Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
File:                     A2loTGfKqZ_8AYS-rMrw6oipISk.mft (raw, json)
Hash identifier:          t6mmNfbVr68YzaxiXl1CavXJtgPjQXxXh3FGTWpgJV8=
Subject key identifier:   73:92:B0:8F:63:1D:29:1F:3D:D5:17:A5:04:B6:C0:BE:07:E4:A8:69
Authority key identifier: 03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29
Certificate issuer:       /CN=0369684c67caa99ffc0184beaccaf0ea88a92129
Certificate serial:       0198898DEF6CE641E5E000471BFCEC96B03E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
Manifest number:          08F9
Signing time:             Fri 08 Aug 2025 12:00:37 +0000
Manifest this update:     Fri 08 Aug 2025 12:00:37 +0000
Manifest next update:     Sat 09 Aug 2025 12:00:37 +0000
Files and hashes:         1: A2loTGfKqZ_8AYS-rMrw6oipISk.crl (hash: 7QRTolgon2HJoNkbG/jjHllWnm2hEjejSC82AQVa8t8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 11:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:89:8d:ef:6c:e6:41:e5:e0:00:47:1b:fc:ec:96:b0:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0369684c67caa99ffc0184beaccaf0ea88a92129
        Validity
            Not Before: Aug  8 12:00:37 2025 GMT
            Not After : Aug  9 12:00:37 2025 GMT
        Subject: CN=7392b08f631d291f3dd517a504b6c0be07e4a869
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fb:49:ac:32:1d:9d:d8:3c:36:1e:7d:a4:7f:d8:
                    9f:50:24:2c:f6:eb:dc:24:22:ec:88:8b:9b:04:88:
                    38:fc:70:ad:7f:ac:12:b8:fd:15:9c:dc:01:d9:c7:
                    65:cd:00:95:fe:00:d2:28:e2:9b:34:72:ad:b0:7a:
                    b2:0f:bf:f5:2f:37:df:8e:e8:4d:d1:2f:7c:8c:b7:
                    62:11:ce:8a:3b:c3:6e:45:d4:b3:0a:ab:70:29:d6:
                    40:1d:39:f4:87:eb:0c:86:2e:31:11:7a:11:d7:bb:
                    9f:ca:d5:e8:f3:f3:22:1f:c6:d2:ee:1e:11:cc:a3:
                    ef:e9:b7:10:92:84:2f:7b:5a:6b:56:b7:44:fc:65:
                    a6:3c:68:52:c0:99:7e:5a:d4:37:f6:77:e1:be:ae:
                    04:f8:9a:3c:be:a0:05:41:19:6f:ec:38:f6:87:52:
                    3a:fc:4a:89:f1:1e:d5:b0:ab:01:f7:81:39:7d:96:
                    da:40:5a:17:0c:a9:d4:c0:48:0f:c0:ca:b8:35:4f:
                    4a:f5:32:5a:51:bb:90:0e:ea:8b:54:1a:c8:ee:4b:
                    37:e6:34:7c:95:ae:b8:a1:d8:ca:7f:a9:d8:5f:c2:
                    89:15:f0:a7:13:c2:88:62:09:41:b5:37:2b:48:33:
                    35:ea:24:4f:08:6f:4e:06:c2:b2:83:f8:58:48:18:
                    e8:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:92:B0:8F:63:1D:29:1F:3D:D5:17:A5:04:B6:C0:BE:07:E4:A8:69
            X509v3 Authority Key Identifier:
                keyid:03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:06:f4:72:98:4b:63:ab:a6:32:ed:19:06:d3:dd:db:c8:b4:
         0c:f9:8f:9e:74:2d:b6:4d:a1:c4:87:64:a2:03:26:40:f1:c4:
         77:d3:cc:90:a6:50:b4:78:56:12:68:0e:5f:24:26:89:63:5f:
         e8:d8:53:ee:5e:7e:10:bb:79:e5:f7:86:23:c3:89:c2:d0:dc:
         2d:21:a0:d5:4c:ac:5b:36:68:9b:87:b2:46:b5:6d:49:d8:a2:
         0f:04:48:c1:c9:2a:72:c6:b3:f7:83:d3:8a:cb:c2:6d:5c:6e:
         6b:59:f7:5d:6a:f7:ac:f3:76:76:74:c0:c2:70:7b:19:d7:80:
         57:e1:61:25:9b:45:5e:aa:9e:0d:31:6d:a8:6f:82:6a:b3:81:
         c7:93:84:02:3c:50:e8:2d:cb:f5:0d:93:6f:64:25:72:9d:a1:
         0e:69:6d:6b:91:d1:72:c7:58:35:7a:59:09:04:2e:4e:43:de:
         a6:b8:07:7e:3b:3a:e1:4f:f5:cd:98:2c:93:10:40:ea:05:10:
         d8:61:77:94:ee:d1:cf:36:7e:a6:f7:8f:53:d6:8c:a5:ff:8e:
         b1:24:b6:a2:10:74:61:24:b2:64:8a:f0:38:97:03:b6:9b:54:
         e2:0e:7e:f8:71:d9:3d:2f:da:f4:9d:d9:8c:f7:99:74:84:35:
         43:2e:a5:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----