a4:2a:97:
         4c:08:26:db:a2:db:22:ea:29:7c:ca:2b:2e:6c:93:95:64:6c:
         8f:21:ed:84:96:70:75:77:46:f2:00:d1:15:99:77:e3:60:51:
         f3:b3:76:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----