Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
File:                     T5mJlOtWGejymrO956sq0U6r_P0.mft (raw, json)
Hash identifier:          Ixe/REZGanckBySsWJLYSSj7Y4/ojM/8bM9q/u3T2HU=
Subject key identifier:   0D:C8:09:D3:6C:26:00:A8:1A:F8:40:BC:FF:06:B9:A0:BE:57:C6:4C
Authority key identifier: 4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
Certificate issuer:       /CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Certificate serial:       01989412548D95B96CED39BBDC72E361117D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
Manifest number:          1623
Signing time:             Sun 10 Aug 2025 13:01:25 +0000
Manifest this update:     Sun 10 Aug 2025 13:01:25 +0000
Manifest next update:     Mon 11 Aug 2025 13:01:25 +0000
Files and hashes:         1: T5mJlOtWGejymrO956sq0U6r_P0.crl (hash: PY633JkjmSLJ2lSBxkBvBHGz4DqWXJ75/Ma0H88fDVA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 13:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:94:12:54:8d:95:b9:6c:ed:39:bb:dc:72:e3:61:11:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
        Validity
            Not Before: Aug 10 13:01:25 2025 GMT
            Not After : Aug 11 13:01:25 2025 GMT
        Subject: CN=0dc809d36c2600a81af840bcff06b9a0be57c64c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:f8:1e:4f:4f:6e:17:4e:bc:d5:0c:c3:a9:2c:
                    96:3a:df:57:06:86:0b:df:22:ec:54:79:59:bf:5d:
                    83:94:80:c7:c6:56:29:6d:1d:bf:45:42:20:de:9b:
                    c4:05:ae:73:cc:99:32:c8:b3:d1:34:4e:38:1d:86:
                    2b:0a:e9:48:ac:eb:f1:33:38:de:ba:84:49:c5:a5:
                    6a:52:56:9f:2c:57:e8:60:db:d8:df:d6:c6:17:87:
                    0e:99:1b:91:d7:ff:cb:58:33:51:9f:36:84:8b:97:
                    b7:5a:0d:58:9a:b0:7f:12:a7:73:95:af:d2:4e:fa:
                    d2:eb:ef:aa:ab:65:0e:79:1e:97:4d:74:29:c3:19:
                    c1:89:be:51:ad:e3:72:c2:42:1d:80:02:35:1d:92:
                    27:ce:d3:2c:45:e5:17:7d:78:31:1e:8f:7f:b0:40:
                    c1:7b:2b:a3:de:45:52:b5:b0:61:69:1c:6d:4d:47:
                    fd:c1:ed:21:78:ca:be:df:83:89:cb:d7:08:20:80:
                    80:ca:f1:59:fb:ef:0a:6e:17:b1:cb:7a:b5:64:b0:
                    90:c1:8c:ae:ca:b9:9d:70:42:c3:99:3a:0e:5c:79:
                    9e:d1:37:56:eb:16:62:ae:a9:35:26:79:66:cd:43:
                    94:a9:5d:b3:ac:ef:6b:17:e2:8f:a4:ea:05:73:5b:
                    41:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:C8:09:D3:6C:26:00:A8:1A:F8:40:BC:FF:06:B9:A0:BE:57:C6:4C
            X509v3 Authority Key Identifier:
                keyid:4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:6c:49:54:8c:ed:72:21:7e:20:0b:34:96:4d:30:ec:79:91:
         d4:ab:46:e1:af:34:ea:ae:a5:24:b7:11:55:fd:dc:13:54:e0:
         d6:3f:30:5a:24:be:be:42:6f:1c:e8:3d:f4:06:e5:eb:78:20:
         df:6c:8a:9d:7c:50:af:04:86:e8:55:77:a0:4e:ab:a4:b0:12:
         5a:4a:c5:ae:b0:5b:ca:17:13:3d:47:1e:ee:23:fc:8c:f1:1f:
         75:8d:f6:fc:dd:56:21:28:5b:79:bd:7e:1d:2c:9b:c6:6a:77:
         08:db:d3:69:e6:a1:74:18:52:31:c2:03:17:19:03:16:06:aa:
         55:6e:a7:71:ef:90:e4:72:36:4f:ab:e2:ef:76:14:4b:33:c3:
         f8:d0:2a:81:23:ad:98:84:5a:01:b9:be:b4:6f:99:62:c1:74:
         a3:a2:00:a9:77:b5:85:d2:6a:e0:82:e0:24:75:f1:47:7a:a3:
         50:48:3f:b6:b0:12:b8:bd:b9:6d:a5:30:15:ab:ea:df:4f:7c:
         35:93:d0:69:7a:e0:ce:de:d2:c4:9c:0a:d9:d1:06:4b:dd:d8:
         43:63:a8:44:b2:ab:e6:3c:07:64:73:e9:6e:a6:ec:9f:f3:89:
         d1:ef:44:ae:b0:97:bf:64:c6:e4:b4:ac:82:31:29:d4:aa:08:
         07:48:3f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----