Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
File:                     _hpSVPN9jCkbEd2r7YiwY0gdr2s.mft (raw, json)
Hash identifier:          0j0l/se6p2BCc9l9aSBY4wVaBKCXL2r18/lmyqfnwDs=
Subject key identifier:   29:02:62:67:CC:99:BC:C0:64:24:0D:D0:30:FE:C1:39:78:49:22:27
Authority key identifier: FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B
Certificate issuer:       /CN=fe1a5254f37d8c291b11ddabed88b063481daf6b
Certificate serial:       019879AE7D8B47F3BABFB28291AC985E7E68
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
Manifest number:          1617
Signing time:             Tue 05 Aug 2025 10:02:15 +0000
Manifest this update:     Tue 05 Aug 2025 10:02:15 +0000
Manifest next update:     Wed 06 Aug 2025 10:02:15 +0000
Files and hashes:         1: _hpSVPN9jCkbEd2r7YiwY0gdr2s.crl (hash: Efx7rSOzrpx0TDmauNfdDZWaNdJiKojZoLQJoCDZzvg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 10:02:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:79:ae:7d:8b:47:f3:ba:bf:b2:82:91:ac:98:5e:7e:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fe1a5254f37d8c291b11ddabed88b063481daf6b
        Validity
            Not Before: Aug  5 10:02:15 2025 GMT
            Not After : Aug  6 10:02:15 2025 GMT
        Subject: CN=29026267cc99bcc064240dd030fec13978492227
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:35:07:01:ce:44:7f:a6:36:6b:bb:2a:98:ae:
                    69:05:33:6b:a8:cf:32:ab:86:11:68:6a:4e:02:04:
                    a9:f7:90:89:4d:9b:02:62:cd:bc:0b:8a:f6:3d:ea:
                    01:20:a2:87:c5:c2:73:4d:4f:6f:8f:19:f0:11:2d:
                    1a:9e:f9:93:7e:c1:e2:94:23:5f:ab:25:28:1b:38:
                    5f:93:00:4a:ad:a3:58:a5:dc:ec:2a:74:26:3b:be:
                    18:e8:82:1f:88:88:5f:f2:62:91:73:e5:72:47:b4:
                    8f:98:79:34:81:a1:2d:ba:c6:fc:6e:5a:b6:ad:1a:
                    21:c9:d6:c5:46:f8:a4:86:75:c9:46:64:49:a2:be:
                    a1:3a:5a:09:26:1d:2f:6b:61:e5:cd:41:ee:ce:e5:
                    ac:a6:4e:36:8b:60:dc:2d:38:d0:a6:a0:ec:8c:b3:
                    b3:ae:e9:cc:66:8e:c9:b3:03:36:d2:c9:9a:44:a8:
                    22:8b:4a:b7:c8:9c:0d:df:94:68:9f:de:b3:36:33:
                    2f:c7:55:b5:fa:84:a7:b9:17:27:e3:31:e8:3c:9b:
                    d0:08:ad:87:2e:b7:46:a4:7b:e2:b3:b0:cf:73:9d:
                    86:45:f0:a9:96:82:a2:43:53:ad:18:42:f6:b9:26:
                    4d:00:1a:fb:ce:69:c8:4f:d3:f7:11:1d:c2:1e:e2:
                    b5:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:02:62:67:CC:99:BC:C0:64:24:0D:D0:30:FE:C1:39:78:49:22:27
            X509v3 Authority Key Identifier:
                keyid:FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:b4:f6:c5:d5:29:d4:d6:44:ce:b1:94:83:68:8f:c9:49:d6:
         de:55:87:7d:0d:1e:bc:37:1b:2d:ff:0d:b1:c2:cd:17:96:10:
         06:57:93:9a:6b:9f:62:78:7f:08:35:18:72:6d:bb:93:bc:3e:
         47:44:80:07:56:b4:21:1c:36:5a:a3:e5:23:dd:a8:b8:91:56:
         73:d8:d4:40:57:1a:51:ad:57:b0:49:74:ad:1b:cc:db:ec:b1:
         93:47:64:f2:35:89:81:52:8f:57:7a:44:31:38:6d:d5:88:0f:
         e8:d2:5c:18:c1:28:65:ba:2a:af:9b:d0:e8:9f:08:b5:fb:f9:
         dc:68:73:2d:85:e5:ce:9c:62:8c:40:d5:68:58:7a:ae:62:f3:
         74:07:ca:c6:de:55:04:c0:7b:57:67:0f:51:ef:6d:6c:92:8b:
         b8:77:ff:72:bb:75:8f:e8:c5:40:83:d8:66:8f:a1:b4:eb:90:
         2d:38:4b:63:e0:fc:09:17:ff:c7:a7:a8:bc:db:d1:c7:3d:ee:
         78:3e:fa:06:0f:0a:d7:88:c4:a7:0e:e1:ec:50:57:6d:28:28:
         4d:9b:8f:5e:64:d9:17:7c:0d:a8:b9:a3:d4:81:4a:14:47:11:
         06:99:72:ec:87:4c:c2:1b:78:13:0c:11:21:f9:a5:c7:32:e8:
         40:cd:40:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----