Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
File:                     idSzdf1Mr9XfusQG3SWmHSLdNso.mft (raw, json)
Hash identifier:          zfr9KpMzAYYBl7C2f+ZeWudnYyLYf8WMVGqQJGaT0M8=
Subject key identifier:   7A:4F:74:D4:69:71:33:52:05:3B:29:25:48:29:F5:F8:9C:02:68:5E
Authority key identifier: 89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA
Certificate issuer:       /CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
Certificate serial:       019873E2D4C405E9B5FB4CDEF90439A7BC0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
Manifest number:          1194
Signing time:             Mon 04 Aug 2025 07:01:42 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:42 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:42 +0000
Files and hashes:         1: idSzdf1Mr9XfusQG3SWmHSLdNso.crl (hash: TJD8qfipsUHNDsIBMgV7Z37O87yRz44uxLB0Mf1QmZA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:d4:c4:05:e9:b5:fb:4c:de:f9:04:39:a7:bc:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
        Validity
            Not Before: Aug  4 07:01:42 2025 GMT
            Not After : Aug  5 07:01:42 2025 GMT
        Subject: CN=7a4f74d469713352053b29254829f5f89c02685e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:be:a5:a1:92:4e:10:44:ee:43:94:5d:b3:ae:
                    67:2b:20:2c:cf:ba:82:b8:2c:bc:b4:7e:11:a4:95:
                    e5:2f:b3:a5:52:f2:9e:57:eb:1e:17:94:fd:ca:41:
                    3e:02:22:4f:34:6e:e3:9f:aa:29:19:3d:31:56:b3:
                    4a:f8:02:3e:f7:6c:5b:f8:fd:22:60:ee:79:af:55:
                    5b:74:1b:f7:3c:6f:bc:3e:db:50:3a:cb:27:49:7e:
                    1f:20:9b:e8:8a:ce:5b:ed:f3:34:73:96:13:46:7e:
                    cb:58:ff:c5:4d:0a:d1:f0:9f:43:f7:80:84:d2:3c:
                    59:af:12:1e:e3:64:40:60:7b:3e:39:4d:48:ad:43:
                    c9:68:df:f4:d4:19:0b:72:3c:df:64:6f:96:a5:83:
                    76:89:33:38:c3:a5:ca:80:5d:30:86:15:cd:a6:f6:
                    95:1b:c6:37:3f:dc:88:4f:78:26:35:fe:12:98:cc:
                    1f:0c:ea:24:5d:01:c8:13:eb:49:8a:3a:15:20:9a:
                    66:f9:ba:12:9d:e2:9a:79:d7:ce:4a:7c:6c:4c:cc:
                    05:61:8b:ac:e9:18:ee:b2:e6:9b:93:a3:8c:1e:33:
                    24:92:6c:1e:94:60:da:7d:fa:38:c6:8b:e2:3d:69:
                    e6:29:67:f6:83:2f:5f:31:ed:b8:7c:41:73:77:de:
                    f9:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:4F:74:D4:69:71:33:52:05:3B:29:25:48:29:F5:F8:9C:02:68:5E
            X509v3 Authority Key Identifier:
                keyid:89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:f1:1b:df:7b:70:2c:6c:da:e1:ab:c2:6e:3e:d9:e1:ec:b1:
         02:1c:31:64:f5:d6:29:99:c0:d5:05:e0:97:cc:3c:ec:f0:46:
         9d:53:5a:35:31:a5:7f:fc:98:bc:81:8c:ab:56:eb:dd:9f:33:
         3f:98:79:6c:f7:ab:77:bf:c8:c1:78:6a:ef:8d:12:f9:e2:43:
         67:86:50:45:9b:3a:d9:cd:e1:4d:6a:71:4f:9d:0b:81:a7:2f:
         8c:97:19:10:d0:17:53:7d:06:2b:7e:bf:34:42:98:3d:6d:8d:
         4f:24:54:a7:96:e9:a7:bf:ec:9f:79:2a:5e:32:2c:4f:65:ba:
         91:50:ed:20:b1:3f:81:d4:a9:d1:40:c5:11:d2:83:5e:87:13:
         e9:bc:5f:1d:3c:e2:c3:2b:5a:78:73:a8:b2:22:db:4d:f7:63:
         0a:91:48:5f:de:81:cd:ab:c2:0d:54:22:12:b4:72:85:25:f4:
         72:3d:12:e9:00:c5:46:23:e8:36:89:94:c0:7f:30:96:2f:a9:
         57:19:00:d4:f9:3e:a8:b6:ad:fa:79:e2:e0:94:37:b1:e3:18:
         53:29:5d:d5:cb:fc:29:22:bd:49:38:45:8c:29:ea:9f:4d:5c:
         df:3f:79:3b:07:7c:1d:46:7e:e0:f6:3b:d4:8b:66:a2:74:15:
         46:89:17:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----