Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft
File:                     skFYMFfyBWPJOCuJTx_OrKVfvaM.mft (raw, json)
Hash identifier:          mi3QqLxrSRKxrhylAxNJkgd9T7uUc6n3k7mfiUeWBdI=
Subject key identifier:   94:13:DF:3E:9D:BA:4B:A3:42:00:43:E1:E4:B8:A4:1E:D2:B6:73:41
Authority key identifier: B2:41:58:30:57:F2:05:63:C9:38:2B:89:4F:1F:CE:AC:A5:5F:BD:A3
Certificate issuer:       /CN=b241583057f20563c9382b894f1fceaca55fbda3
Certificate serial:       01988C57EC0ADC3A81E8264C23D827B75376
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/skFYMFfyBWPJOCuJTx_OrKVfvaM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft
Manifest number:          1620
Signing time:             Sat 09 Aug 2025 01:00:28 +0000
Manifest this update:     Sat 09 Aug 2025 01:00:28 +0000
Manifest next update:     Sun 10 Aug 2025 01:00:28 +0000
Files and hashes:         1: skFYMFfyBWPJOCuJTx_OrKVfvaM.crl (hash: /AkkArUu6SUI0tQXDeyquLisUoyl/9y4J5dUc6KEAmw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/skFYMFfyBWPJOCuJTx_OrKVfvaM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8c:57:ec:0a:dc:3a:81:e8:26:4c:23:d8:27:b7:53:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b241583057f20563c9382b894f1fceaca55fbda3
        Validity
            Not Before: Aug  9 01:00:28 2025 GMT
            Not After : Aug 10 01:00:28 2025 GMT
        Subject: CN=9413df3e9dba4ba3420043e1e4b8a41ed2b67341
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:4c:29:3a:0c:ef:0e:ad:89:4a:20:55:cc:32:
                    0c:18:6b:c1:34:35:35:40:77:d2:e5:9a:38:f6:c2:
                    07:0f:fe:83:70:2c:3b:41:ea:9e:6c:3c:eb:f6:fe:
                    3c:47:4f:a2:82:c5:1a:44:a3:c3:cf:d0:d0:b0:af:
                    00:f4:eb:d4:43:38:4b:0b:c0:3b:3e:64:80:35:82:
                    b5:4f:c6:2a:63:8e:cc:ca:48:fa:97:69:85:ad:41:
                    ac:29:1a:2c:74:f0:e5:a4:8f:9b:b1:89:c9:77:9b:
                    c7:76:2b:04:51:21:f4:6d:7d:fc:11:17:e6:07:2e:
                    18:a3:ed:21:9f:60:d9:0b:b4:c6:3b:f1:a1:f7:79:
                    8a:d5:48:74:40:9a:c1:a7:e4:8f:19:f9:ae:3d:6a:
                    ef:02:8c:3e:8c:f5:b3:52:8a:a5:70:c2:18:dd:5d:
                    1a:3b:15:b2:01:6c:01:4e:8c:07:b8:dc:2f:60:14:
                    08:59:aa:fc:47:4e:55:c0:8f:c1:a5:75:13:45:91:
                    64:55:02:39:f8:6c:95:e8:31:7c:73:70:7e:b9:4b:
                    a5:e5:0c:00:fc:d2:45:51:3a:f3:c4:b4:56:5e:4a:
                    46:95:fd:01:48:48:b0:23:11:00:5a:b5:7d:fc:e6:
                    d2:0a:3d:73:0d:4f:f9:16:de:78:11:d5:63:0a:c9:
                    1b:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:13:DF:3E:9D:BA:4B:A3:42:00:43:E1:E4:B8:A4:1E:D2:B6:73:41
            X509v3 Authority Key Identifier:
                keyid:B2:41:58:30:57:F2:05:63:C9:38:2B:89:4F:1F:CE:AC:A5:5F:BD:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skFYMFfyBWPJOCuJTx_OrKVfvaM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:b4:4d:0c:1d:36:f0:36:98:f5:f7:69:ec:c6:bb:b0:fc:c4:
         18:f9:26:ba:5c:b0:97:0d:d4:ee:0a:41:4b:19:6f:f5:88:74:
         47:57:bf:d4:0e:79:39:d5:4c:72:1f:ef:b1:68:16:2f:9c:96:
         1f:32:b4:41:f1:52:71:ec:0f:77:b0:1a:9e:69:c5:8b:a6:62:
         1e:fd:63:fe:a2:12:f1:14:a6:aa:07:ef:a4:de:2c:f3:fd:59:
         f3:90:2d:c8:3c:4d:26:fc:d2:e2:2b:16:b6:36:cd:1d:34:fa:
         d2:6c:2b:d3:36:c7:23:a6:d1:4b:85:0d:21:49:88:6b:1f:07:
         d3:13:fb:55:52:a7:93:9e:f9:97:7e:be:c6:ac:65:e6:f3:e6:
         25:85:6d:c2:3d:86:67:2b:7f:10:c5:39:98:10:a2:2b:c0:27:
         af:c9:aa:78:8e:2d:87:dd:5a:31:75:76:0b:35:cb:be:b7:47:
         10:f4:f3:e4:39:ed:5d:a7:87:46:ba:ef:d1:14:ac:bd:63:d1:
         0c:50:23:68:14:89:01:f7:d3:63:6c:66:88:40:bd:ec:34:f0:
         60:45:e7:f9:2b:90:b0:07:60:46:ea:c7:59:a5:6c:ae:96:8a:
         4e:fa:9e:4b:89:2d:69:39:38:e2:2e:2a:32:03:de:5d:4c:8f:
         16:de:08:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----