Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft
File:                     yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft (raw, json)
Hash identifier:          6mPBM5APK6b8nBJ1WR0R7OEf1YAIXjuCw+oAZz+aDkY=
Subject key identifier:   21:B1:18:17:36:0B:87:1B:53:4C:B4:ED:BE:9D:D9:19:FD:00:95:CB
Authority key identifier: CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21
Certificate issuer:       /CN=cb268b529393018d4bc9fc54073030a03d929721
Certificate serial:       01989223C425DDDF97FCB8FF62EC1A797DF7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft
Manifest number:          12BB
Signing time:             Sun 10 Aug 2025 04:01:14 +0000
Manifest this update:     Sun 10 Aug 2025 04:01:14 +0000
Manifest next update:     Mon 11 Aug 2025 04:01:14 +0000
Files and hashes:         1: yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl (hash: mW45cmIifl7ymCRGW9wzCxpNyOfhlfBZRyPof02B8+8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 04:01:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:23:c4:25:dd:df:97:fc:b8:ff:62:ec:1a:79:7d:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cb268b529393018d4bc9fc54073030a03d929721
        Validity
            Not Before: Aug 10 04:01:14 2025 GMT
            Not After : Aug 11 04:01:14 2025 GMT
        Subject: CN=21b11817360b871b534cb4edbe9dd919fd0095cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:9c:48:09:5a:61:5f:8a:b3:97:c4:83:dc:6a:
                    f5:1b:2c:03:f1:e2:f0:bb:74:99:1b:65:6c:3c:42:
                    17:df:36:a0:1c:e5:25:b3:7b:06:83:f5:90:23:fb:
                    e3:78:75:e2:cd:cd:32:c7:51:60:84:f5:37:d0:dd:
                    77:c7:bb:3d:68:2a:db:c3:80:7d:2e:30:1a:b3:91:
                    a7:f9:74:24:d6:c4:98:f7:2a:0e:35:9d:ac:fc:b2:
                    fb:6b:0d:d9:6f:80:3a:32:ad:1a:6e:02:4e:41:17:
                    76:b1:73:95:d6:6e:34:eb:57:79:52:65:a7:bd:82:
                    91:82:4e:f7:e9:79:92:3e:75:69:30:20:8f:4b:30:
                    26:72:54:ff:66:86:fe:ab:cc:da:d0:f7:ef:e5:99:
                    c8:83:64:d7:1b:6e:51:8a:bc:a5:42:30:34:03:d6:
                    f7:64:2f:16:bf:0c:24:6f:04:89:35:5f:d2:3c:c0:
                    c7:58:30:fb:f1:a9:01:34:3b:3c:1a:a4:02:4a:28:
                    96:68:af:c2:cf:82:5d:58:42:6c:1f:77:23:4d:1b:
                    80:02:3b:c0:b0:61:92:c4:7a:7e:0f:79:97:4a:2a:
                    94:b2:36:35:bf:a3:28:ca:c0:1c:6b:f5:34:cb:b0:
                    58:6e:31:f3:d4:a8:d0:39:5c:de:1c:0f:b5:cb:61:
                    38:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:B1:18:17:36:0B:87:1B:53:4C:B4:ED:BE:9D:D9:19:FD:00:95:CB
            X509v3 Authority Key Identifier:
                keyid:CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:1d:d7:81:d3:f1:37:c0:78:3f:82:84:3f:4c:89:b1:5f:6e:
         e1:be:a4:d1:88:d7:d2:3a:f7:9b:85:f2:25:b2:6f:1d:f5:34:
         0a:ee:e2:fe:3e:6b:2d:a8:71:38:a7:96:2f:41:6e:7e:03:47:
         23:f8:cd:02:88:7d:bc:d6:6f:3e:b3:2b:3f:09:ca:50:74:8f:
         22:1f:0b:87:a7:63:37:91:a8:24:29:8e:c5:d4:05:0c:f3:e1:
         6d:fe:8f:74:2d:97:76:59:89:b3:ec:35:a8:cb:b2:d7:09:31:
         1f:28:cd:15:16:e6:be:8d:3c:d4:0f:ef:b4:4a:82:41:5b:c3:
         58:fc:e5:1f:c5:64:37:7d:90:e4:ec:35:95:44:76:5a:cd:08:
         9b:4d:f5:40:cb:60:6d:68:96:a7:02:e9:64:5c:92:17:00:4d:
         c1:91:d7:da:14:6a:85:3a:85:fc:45:a3:b5:d2:47:b8:17:35:
         1f:c9:6c:02:fd:c6:e5:dd:77:0d:ec:b9:cb:06:86:6a:0a:0a:
         3f:20:69:bf:56:52:d2:e0:0e:b2:57:2b:72:60:d5:0f:d0:fa:
         dc:2d:b9:70:ea:c3:a4:6b:9e:b8:43:df:14:35:fa:4e:de:62:
         cf:c0:e7:0c:88:65:15:84:1d:9b:49:ae:16:41:3f:47:61:f9:
         90:35:5a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----