Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft
File:                     UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft (raw, json)
Hash identifier:          t2U4HjGvBc4F3ZllVzSy/ntsPKfIzsezHP6fh0CNmME=
Subject key identifier:   92:33:66:3E:87:9D:D9:61:FE:6D:2F:7B:0D:34:EE:3E:C2:98:2B:DB
Authority key identifier: 51:C3:CC:54:41:4F:B4:42:BE:39:D6:E1:A4:AF:72:4C:FF:EE:EE:FF
Certificate issuer:       /CN=51c3cc54414fb442be39d6e1a4af724cffeeeeff
Certificate serial:       019873E2CF8851EA8AFEAC49ECD72F157783
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft
Manifest number:          151C
Signing time:             Mon 04 Aug 2025 07:01:40 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:40 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:40 +0000
Files and hashes:         1: UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl (hash: /KJhl/A+QhwN6yX9/djhVr9qOjV3JiPPtMmVeVjWRas=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:cf:88:51:ea:8a:fe:ac:49:ec:d7:2f:15:77:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51c3cc54414fb442be39d6e1a4af724cffeeeeff
        Validity
            Not Before: Aug  4 07:01:40 2025 GMT
            Not After : Aug  5 07:01:40 2025 GMT
        Subject: CN=9233663e879dd961fe6d2f7b0d34ee3ec2982bdb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:35:55:95:a8:2b:d3:09:17:b3:f9:0a:40:2f:
                    26:d0:73:90:56:a5:be:15:f5:4e:bc:23:fe:c3:b4:
                    a5:6c:33:52:cb:e3:25:c3:bc:77:64:ce:56:18:2c:
                    d6:9e:dc:b5:15:12:a7:2d:0c:3d:43:e6:46:4f:e8:
                    08:5e:9d:57:01:94:7b:62:2c:de:56:24:21:c9:53:
                    3f:71:96:d5:15:df:46:a6:aa:8a:22:d3:d1:44:e8:
                    33:82:7c:98:ba:4d:d2:d6:3c:ec:d4:f7:0c:d0:fd:
                    d7:36:38:55:48:09:88:63:be:f9:d8:7a:35:bf:cd:
                    d6:b5:02:8c:80:50:8d:19:df:95:bd:77:06:0f:dc:
                    33:bd:88:f7:fe:f5:ac:41:70:c7:eb:40:c4:8c:87:
                    05:aa:3d:06:98:d5:ec:b5:9e:2e:d6:8a:95:7a:39:
                    99:83:80:9f:6a:aa:35:dc:5d:8a:7c:03:e1:a4:65:
                    88:8e:35:40:ae:f1:55:23:96:58:cf:c1:a0:92:fd:
                    5e:c5:79:4d:78:e4:59:50:e5:12:8f:dc:48:0f:d2:
                    ac:ed:c4:58:e3:ea:6b:fa:77:49:72:31:7e:f3:d2:
                    d4:d7:8a:be:d2:2f:34:e6:2d:c5:38:07:a3:72:75:
                    be:ca:72:ee:16:b1:f8:1c:64:3a:ff:95:6d:7b:78:
                    cd:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:33:66:3E:87:9D:D9:61:FE:6D:2F:7B:0D:34:EE:3E:C2:98:2B:DB
            X509v3 Authority Key Identifier:
                keyid:51:C3:CC:54:41:4F:B4:42:BE:39:D6:E1:A4:AF:72:4C:FF:EE:EE:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ba:5a:e9:f5:a1:40:f1:65:5a:6a:37:39:d2:10:0d:36:ef:3a:
         9b:f3:03:ce:4d:0c:b0:f4:38:c6:81:2d:30:c9:b2:8a:54:d4:
         0a:6e:72:c6:28:c2:ea:b4:e2:ec:75:40:c1:9f:16:87:07:e7:
         89:0a:4f:3a:e4:97:92:e6:c1:0c:af:54:d5:f8:96:52:c3:18:
         25:76:45:8c:82:1d:7a:5b:2b:cb:e8:04:7a:81:f5:2e:ba:1a:
         a0:7e:75:be:b0:12:03:06:90:9f:27:31:6b:43:5c:c2:33:c5:
         63:52:24:92:4b:38:18:7f:f6:b2:01:27:d8:63:7c:bc:c0:d4:
         8b:ae:5a:d9:9d:d4:7c:d5:c2:66:6f:f4:07:71:2e:46:6d:3b:
         9e:50:34:60:d4:91:f8:72:2b:a0:e3:3f:03:39:ff:91:f9:c3:
         dd:87:29:fa:12:65:b7:07:d2:d2:93:77:09:91:f0:99:92:38:
         18:80:f0:81:d1:f2:30:08:78:ae:d0:87:8a:8e:df:71:d2:2c:
         e8:74:21:9c:f3:7d:5a:45:e1:7b:e9:14:91:77:3a:34:31:d6:
         66:82:6b:74:79:6f:6a:36:2f:6b:e6:7f:a1:df:10:3d:bc:5f:
         23:0c:b3:f9:c4:b0:30:c6:3d:ce:9a:50:90:c0:c0:16:8d:a6:
         4c:0c:d1:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----