Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft
File:                     U3YJ5EhhINufF7bT10v4VfJxV18.mft (raw, json)
Hash identifier:          wqhwJGApUPL7Jw6w4TjdqV8p48AVLMxm7gmuQbmQbHc=
Subject key identifier:   60:C8:83:DD:2C:52:AA:23:45:0B:73:1A:52:F5:2C:FE:FA:48:ED:02
Authority key identifier: 53:76:09:E4:48:61:20:DB:9F:17:B6:D3:D7:4B:F8:55:F2:71:57:5F
Certificate issuer:       /CN=537609e4486120db9f17b6d3d74bf855f271575f
Certificate serial:       01988166D2C6C078307AB2C3D84F7D8288EF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft
Manifest number:          0C9C
Signing time:             Wed 06 Aug 2025 22:00:56 +0000
Manifest this update:     Wed 06 Aug 2025 22:00:56 +0000
Manifest next update:     Thu 07 Aug 2025 22:00:56 +0000
Files and hashes:         1: U3YJ5EhhINufF7bT10v4VfJxV18.crl (hash: 64kZ1HfPqg3J+Ntp5l0DFWiGoOsPUXIr1gLsPUW/5t4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:66:d2:c6:c0:78:30:7a:b2:c3:d8:4f:7d:82:88:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=537609e4486120db9f17b6d3d74bf855f271575f
        Validity
            Not Before: Aug  6 22:00:56 2025 GMT
            Not After : Aug  7 22:00:56 2025 GMT
        Subject: CN=60c883dd2c52aa23450b731a52f52cfefa48ed02
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:af:56:53:1d:2e:cf:a6:4e:29:7c:96:a5:54:
                    a6:bd:d5:9a:f5:88:55:c9:ca:8b:ef:d9:be:12:e2:
                    a1:0e:66:b4:46:95:ec:2c:45:f7:d4:1d:95:ae:6d:
                    e6:ef:76:1d:c8:c6:a4:e5:4b:f4:ac:97:15:3f:c1:
                    56:79:58:7d:fe:70:c2:7f:5f:50:9e:25:99:08:65:
                    a1:37:d6:e6:35:e1:d1:36:cf:c4:7d:f4:14:41:43:
                    cc:c7:88:09:74:24:c6:86:35:18:fa:c8:b4:3a:2b:
                    5d:01:7b:4b:82:69:87:bc:42:ac:8f:f0:a5:98:16:
                    d7:6c:4a:e2:ef:2e:3b:c4:1c:1d:3d:15:4d:90:c9:
                    36:a1:fa:27:be:5a:8b:61:3d:76:2e:be:75:5c:52:
                    33:6c:91:4d:12:f9:b4:b2:ce:49:c8:dc:3a:c8:d9:
                    ac:80:2c:70:5f:4e:3a:b0:08:77:13:8f:97:2b:08:
                    3c:f5:83:35:0e:f4:ba:a4:c1:52:ac:80:b9:85:27:
                    ec:5f:01:a0:32:5c:e4:0a:43:aa:07:47:15:1c:63:
                    8b:fd:7c:bc:3b:2a:76:94:52:d0:e8:d2:94:7c:1e:
                    3e:64:ca:33:a0:59:f8:01:a3:22:36:f2:fa:f3:bc:
                    85:42:df:14:b5:ca:b1:87:88:7e:b2:dd:f7:a2:7a:
                    20:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:C8:83:DD:2C:52:AA:23:45:0B:73:1A:52:F5:2C:FE:FA:48:ED:02
            X509v3 Authority Key Identifier:
                keyid:53:76:09:E4:48:61:20:DB:9F:17:B6:D3:D7:4B:F8:55:F2:71:57:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:31:60:d7:29:89:1a:65:7f:53:80:ef:3c:87:4d:1d:5c:00:
         1f:1c:7a:ed:8c:6e:39:49:98:40:75:46:b6:e6:00:33:db:45:
         04:9b:f0:93:54:71:ba:17:6f:6e:d3:84:97:ee:91:02:87:23:
         5e:6c:8f:af:85:7e:91:bf:dd:ae:23:78:47:17:5d:84:5a:1a:
         b4:da:44:26:db:80:b7:9b:36:52:0b:a0:97:7e:b2:bc:08:48:
         ea:05:d1:b9:ce:d5:5a:f8:c0:f0:d9:12:af:3b:cf:3a:9b:ab:
         e5:b1:d3:50:ce:c2:3f:5e:53:de:4f:43:d9:aa:44:ea:34:4e:
         fa:c0:5b:20:dd:2b:ea:f6:09:e5:f3:f8:82:d5:56:c8:ae:af:
         e4:34:bb:16:2b:f1:16:cb:22:c6:44:1f:e2:55:b9:91:bc:3a:
         5d:03:39:06:83:62:bb:ee:de:5b:6c:30:86:0c:3a:36:e9:d5:
         e0:0c:65:6e:a6:04:84:aa:5f:2a:1e:77:4c:5a:77:8c:09:c2:
         55:69:e1:65:ee:c0:7e:5c:bd:27:8c:a5:8a:f3:e6:2a:9c:40:
         04:66:bb:b6:b5:49:2e:d5:8d:af:6d:c6:af:99:0c:6d:1f:b8:
         4a:8f:f3:e0:4a:e9:96:3d:1b:dd:45:d0:ae:a0:d2:55:a9:36:
         dc:50:8b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----