Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
File:                     mgGl7N4ueVkyWREG0II9DRVPcAI.mft (raw, json)
Hash identifier:          pqZ7h+uopaaQuMhyV3uqEyANYGwY9lo5ddHAiH8EwX0=
Subject key identifier:   48:7F:07:17:03:8D:A3:4C:68:12:56:FF:D5:14:C6:1C:EC:14:05:71
Authority key identifier: 9A:01:A5:EC:DE:2E:79:59:32:59:11:06:D0:82:3D:0D:15:4F:70:02
Certificate issuer:       /CN=9a01a5ecde2e795932591106d0823d0d154f7002
Certificate serial:       019875D16851BB3F005A984577E78739ADC4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
Manifest number:          0744
Signing time:             Mon 04 Aug 2025 16:01:54 +0000
Manifest this update:     Mon 04 Aug 2025 16:01:54 +0000
Manifest next update:     Tue 05 Aug 2025 16:01:54 +0000
Files and hashes:         1: mgGl7N4ueVkyWREG0II9DRVPcAI.crl (hash: uVU0pruRkbEOYBn0lVz0CxUq334sqao8dIQxEAk/AQ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:75:d1:68:51:bb:3f:00:5a:98:45:77:e7:87:39:ad:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9a01a5ecde2e795932591106d0823d0d154f7002
        Validity
            Not Before: Aug  4 16:01:54 2025 GMT
            Not After : Aug  5 16:01:54 2025 GMT
        Subject: CN=487f0717038da34c681256ffd514c61cec140571
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:c4:d5:fb:9f:46:e0:13:bb:ad:ad:de:4b:5c:
                    4a:7c:87:49:53:ab:c8:18:72:b5:5b:0d:56:4a:67:
                    cf:1a:3d:6d:17:88:51:ea:bf:64:2a:9a:a9:78:f4:
                    3c:6f:60:73:66:ce:a7:ff:0c:81:f8:56:d7:4d:24:
                    89:3a:06:f3:b7:55:33:62:4b:f0:c5:e6:1e:34:2d:
                    14:7b:93:28:47:0f:13:bc:98:3f:b8:8f:d5:d2:ef:
                    07:00:14:65:f1:0c:7a:54:de:24:c1:67:ed:e5:02:
                    bd:22:bf:3b:38:1d:3f:6a:28:ad:d4:e2:88:5b:75:
                    4b:f4:92:3f:d4:fa:d6:d0:60:f1:06:a5:6c:d4:6f:
                    0a:00:f0:14:9b:a7:a7:41:4e:96:a4:47:89:71:3f:
                    a7:87:e6:16:e9:66:7f:5c:d2:f6:05:cb:bd:2b:31:
                    49:cb:dc:58:e3:5e:68:45:d9:90:a7:b8:8e:a3:c4:
                    fc:bc:e5:b2:c1:81:7f:4c:31:47:9a:c3:51:52:33:
                    2b:cd:5a:aa:16:1e:91:5d:0e:f0:08:1e:e8:c3:be:
                    2a:be:7f:c8:98:db:49:af:49:59:14:4b:a4:d7:6f:
                    f4:83:c7:8d:4a:eb:9c:a7:e8:10:97:59:c2:9b:05:
                    9f:74:0f:d1:d5:2c:fe:7a:9e:69:e8:27:6b:77:dd:
                    fa:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:7F:07:17:03:8D:A3:4C:68:12:56:FF:D5:14:C6:1C:EC:14:05:71
            X509v3 Authority Key Identifier:
                keyid:9A:01:A5:EC:DE:2E:79:59:32:59:11:06:D0:82:3D:0D:15:4F:70:02

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:c7:54:e1:13:7b:1e:a4:24:ab:bd:ea:20:36:70:19:87:79:
         e7:46:56:bd:72:25:65:71:a6:e4:46:2a:fe:81:8b:75:bd:7a:
         19:7f:51:8a:89:7d:93:2f:b5:7a:1a:b9:15:cc:78:92:97:6a:
         26:01:08:57:1b:23:a6:fc:0b:98:fd:1f:d5:49:d7:7b:03:9c:
         dc:7a:ea:50:f2:a0:32:9c:33:62:06:dc:6a:93:05:9b:89:38:
         06:5f:c3:aa:98:e8:0f:21:72:2c:b7:cd:c9:f1:33:d3:2d:3e:
         39:8e:04:66:f8:bb:6f:3d:30:fe:f3:85:83:df:a9:a0:91:fd:
         59:e9:de:c3:a4:5c:00:64:ae:b8:23:a1:e2:30:f0:34:c7:63:
         c3:3c:19:e9:2e:ce:96:37:80:c0:65:54:92:0e:b4:1a:bf:10:
         40:d7:67:bd:d9:4e:85:cb:b7:71:3c:82:28:af:8c:3e:ea:01:
         2b:4e:d5:14:13:d9:ec:2a:78:43:15:ac:08:90:61:80:f3:ff:
         e1:72:62:ab:de:f4:45:68:26:8c:8f:e0:a2:6c:02:f2:4f:81:
         10:4c:f9:42:22:8a:b7:c5:03:50:a7:96:e6:58:19:c6:45:58:
         23:ff:db:cb:4d:ed:22:d0:35:aa:26:72:4d:20:fa:d7:ca:da:
         82:9c:79:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----