Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
File:                     7HDF2GfeIA8BSGsaiAqUuEldciA.mft (raw, json)
Hash identifier:          iemEu+dSU8wwNJzlWMkglz7VKcVqT/8CKcLjmGEoMkg=
Subject key identifier:   90:8B:65:93:EF:50:75:52:C5:A4:39:08:32:FC:EF:F3:37:7B:EB:13
Authority key identifier: EC:70:C5:D8:67:DE:20:0F:01:48:6B:1A:88:0A:94:B8:49:5D:72:20
Certificate issuer:       /CN=ec70c5d867de200f01486b1a880a94b8495d7220
Certificate serial:       01988168C86BF7F92CD02C41D7192366C2D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7HDF2GfeIA8BSGsaiAqUuEldciA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
Manifest number:          0EE0
Signing time:             Wed 06 Aug 2025 22:03:04 +0000
Manifest this update:     Wed 06 Aug 2025 22:03:04 +0000
Manifest next update:     Thu 07 Aug 2025 22:03:04 +0000
Files and hashes:         1: 7HDF2GfeIA8BSGsaiAqUuEldciA.crl (hash: +1XhOZS7gKys4bgAqnrwm3UIyeoGJJP2JozQyNumI3A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7HDF2GfeIA8BSGsaiAqUuEldciA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:68:c8:6b:f7:f9:2c:d0:2c:41:d7:19:23:66:c2:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ec70c5d867de200f01486b1a880a94b8495d7220
        Validity
            Not Before: Aug  6 22:03:04 2025 GMT
            Not After : Aug  7 22:03:04 2025 GMT
        Subject: CN=908b6593ef507552c5a4390832fceff3377beb13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:49:b7:fd:0c:f8:4b:c3:f6:ad:9a:81:a0:9d:
                    c9:5e:23:db:84:90:33:0b:a1:b0:42:3a:0e:0f:2f:
                    b7:70:2d:fa:19:cf:72:7e:18:3b:f2:2f:e8:61:05:
                    57:ac:cc:2d:3f:3d:2c:1c:36:27:95:08:11:a9:19:
                    62:e7:16:ac:ef:42:b8:0d:7a:45:82:fe:98:01:8b:
                    e5:b9:60:66:fe:70:a5:c8:25:8c:50:ed:fe:86:66:
                    60:cf:0f:8b:5b:db:db:0a:dc:26:11:25:f3:2d:ab:
                    7f:9e:86:e4:31:00:66:57:27:fc:b0:c1:e5:b7:42:
                    bc:23:2a:95:d9:7b:85:68:60:82:e2:c6:0c:c0:18:
                    ab:0a:63:a8:15:c1:70:80:2d:1d:1f:91:43:74:2c:
                    09:3f:bb:76:09:87:39:d8:eb:57:e9:f4:ca:7a:d5:
                    ec:ce:fb:8e:a5:a0:61:a7:93:d4:9a:95:93:3d:73:
                    79:f5:bb:af:09:4e:76:e3:c4:ab:5a:1a:fb:83:3d:
                    2e:02:97:3e:39:7a:7f:97:f6:ea:a9:db:2b:08:22:
                    ee:fc:57:6e:45:82:b0:67:ec:97:a2:3d:68:c4:eb:
                    9b:08:0b:f7:de:d7:25:5d:01:be:08:09:98:03:c0:
                    de:a8:7f:97:14:60:82:dd:a6:30:e3:f4:ec:ef:d0:
                    0b:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:8B:65:93:EF:50:75:52:C5:A4:39:08:32:FC:EF:F3:37:7B:EB:13
            X509v3 Authority Key Identifier:
                keyid:EC:70:C5:D8:67:DE:20:0F:01:48:6B:1A:88:0A:94:B8:49:5D:72:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HDF2GfeIA8BSGsaiAqUuEldciA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6ef54c-b034-49e6-8da4-c5ad153c2d46/1/7HDF2GfeIA8BSGsaiAqUuEldciA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:49:69:83:c4:5b:10:de:3c:e9:ba:36:ad:8d:49:e3:0c:27:
         6e:3e:bb:e8:24:c6:cd:57:a9:15:22:e4:11:65:5f:4c:94:cc:
         6f:35:f3:98:41:2b:7e:ad:15:ae:16:81:05:d7:ca:06:35:ef:
         28:88:bb:6c:2f:1b:f0:af:69:5c:1e:3b:c1:8a:e2:07:52:29:
         a1:fc:4d:b5:50:65:bb:12:71:7e:04:9f:ba:d8:1c:a6:e4:ec:
         02:9c:a3:8f:04:d7:e3:dc:13:b9:3c:26:37:c8:41:ae:63:52:
         f0:95:4d:ce:56:74:99:18:f0:66:cc:f3:77:10:b0:d0:fb:e9:
         59:d6:d6:17:44:0b:23:f6:99:a5:2c:07:87:a2:8c:03:f2:d2:
         5b:6a:1e:c5:9c:8e:59:d7:cb:1f:29:d1:1a:3b:6b:85:51:f5:
         69:5f:fb:4d:b7:8a:6c:a9:30:12:e8:4a:cf:b6:34:ef:05:ec:
         43:8c:4d:c8:3f:7e:41:58:99:08:8d:bb:a4:fc:61:b1:a2:ff:
         e7:88:ad:4e:98:27:2c:d2:1c:28:a7:35:ca:c4:56:47:3d:0a:
         5a:d0:16:d3:74:d8:a3:de:2c:f1:48:dc:35:e2:11:82:29:1c:
         2e:6f:06:31:48:fb:c5:78:88:f9:9a:58:90:ae:f9:c3:d7:65:
         a2:f5:79:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----