Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
File:                     vtJXlaaCsRmplIBal2V4U9dUoFw.mft (raw, json)
Hash identifier:          Wjw3iQMqpCF6zqSuyIVFSo7wPiiWuVzdCs5hmesO3Co=
Subject key identifier:   E7:AE:0B:99:58:DC:41:29:9D:16:41:5B:07:E3:18:FC:0C:D1:82:27
Authority key identifier: BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
Certificate issuer:       /CN=bed25795a682b119a994805a97657853d754a05c
Certificate serial:       01987450A35F740B7F61A6866CFFF0F076AC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
Manifest number:          0AA5
Signing time:             Mon 04 Aug 2025 09:01:38 +0000
Manifest this update:     Mon 04 Aug 2025 09:01:38 +0000
Manifest next update:     Tue 05 Aug 2025 09:01:38 +0000
Files and hashes:         1: vtJXlaaCsRmplIBal2V4U9dUoFw.crl (hash: I5gLMoYWZOCgwElYsHipOk1eYRcNvU/r4Z6Xn/Bvv9o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:50:a3:5f:74:0b:7f:61:a6:86:6c:ff:f0:f0:76:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bed25795a682b119a994805a97657853d754a05c
        Validity
            Not Before: Aug  4 09:01:38 2025 GMT
            Not After : Aug  5 09:01:38 2025 GMT
        Subject: CN=e7ae0b9958dc41299d16415b07e318fc0cd18227
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:60:c4:70:9a:20:6a:c4:7c:23:3c:ed:69:76:
                    85:0d:7b:52:4e:e5:d3:8c:39:44:8a:ce:fb:79:0c:
                    86:df:08:27:55:fd:53:c3:1d:66:b2:5c:6b:2d:b4:
                    38:9c:da:63:de:f1:f4:fd:8b:70:83:c6:04:a4:f1:
                    54:8c:b8:8a:6c:41:77:4c:db:c6:4c:dc:6d:44:ff:
                    22:aa:cc:c9:69:38:17:ee:d5:c8:b8:b5:7e:11:f9:
                    5b:e9:a6:a9:5e:7f:3e:c8:17:64:6f:4f:f3:ba:c7:
                    be:d4:1f:fb:65:06:0e:05:cf:3d:0e:d4:15:d0:37:
                    9e:38:19:72:bf:79:e5:2f:a3:55:3a:5a:5a:17:b0:
                    0b:98:1c:9e:f5:01:65:56:93:08:22:4a:ff:ac:5d:
                    6f:63:8a:3c:98:10:d8:35:36:22:5a:00:b4:b3:90:
                    0c:3c:08:89:70:4a:bf:2a:b3:9a:e9:bc:cb:3e:1b:
                    15:9e:cf:91:29:9b:6a:ec:93:d2:55:ac:d3:c1:bb:
                    ed:cb:18:23:dc:f1:91:c8:70:be:7a:61:9c:85:f5:
                    83:3c:1a:74:dd:6e:4d:22:9d:d7:9c:e9:f1:d7:c2:
                    0a:7c:6f:a4:14:fa:08:fd:1f:51:77:d4:a1:1c:10:
                    b2:83:f5:69:1e:e8:25:ad:ee:5a:fb:74:50:c1:c2:
                    f9:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:AE:0B:99:58:DC:41:29:9D:16:41:5B:07:E3:18:FC:0C:D1:82:27
            X509v3 Authority Key Identifier:
                keyid:BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:8e:66:b6:f3:d9:00:ec:be:3c:99:62:b6:18:a4:b2:24:98:
         1a:2c:34:ec:f7:9e:85:41:ea:c2:59:7c:d8:c5:cc:69:b5:cf:
         f4:d4:25:15:0a:e3:e1:2a:b1:1e:db:8b:0c:f0:e5:89:67:f6:
         96:73:1e:7a:0a:68:af:80:b7:0b:c5:89:46:51:4d:38:b3:7b:
         15:f1:34:15:60:e3:a0:70:d8:e9:b1:8e:b3:8b:14:4e:86:61:
         0f:05:33:df:2f:09:03:27:f0:42:93:0d:86:b2:5b:23:7f:29:
         eb:af:8a:cd:0c:62:7b:f0:b6:85:3b:49:2b:0b:f4:fe:be:fb:
         57:ed:d2:72:95:09:3c:4b:a6:e3:c0:1d:f1:5c:1a:68:07:fb:
         90:95:ba:fd:95:3e:3b:eb:d5:5d:00:b6:f4:ef:0d:ab:e6:73:
         f7:61:ba:75:ca:99:3f:68:13:db:06:25:5e:23:c5:31:54:02:
         df:0a:64:6c:ff:f0:37:1c:88:f8:41:29:d0:af:06:de:43:00:
         88:09:de:7a:2d:34:8b:e1:fb:e0:c7:4d:82:6a:7c:6e:c4:c3:
         0d:50:7a:97:aa:d2:50:1a:67:e6:fc:c6:71:4a:d4:b9:13:a8:
         af:59:ee:32:38:b3:ec:b1:f8:90:c3:a7:24:98:07:0b:96:c1:
         2e:59:9f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----