Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
File:                     ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft (raw, json)
Hash identifier:          olYR3dSkLdeGsMVRxbjADdAX/pfOldI1T7SdvQZHC/E=
Subject key identifier:   9B:75:06:09:B0:45:F2:A6:EA:9D:C8:59:87:0E:81:4D:8C:0C:EC:BA
Authority key identifier: 64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9
Certificate issuer:       /CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
Certificate serial:       019896A56747D95876169DD183B73BCE342E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
Manifest number:          15B7
Signing time:             Mon 11 Aug 2025 01:01:18 +0000
Manifest this update:     Mon 11 Aug 2025 01:01:18 +0000
Manifest next update:     Tue 12 Aug 2025 01:01:18 +0000
Files and hashes:         1: ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl (hash: i5bm223gopZ/tZZ9aees7UuTPDG91guJrv4RozKXwLs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 12 Aug 2025 01:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:96:a5:67:47:d9:58:76:16:9d:d1:83:b7:3b:ce:34:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
        Validity
            Not Before: Aug 11 01:01:18 2025 GMT
            Not After : Aug 12 01:01:18 2025 GMT
        Subject: CN=9b750609b045f2a6ea9dc859870e814d8c0cecba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:bf:29:fe:39:e1:f8:25:e8:cb:94:14:61:10:
                    59:ac:c7:1b:9f:ca:4e:30:e7:a7:fd:50:36:25:db:
                    59:96:84:a5:08:82:57:2b:22:5f:aa:f5:90:04:0d:
                    19:77:a7:9c:f6:ba:5c:73:ae:0d:10:ed:95:0c:08:
                    5b:0a:c0:75:f8:13:e4:6b:28:f4:df:16:54:6d:88:
                    a7:ff:99:f5:65:8d:c3:68:f8:7e:a6:25:cd:0f:2d:
                    5d:61:b0:70:a3:cc:c3:02:70:8c:29:60:f8:8f:9f:
                    84:57:64:26:5d:b0:1a:6c:8e:a3:2c:9c:13:44:ad:
                    8b:91:0f:4d:67:74:bf:2f:6e:8c:96:56:a8:41:57:
                    cf:58:98:93:88:b9:b7:e8:ab:8f:eb:3c:96:34:bd:
                    d3:94:f4:a5:a3:a8:08:23:e3:c4:dd:ff:6f:2e:a5:
                    02:01:b3:37:16:99:54:13:a9:05:37:ae:8e:2a:97:
                    84:ca:35:55:ef:96:40:70:28:36:fa:df:04:0f:6c:
                    34:65:29:d4:ae:c6:cd:f6:f7:ca:bc:7d:d5:12:5f:
                    24:71:02:4a:17:8e:1d:ad:10:aa:34:2d:bf:dd:de:
                    be:a7:84:b2:83:c1:bf:f4:da:14:63:61:4c:b6:69:
                    83:22:75:3a:de:f9:b9:3f:a1:3e:6e:b0:6d:b9:61:
                    8a:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:75:06:09:B0:45:F2:A6:EA:9D:C8:59:87:0E:81:4D:8C:0C:EC:BA
            X509v3 Authority Key Identifier:
                keyid:64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:8a:40:0e:8e:7a:78:79:fa:7c:64:8a:e1:e2:db:c0:9a:a2:
         4b:dd:b0:bf:08:b5:9d:47:6f:77:b4:b7:27:89:91:7a:7f:54:
         12:d0:ec:94:57:70:ba:6f:ef:a6:66:94:e4:e5:11:1b:8f:81:
         de:4f:10:fe:3f:8c:8c:66:ce:79:b0:5e:1a:42:20:4c:fe:6d:
         ce:4d:c7:32:c6:83:1a:8e:69:7d:ed:3f:cf:d9:2d:fc:f4:60:
         42:ae:a6:d3:74:1e:bb:0a:b4:89:dc:39:86:01:58:16:e9:ee:
         0f:34:0a:10:99:0a:32:eb:ed:c0:53:3f:56:09:d9:96:22:34:
         bf:b7:38:c1:bb:a0:06:10:55:62:95:e8:e6:5c:11:3a:f4:4b:
         0e:71:aa:8a:b9:14:dc:c3:90:bc:d6:bd:88:13:86:f9:84:af:
         ae:b9:c6:43:65:f4:68:5d:81:24:6d:52:64:c5:2f:84:6d:0f:
         29:75:45:89:78:3a:55:55:14:fc:ea:a2:b0:fb:dd:8e:2e:25:
         83:63:0e:a7:8e:d3:f8:ab:28:51:2d:da:15:2c:8e:ff:79:e9:
         77:10:d1:d0:ae:e7:12:5e:b6:95:9f:fd:8a:1c:69:58:60:9b:
         80:cf:7a:fa:94:a5:59:5a:f7:c8:52:94:f0:59:4a:f2:fa:88:
         8b:f3:fb:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----