Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
File:                     yVcXmb2ok6GGC0phbFYnivXsksU.mft (raw, json)
Hash identifier:          AfoGymY+eeAdHlI4pIe22k1E8EKuprwCokP4rfAGqxE=
Subject key identifier:   C9:45:5F:52:98:7A:57:DA:87:79:AC:B5:64:F7:4F:64:F8:6D:00:7A
Authority key identifier: C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5
Certificate issuer:       /CN=c9571799bda893a1860b4a616c56278af5ec92c5
Certificate serial:       01988A6A3461961F29740BD1913A43995B10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
Manifest number:          0B27
Signing time:             Fri 08 Aug 2025 16:01:12 +0000
Manifest this update:     Fri 08 Aug 2025 16:01:12 +0000
Manifest next update:     Sat 09 Aug 2025 16:01:12 +0000
Files and hashes:         1: yVcXmb2ok6GGC0phbFYnivXsksU.crl (hash: 7GY4qNC5D0Dw2y/ZLLI31u7gbJoPblwQSSvT7myjv60=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 16:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8a:6a:34:61:96:1f:29:74:0b:d1:91:3a:43:99:5b:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c9571799bda893a1860b4a616c56278af5ec92c5
        Validity
            Not Before: Aug  8 16:01:12 2025 GMT
            Not After : Aug  9 16:01:12 2025 GMT
        Subject: CN=c9455f52987a57da8779acb564f74f64f86d007a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:34:cd:51:4e:8f:86:7e:ef:88:e2:98:1f:68:
                    fb:f4:7b:52:f0:88:d0:e7:46:55:cd:2d:78:1e:a9:
                    46:de:52:b4:49:d6:84:b2:f1:4e:d7:11:d6:d3:87:
                    dd:57:84:7b:79:07:61:c4:f4:ff:cb:6d:a0:9a:26:
                    60:34:98:e2:d6:e2:39:8b:fe:c7:01:1a:b7:ca:4d:
                    06:5f:0a:48:a6:38:02:b5:21:90:78:5c:85:98:46:
                    8e:ea:09:54:31:58:12:a7:69:ef:95:c7:20:d3:79:
                    9c:9e:86:eb:82:67:2d:9e:ac:e3:49:29:c0:aa:fc:
                    54:8e:e9:34:12:d2:b2:5e:8a:c7:2f:02:cc:14:15:
                    f4:d4:c6:9c:65:20:8c:f5:f5:e2:9c:be:3c:e9:90:
                    3e:01:58:7f:21:70:c3:49:d5:59:cf:97:af:9e:3c:
                    17:0e:83:ff:bf:5a:78:ec:92:0c:bd:88:5a:98:69:
                    6c:bc:73:63:d5:c1:88:ff:b2:57:10:65:27:19:7f:
                    e0:6e:d7:26:ad:d0:8a:a0:99:e7:ba:ae:d6:67:62:
                    62:6e:80:4a:c4:5a:b3:0d:9b:e4:90:eb:a6:f6:1f:
                    bb:ad:46:0a:e7:74:d9:61:87:7d:27:2c:a4:c6:91:
                    6c:17:52:1d:14:9d:ed:b0:0a:c1:16:51:d9:8e:d0:
                    e5:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:45:5F:52:98:7A:57:DA:87:79:AC:B5:64:F7:4F:64:F8:6D:00:7A
            X509v3 Authority Key Identifier:
                keyid:C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:b4:a2:d4:47:f4:e0:1a:9f:db:c9:3b:41:8c:8d:85:8c:64:
         20:de:d8:73:c7:83:d5:ba:b0:0c:ba:ff:9a:e3:4f:6a:17:0b:
         52:5b:78:8a:77:19:d9:d0:cc:da:41:07:08:9e:c5:c4:93:2f:
         60:87:76:f5:e9:5e:52:86:a0:1e:f9:cc:38:b0:b7:c9:0b:29:
         bd:78:fb:13:2f:86:e0:91:d5:ed:f3:ce:b9:b2:ae:ac:81:9c:
         e4:fb:78:f5:35:9e:74:01:21:9b:94:ba:dd:40:38:0b:31:66:
         ea:52:f8:76:f8:c9:77:bd:3a:40:eb:b6:0e:d5:c3:37:13:91:
         25:e2:07:71:ce:59:de:af:fe:e1:2b:50:3f:ee:3d:32:34:ae:
         b7:6c:d7:71:d9:e8:39:c3:b7:4a:ee:5a:93:93:c7:22:7e:9f:
         29:69:f3:a5:38:e6:2d:35:be:20:3e:b2:a2:73:47:d8:24:f1:
         28:b9:2c:d6:38:0b:7d:8a:ae:fd:55:93:be:34:1c:c7:ad:f3:
         e9:4c:62:57:bb:fb:c6:c0:a0:23:2e:70:2c:e3:27:b6:eb:c3:
         61:3f:5d:be:51:cb:5f:37:a4:99:af:49:13:c7:c0:16:10:8b:
         98:83:ed:e8:97:09:46:23:c7:99:ee:34:a9:21:87:71:73:c9:
         ca:cb:e2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----