Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
File:                     d7AlLypnrNQplw-mSmQXd29y2NY.mft (raw, json)
Hash identifier:          tmbyg+GuPQ04GLdy+7EW8F+rdocUhB55KynMKapg/uc=
Subject key identifier:   29:42:20:44:40:45:F2:6D:8E:1C:BE:5B:FF:47:D0:E2:7D:42:0A:6B
Authority key identifier: 77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
Certificate issuer:       /CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Certificate serial:       01987A5254C0B274AEA0F1CD32719533E5F7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
Manifest number:          04F6
Signing time:             Tue 05 Aug 2025 13:01:12 +0000
Manifest this update:     Tue 05 Aug 2025 13:01:12 +0000
Manifest next update:     Wed 06 Aug 2025 13:01:12 +0000
Files and hashes:         1: d7AlLypnrNQplw-mSmQXd29y2NY.crl (hash: WIdMR56CTwAyUizcVLrIpRHl0eITCRfCBNHUKHbLNOA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 13:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7a:52:54:c0:b2:74:ae:a0:f1:cd:32:71:95:33:e5:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77b0252f2a67acd429970fa64a6417776f72d8d6
        Validity
            Not Before: Aug  5 13:01:12 2025 GMT
            Not After : Aug  6 13:01:12 2025 GMT
        Subject: CN=294220444045f26d8e1cbe5bff47d0e27d420a6b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:de:7f:9e:9e:1c:51:7c:36:72:58:64:63:2f:
                    95:fb:54:e0:b0:76:d0:0e:4e:60:55:77:8d:a8:bd:
                    ee:f7:cd:c2:02:a4:2f:a6:62:0d:de:0f:92:80:83:
                    c9:12:a8:a2:ef:32:3f:87:3f:02:0c:a5:1a:0d:d4:
                    48:dc:af:49:2d:eb:81:92:20:dd:cd:34:e1:82:ed:
                    cd:12:8a:3e:70:c2:12:2e:10:da:54:25:79:31:ae:
                    3f:5c:10:9a:8a:22:d0:29:ba:de:79:47:aa:2b:cf:
                    8a:5d:86:89:fa:37:71:b4:b4:d6:e6:ac:26:0f:e0:
                    44:d5:6f:f9:97:0b:57:5c:98:1c:bd:70:10:06:e1:
                    4e:ea:9f:e2:bc:79:fc:35:7a:1f:54:5a:91:96:5c:
                    7e:d4:d8:95:56:f0:a3:54:2a:b8:72:c9:2b:c5:c5:
                    ce:4f:d0:9a:74:d8:37:77:94:95:b1:94:00:60:71:
                    23:90:ae:9f:df:72:3f:d3:94:d4:59:b9:28:0c:ba:
                    83:26:a5:a6:9e:23:0a:ed:4d:3d:1e:e0:c8:70:9d:
                    dd:31:64:35:62:ab:fd:90:d1:67:99:55:58:a2:ec:
                    69:ac:f4:6a:5b:72:89:ec:b3:9e:20:97:0c:2f:16:
                    58:c1:5f:de:69:c6:5c:c5:07:ee:43:2c:89:7c:3a:
                    bf:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:42:20:44:40:45:F2:6D:8E:1C:BE:5B:FF:47:D0:E2:7D:42:0A:6B
            X509v3 Authority Key Identifier:
                keyid:77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:ed:21:c5:51:17:2d:2e:2a:3c:7a:dd:15:de:68:3d:e0:cc:
         12:1d:9b:64:8d:6c:3b:8d:35:e1:e2:b1:89:fe:93:cf:fb:66:
         fa:2c:4b:fc:b8:bb:13:6b:f6:cb:4b:04:bf:01:4d:99:2a:31:
         f4:74:58:54:28:a5:47:db:5b:6f:33:1e:35:81:50:c7:e5:07:
         bd:27:e5:a0:1d:fb:5b:91:84:b1:d9:67:da:ea:df:7f:71:32:
         ab:7b:12:71:be:dc:ea:28:e3:26:27:36:14:e6:c9:70:1c:30:
         92:a4:e4:54:69:29:6c:48:e4:6a:cb:3f:ab:fa:32:22:d2:5b:
         bd:4f:14:c4:5f:bb:bb:fc:e7:ac:67:8f:2e:28:83:f0:10:be:
         1e:af:27:ab:51:65:8a:13:1b:8f:83:a2:64:31:26:0a:1f:6c:
         d2:32:ef:ae:ce:aa:50:83:66:60:e8:9d:98:1f:dc:de:9c:8a:
         18:ac:6f:10:0c:08:8f:3e:2a:4f:a4:81:a7:d8:70:9d:99:1f:
         3e:44:55:76:4d:75:ec:9b:1b:0b:61:8f:21:d2:6d:83:99:93:
         7b:b3:5b:3e:5b:00:6e:8f:a8:12:55:b9:47:90:c9:08:11:91:
         55:b8:14:37:36:21:e3:8d:7e:e5:d5:d5:a5:27:cd:77:ea:8c:
         12:33:1b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----