Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
File:                     o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft (raw, json)
Hash identifier:          queaxbV5OwqwA8gHZJutT4SEpHDnnf594tzgdS0U7wM=
Subject key identifier:   88:DB:46:44:9B:9F:60:53:DD:CD:01:AA:81:AD:03:37:CE:5D:07:C2
Authority key identifier: A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64
Certificate issuer:       /CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864
Certificate serial:       0198A04E9E9699902A2A8B7BEC785200A732
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
Manifest number:          162B
Signing time:             Tue 12 Aug 2025 22:02:43 +0000
Manifest this update:     Tue 12 Aug 2025 22:02:43 +0000
Manifest next update:     Wed 13 Aug 2025 22:02:43 +0000
Files and hashes:         1: o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl (hash: ku6et/4qp8uj54Q4bw4B17SNS/82vlJa2I70trYH/SE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:4e:9e:96:99:90:2a:2a:8b:7b:ec:78:52:00:a7:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864
        Validity
            Not Before: Aug 12 22:02:43 2025 GMT
            Not After : Aug 13 22:02:43 2025 GMT
        Subject: CN=88db46449b9f6053ddcd01aa81ad0337ce5d07c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:d3:37:ac:29:d3:c7:20:51:20:4b:e8:6b:3e:
                    dc:16:31:b3:66:1d:d9:d5:75:f7:80:b0:f6:2c:15:
                    a6:ee:7f:b6:6e:3f:e3:20:67:60:77:43:02:1b:89:
                    8a:68:c9:5d:d5:44:b6:be:fc:1b:d0:36:ae:c9:a2:
                    6c:35:b0:35:69:49:f0:92:1b:7a:90:d6:4a:d1:b7:
                    7e:b8:6b:30:41:30:7e:26:a7:94:48:bd:f3:cd:c9:
                    c6:41:b4:d9:a0:14:f6:91:68:9f:d8:e0:04:48:20:
                    28:91:dc:99:68:48:d4:33:03:9b:25:62:84:4a:ff:
                    80:9e:dc:b0:34:0c:b1:27:9e:67:c2:ca:4c:bb:b4:
                    c6:72:97:b2:64:cd:60:83:3f:49:88:ab:43:84:ce:
                    e7:ff:bc:9e:2a:6f:a5:5b:30:60:14:d9:57:1a:f2:
                    8a:4b:5c:49:6a:43:9f:95:78:28:95:81:b0:c8:50:
                    1b:75:7f:f3:5b:91:2c:a8:f8:47:11:ad:b4:38:07:
                    c8:c4:95:d3:e3:dc:c9:25:96:03:a2:dc:10:61:ed:
                    bd:44:c7:72:d2:36:6e:19:ae:9b:46:b5:fa:72:bd:
                    07:9b:dc:15:53:ea:96:93:11:59:35:f5:b5:5b:10:
                    b9:1e:af:82:98:fc:38:c0:30:e1:29:06:0c:25:14:
                    1f:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:DB:46:44:9B:9F:60:53:DD:CD:01:AA:81:AD:03:37:CE:5D:07:C2
            X509v3 Authority Key Identifier:
                keyid:A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:c1:45:e6:2d:51:36:ec:34:5e:7d:a8:4c:04:47:6a:5d:6b:
         62:b6:9e:66:5c:6a:8d:aa:23:fc:78:55:84:22:3b:2c:a9:99:
         35:d8:5f:f6:09:64:86:ab:e4:f4:33:23:ea:fe:97:85:bd:05:
         87:39:7a:ad:73:04:15:10:56:8f:a5:a3:1f:39:8a:84:b4:cf:
         09:63:73:26:c4:69:72:9c:50:04:05:c7:6c:13:9d:53:f2:22:
         35:a3:c2:ca:20:32:fc:26:2e:e0:b9:c0:b6:17:e6:23:a3:9d:
         fc:16:eb:39:75:16:91:f3:25:a5:bb:d5:1e:fc:af:67:e1:f3:
         59:93:4d:8c:26:86:51:b0:86:57:f2:37:ed:5a:d9:bb:43:3d:
         09:ad:da:df:06:3b:84:e6:8f:23:e7:18:a3:b1:82:04:57:5a:
         94:a0:9b:47:cf:a3:b8:cd:5b:40:ba:ba:af:00:02:21:c8:af:
         73:1a:7e:68:fa:68:f8:d4:d6:40:ae:69:d9:66:6a:75:7c:26:
         5b:74:d4:65:94:58:b5:a4:d8:45:e3:c1:b7:7e:61:c7:37:e9:
         26:19:50:60:03:8d:f4:46:55:e8:f5:1c:f1:3e:7f:b1:b7:12:
         58:cb:a1:86:c1:8e:85:b6:0b:54:13:fa:0e:b2:63:d1:42:d0:
         c9:73:2b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----