Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ca6855-18f6-4bc0-8fab-3757f9308acc/1/YE1FsSrOCsIjA-08d5S4MGpqtbA.mft
File:                     YE1FsSrOCsIjA-08d5S4MGpqtbA.mft (raw, json)
Hash identifier:          GQsson9YY9GodiEyWwB04FhUpRQUxlFP7stmL4u6eY0=
Subject key identifier:   C9:66:2E:DF:FE:D0:1F:A0:99:F4:7D:87:EC:25:D6:82:9B:9A:34:5F
Authority key identifier: 60:4D:45:B1:2A:CE:0A:C2:23:03:ED:3C:77:94:B8:30:6A:6A:B5:B0
Certificate issuer:       /CN=604d45b12ace0ac22303ed3c7794b8306a6ab5b0
Certificate serial:       0198816831425E952CE2BC9820A5203BB9D5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YE1FsSrOCsIjA-08d5S4MGpqtbA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/ca6855-18f6-4bc0-8fab-3757f9308acc/1/YE1FsSrOCsIjA-08d5S4MGpqtbA.mft
Manifest number:          15AE
Signing time:             Wed 06 Aug 2025 22:02:25 +0000
Manifest this update:     Wed 06 Aug 2025 22:02:25 +0000
Manifest next update:     Thu 07 Aug 2025 22:02:25 +0000
Files and hashes:         1: YE1FsSrOCsIjA-08d5S4MGpqtbA.crl (hash: 0tX8Ui17FEoJc1KyNJf6M/x+0ZQMJNhD/z7jJUl96Qs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/ca6855-18f6-4bc0-8fab-3757f9308acc/1/YE1FsSrOCsIjA-08d5S4MGpqtbA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/ca6855-18f6-4bc0-8fab-3757f9308acc/1/YE1FsSrOCsIjA-08d5S4MGpqtbA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YE1FsSrOCsIjA-08d5S4MGpqtbA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:68:31:42:5e:95:2c:e2:bc:98:20:a5:20:3b:b9:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=604d45b12ace0ac22303ed3c7794b8306a6ab5b0
        Validity
            Not Before: Aug  6 22:02:25 2025 GMT
            Not After : Aug  7 22:02:25 2025 GMT
        Subject: CN=c9662edffed01fa099f47d87ec25d6829b9a345f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:85:6c:e4:2d:49:5c:d9:b8:c4:1d:60:b0:46:
                    b8:36:9a:2c:a2:a3:e1:b2:04:48:bf:76:8e:5d:7b:
                    ed:06:13:1f:dd:07:1e:89:54:d9:5d:cd:ce:f7:a3:
                    00:b2:e1:1c:07:94:0a:4d:9b:9f:86:85:59:a2:c1:
                    55:2f:a8:f4:96:d3:d9:5f:22:30:62:5d:a8:57:79:
                    a7:e3:4e:e9:cc:91:ff:4b:13:a8:7f:ed:59:f9:36:
                    64:74:f4:1a:61:19:0b:45:4a:47:7e:2e:f3:d9:4b:
                    f2:cb:19:3f:5d:63:32:4e:7e:f1:e9:e7:2a:2d:62:
                    83:9b:62:6e:59:ed:9b:41:db:86:69:fe:09:03:7a:
                    21:e1:dc:09:c6:c4:4c:c2:25:52:be:6a:5b:0d:78:
                    7c:bc:de:5a:17:4f:7c:90:5e:ce:ca:d9:7f:81:43:
                    2a:bd:26:52:97:16:3e:3d:6f:29:58:5c:0f:83:39:
                    5d:f8:80:26:36:9f:e8:4e:f3:de:45:d8:eb:a7:46:
                    c1:df:e1:ad:9c:44:c1:25:83:6e:23:6c:64:4e:35:
                    e9:73:dc:55:f1:91:f2:b5:1e:8f:7a:e5:7a:c1:eb:
                    db:79:02:23:34:62:35:0e:7f:60:36:db:93:71:d3:
                    2d:83:61:e2:8d:e2:36:e1:85:ec:96:3f:83:a1:1c:
                    85:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:66:2E:DF:FE:D0:1F:A0:99:F4:7D:87:EC:25:D6:82:9B:9A:34:5F
            X509v3 Authority Key Identifier:
                keyid:60:4D:45:B1:2A:CE:0A:C2:23:03:ED:3C:77:94:B8:30:6A:6A:B5:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YE1FsSrOCsIjA-08d5S4MGpqtbA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ca6855-18f6-4bc0-8fab-3757f9308acc/1/YE1FsSrOCsIjA-08d5S4MGpqtbA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ca6855-18f6-4bc0-8fab-3757f9308acc/1/YE1FsSrOCsIjA-08d5S4MGpqtbA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:b6:e4:5f:13:99:53:2d:7b:18:01:31:76:1c:b1:39:a4:5e:
         ef:cf:02:ed:3f:f4:6d:1b:ee:e0:98:bd:e2:f4:2d:c2:b5:8e:
         ec:38:c5:13:a1:a1:a5:b2:c6:bc:3a:0b:96:7b:b7:54:bb:37:
         f8:3b:2d:b9:4c:61:4f:bd:0c:8d:a8:f1:7b:9f:71:1a:59:3d:
         3b:44:1a:a5:42:65:55:87:a8:9a:55:13:af:7b:df:81:9c:49:
         08:20:81:f7:8e:86:d3:3c:10:7c:dd:b2:52:03:32:aa:49:92:
         72:a1:7a:26:36:2c:cd:ec:9f:d3:75:9a:da:f8:33:a3:9c:6f:
         98:8a:5a:38:76:46:b4:08:1b:2c:fe:b8:b5:38:a4:93:cc:4c:
         e0:e5:e3:09:96:07:14:c5:51:01:a2:8d:0c:36:22:3c:ad:f7:
         6d:34:56:98:12:db:c4:7d:79:40:38:3d:29:40:72:b8:23:13:
         54:96:a9:19:ad:e5:cf:73:90:51:75:2b:f8:2d:b4:b3:4d:4c:
         0d:6b:59:a2:db:ab:12:07:7e:43:08:51:91:17:43:c1:14:2e:
         e2:e3:88:9f:af:30:60:f3:ea:6a:ed:69:d5:80:f4:5a:e2:05:
         ee:6e:0c:85:2f:c1:e4:75:fe:94:21:88:f3:c9:ce:96:70:f6:
         fb:a4:03:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----