Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/0fd013-ab7f-453c-9122-113374c48763/1/CEaS7DDzfffcteR600auvetx_DA.mft
File:                     CEaS7DDzfffcteR600auvetx_DA.mft (raw, json)
Hash identifier:          HQGv5PG21u+AHADG09IBM2/+P+uTwCdzYPCmN2mxgzw=
Subject key identifier:   E1:C4:55:CD:05:DC:93:CB:C1:21:15:93:F5:CB:24:C6:0F:0C:4D:A8
Authority key identifier: 08:46:92:EC:30:F3:7D:F7:DC:B5:E4:7A:D3:46:AE:BD:EB:71:FC:30
Certificate issuer:       /CN=084692ec30f37df7dcb5e47ad346aebdeb71fc30
Certificate serial:       01988B7D72FF3430BEDA3A3B3376E396A62D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CEaS7DDzfffcteR600auvetx_DA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c1/0fd013-ab7f-453c-9122-113374c48763/1/CEaS7DDzfffcteR600auvetx_DA.mft
Manifest number:          161F
Signing time:             Fri 08 Aug 2025 21:01:51 +0000
Manifest this update:     Fri 08 Aug 2025 21:01:51 +0000
Manifest next update:     Sat 09 Aug 2025 21:01:51 +0000
Files and hashes:         1: CEaS7DDzfffcteR600auvetx_DA.crl (hash: 5Nih2sTDAlBLRq7GCV38TTM6SMkPEpgYigPXUJqKz84=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c1/0fd013-ab7f-453c-9122-113374c48763/1/CEaS7DDzfffcteR600auvetx_DA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c1/0fd013-ab7f-453c-9122-113374c48763/1/CEaS7DDzfffcteR600auvetx_DA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CEaS7DDzfffcteR600auvetx_DA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:7d:72:ff:34:30:be:da:3a:3b:33:76:e3:96:a6:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=084692ec30f37df7dcb5e47ad346aebdeb71fc30
        Validity
            Not Before: Aug  8 21:01:51 2025 GMT
            Not After : Aug  9 21:01:51 2025 GMT
        Subject: CN=e1c455cd05dc93cbc1211593f5cb24c60f0c4da8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:be:5b:08:6f:9c:29:39:a0:7c:40:ad:64:cc:
                    d1:5c:47:90:78:9e:f2:3c:00:35:87:50:69:df:10:
                    56:5b:bd:9d:04:4f:6c:a1:14:54:9d:72:31:5e:e1:
                    9e:1f:30:c2:24:58:c5:83:18:63:6a:73:cd:c8:b7:
                    bd:fd:c9:61:92:fc:fe:51:3f:e9:61:9d:55:d0:b1:
                    2d:88:e4:57:38:76:b4:a3:31:8a:54:3e:f8:28:0b:
                    9b:95:9c:9c:63:6e:1c:ee:46:be:ae:ef:cf:cf:19:
                    37:eb:bc:a3:8d:08:26:f7:52:01:23:c9:b6:d0:fd:
                    f6:8c:2a:78:e4:24:aa:b4:6b:51:af:38:f8:af:db:
                    ed:ff:b6:fb:01:1b:d1:dd:4a:44:cd:7e:70:e7:7b:
                    94:e6:2b:6f:ab:21:e7:64:29:6e:d5:9b:1a:48:89:
                    a5:5e:9c:06:0a:17:3c:a0:24:c3:a6:ef:1a:5d:46:
                    9b:dc:41:a3:1b:ce:c6:4e:12:22:ee:0e:4f:41:81:
                    76:10:64:af:d1:23:f2:32:c4:91:7d:c6:b7:56:d6:
                    05:41:85:78:67:71:f3:62:cb:75:c1:a0:e2:3d:3b:
                    5a:b4:c9:d1:08:a9:88:fb:5c:58:48:ec:70:dd:60:
                    23:91:8a:0f:02:1e:35:db:30:97:21:e9:de:38:07:
                    db:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:C4:55:CD:05:DC:93:CB:C1:21:15:93:F5:CB:24:C6:0F:0C:4D:A8
            X509v3 Authority Key Identifier:
                keyid:08:46:92:EC:30:F3:7D:F7:DC:B5:E4:7A:D3:46:AE:BD:EB:71:FC:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEaS7DDzfffcteR600auvetx_DA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/0fd013-ab7f-453c-9122-113374c48763/1/CEaS7DDzfffcteR600auvetx_DA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/0fd013-ab7f-453c-9122-113374c48763/1/CEaS7DDzfffcteR600auvetx_DA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:38:22:5b:34:d2:20:9c:5b:e1:fb:35:c4:fb:ac:0c:22:09:
         c2:55:7e:31:6a:ae:2b:5c:ba:77:b1:5e:25:1d:c3:fd:18:7c:
         43:dc:89:be:44:86:1b:46:c0:ae:73:1b:44:7c:5c:13:95:81:
         7f:f8:94:f1:29:51:85:0b:c0:ea:7b:89:52:80:58:c3:df:2b:
         3b:25:ee:9b:1b:8b:b5:f1:2f:0d:e8:3d:76:ef:51:f1:9e:05:
         28:92:51:12:36:4d:f8:e3:86:fc:b0:26:68:0d:68:2f:fd:00:
         f9:25:58:61:6f:ff:22:30:db:8f:9b:57:c5:81:da:d4:1e:f4:
         92:09:1d:3b:ed:32:30:61:7b:e9:a5:e4:77:d4:dc:da:c1:c3:
         f4:25:0f:c9:d9:0a:e6:a3:7f:03:35:c1:bc:a6:8a:4d:6e:bd:
         da:e3:1a:76:ed:06:95:b7:ae:21:73:46:72:06:85:04:5b:91:
         ef:9f:29:42:24:05:2d:ee:32:c0:cb:4b:35:62:1b:46:21:81:
         45:f4:98:a4:6b:85:46:55:05:3f:02:0d:11:d7:a5:ec:3d:07:
         bb:ef:39:7f:6d:2c:46:a1:e4:8a:be:2b:fe:66:97:06:f5:12:
         85:9e:de:92:f0:aa:c1:8d:5a:b9:c3:3d:6c:d6:b9:e5:d2:56:
         92:b3:96:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----