Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
File:                     gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json)
Hash identifier:          OJb4YzisXDzG6JU6SYPuOqfta+RbITfg1kP7kMaCTWA=
Subject key identifier:   61:10:17:89:D8:CB:C1:0D:D4:54:F8:EF:AA:01:3F:CE:D7:7C:08:9F
Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66
Certificate issuer:       /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
Certificate serial:       019875D19B01F928443E9C0A49F34B631B1A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
Manifest number:          1615
Signing time:             Mon 04 Aug 2025 16:02:07 +0000
Manifest this update:     Mon 04 Aug 2025 16:02:07 +0000
Manifest next update:     Tue 05 Aug 2025 16:02:07 +0000
Files and hashes:         1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: FuxXrkGGsUK5cTBab5UlFUwRC44VJwnVSr/1GN3Fefw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:75:d1:9b:01:f9:28:44:3e:9c:0a:49:f3:4b:63:1b:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
        Validity
            Not Before: Aug  4 16:02:07 2025 GMT
            Not After : Aug  5 16:02:07 2025 GMT
        Subject: CN=61101789d8cbc10dd454f8efaa013fced77c089f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:70:6b:e7:da:a7:df:9c:b2:71:fd:90:79:e5:
                    32:2e:52:92:5d:16:57:e4:75:de:77:ed:cd:62:13:
                    bd:f7:d6:66:1e:74:f4:04:3c:94:58:f1:4b:19:88:
                    0e:23:d6:99:7d:02:41:34:97:1b:f6:75:0f:cb:5e:
                    b4:3c:57:28:b7:20:f6:f3:9c:6f:f6:5d:c4:f9:21:
                    b9:79:8c:36:7d:06:09:6e:54:18:80:e6:69:15:d0:
                    6c:65:2d:b6:7c:89:94:ad:1c:0d:0f:95:30:cd:bf:
                    bc:32:b2:3d:a5:f6:6f:e7:70:fb:ec:7c:89:19:f4:
                    ff:a7:81:ec:93:80:14:fe:98:8b:d8:1d:b4:0f:d3:
                    59:bd:2f:93:85:f0:c6:d8:b0:4e:15:b1:67:6e:fb:
                    69:a0:fa:f0:7e:13:ab:11:aa:bf:87:11:b8:7b:a0:
                    9d:87:44:28:92:f6:9a:98:17:5f:3d:31:4a:f6:e5:
                    79:05:52:43:9d:41:dc:f0:02:f4:73:3d:7c:68:49:
                    84:ff:f1:d4:8a:a7:87:c7:d6:59:3e:5a:bd:99:e5:
                    74:25:04:31:7b:bb:9b:0e:e0:99:f0:01:45:48:f4:
                    09:55:17:8c:ab:58:22:30:e5:74:31:e9:82:b1:c8:
                    5f:44:16:c5:f8:2c:d6:18:74:f0:fc:63:ac:7e:f3:
                    70:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:10:17:89:D8:CB:C1:0D:D4:54:F8:EF:AA:01:3F:CE:D7:7C:08:9F
            X509v3 Authority Key Identifier:
                keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:be:09:56:70:fd:4e:62:97:5a:94:35:9e:f0:2d:87:10:47:
         1c:38:9f:52:0b:62:3d:dc:e8:91:f9:16:ef:75:56:b5:71:da:
         b1:e3:43:d4:d5:0e:60:3d:b9:bd:7f:84:23:24:f6:72:ae:2e:
         49:a1:9b:17:cc:38:71:ee:91:a8:53:39:89:4b:23:1f:f1:42:
         69:b5:d6:eb:ed:6f:14:22:2e:24:5b:9a:01:23:9b:7f:c6:30:
         a3:a0:b5:75:ae:7e:88:77:d1:21:37:4b:f0:21:81:3e:09:a5:
         e0:7e:f3:17:f6:8a:da:7d:fa:44:f1:9e:89:92:b0:ab:85:6f:
         54:b9:ce:dd:79:56:25:de:01:ed:f8:98:a8:c5:8c:02:f3:ad:
         86:40:99:31:ff:eb:ce:2a:ff:16:d9:3c:92:e7:cf:b9:35:32:
         ab:48:af:19:2a:88:17:37:34:ce:e9:54:be:d3:8b:57:f4:ab:
         bd:08:8d:f9:6a:a0:aa:60:60:e6:45:b2:fe:9b:d0:58:e3:dc:
         61:89:0e:5f:a8:b6:da:89:cc:96:6b:6e:3c:cf:11:8c:7d:99:
         21:90:aa:eb:90:40:31:3b:8c:8c:4a:d6:c1:cd:5c:34:a1:4a:
         02:0b:3a:87:4b:c7:13:6b:dd:ae:f8:ec:52:3c:30:96:b1:25:
         3e:01:77:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----