Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
File:                     EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft (raw, json)
Hash identifier:          CmG4vUfkQ7czBvU1A4GDYw00MGol+ewSlCNCMk4bDXA=
Subject key identifier:   16:20:21:B2:28:AF:6F:09:A6:96:E3:10:70:64:9C:AC:08:39:BB:81
Authority key identifier: 10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93
Certificate issuer:       /CN=1038d7a2954a32d2afd16b88b363b390681cd593
Certificate serial:       01987B9D14BEEEF35CCA2053DE25D87B7D81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
Manifest number:          0EEE
Signing time:             Tue 05 Aug 2025 19:02:28 +0000
Manifest this update:     Tue 05 Aug 2025 19:02:28 +0000
Manifest next update:     Wed 06 Aug 2025 19:02:28 +0000
Files and hashes:         1: EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl (hash: jgQKYkSAek9/bYm1U88Gq3/x9ZlH8Gy/ytAqabEg4vM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 17:44:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7b:9d:14:be:ee:f3:5c:ca:20:53:de:25:d8:7b:7d:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1038d7a2954a32d2afd16b88b363b390681cd593
        Validity
            Not Before: Aug  5 19:02:28 2025 GMT
            Not After : Aug  6 19:02:28 2025 GMT
        Subject: CN=162021b228af6f09a696e31070649cac0839bb81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:aa:25:bd:70:f4:e1:9b:85:a2:4d:09:a1:1d:
                    fb:60:73:7a:17:53:99:1d:f2:02:86:04:d6:82:ea:
                    76:91:1f:64:01:c2:a9:af:8e:dc:5f:d0:67:ab:cc:
                    56:80:6a:91:01:fb:72:b2:ee:70:1a:e7:48:3f:15:
                    b5:d8:38:e3:39:85:a9:97:fe:ff:5f:7b:67:12:6b:
                    f4:f3:e8:e1:ce:59:8e:d6:ad:b1:1a:a4:6f:60:9d:
                    0d:62:4c:65:9e:fd:b0:75:b0:71:bb:13:22:20:6a:
                    c9:0f:9e:31:54:41:26:3c:e6:fb:0a:d1:33:b6:a4:
                    cc:42:27:f7:1c:ec:08:72:1f:44:1b:80:e9:9b:37:
                    7a:91:75:8c:7b:2e:c6:92:cf:bc:a4:7e:54:20:7b:
                    6e:19:60:e6:0d:e7:bd:0e:2c:38:bc:a2:8b:b3:d0:
                    49:c5:97:21:d3:f0:13:45:87:71:d1:ad:47:6a:8c:
                    2c:51:08:97:a0:d4:05:01:e9:28:22:70:3d:da:78:
                    46:e0:24:f9:ea:53:55:6f:cc:16:8f:1f:1a:9c:16:
                    e8:40:d4:63:fd:2e:17:c9:a9:d4:e9:9a:28:c3:05:
                    38:85:e2:26:62:9b:67:d9:27:8c:b3:77:10:39:73:
                    4a:8c:53:09:a8:7b:59:57:b4:3a:7f:6c:fe:be:fd:
                    11:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:20:21:B2:28:AF:6F:09:A6:96:E3:10:70:64:9C:AC:08:39:BB:81
            X509v3 Authority Key Identifier:
                keyid:10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:05:ed:07:44:c0:88:6d:5e:a8:ce:7f:01:aa:ac:1f:e3:55:
         d0:64:f8:df:e3:00:7d:f4:1c:13:1c:9a:c7:96:36:1e:1e:c7:
         dc:2f:7a:74:0d:f5:45:3b:39:bb:f8:85:62:d9:aa:85:9a:1c:
         13:39:63:53:04:34:4f:2b:c3:5d:53:57:d5:95:9a:05:69:b4:
         14:a0:cd:e5:bf:76:fb:63:d1:05:3e:f0:71:1e:fa:ad:71:5d:
         7b:c8:5b:e6:92:70:92:7d:31:80:55:65:1e:2c:1a:c5:fe:a3:
         e9:9b:fb:08:7a:37:27:2f:0f:87:93:1b:23:f3:85:bc:26:7c:
         76:e4:4c:b3:eb:82:87:4c:45:3b:1c:6f:b1:7b:7c:1e:8d:04:
         72:b6:c2:4e:d3:f1:d2:89:be:41:97:71:62:2f:c3:a1:f9:d7:
         f0:5c:7c:6f:6e:8c:59:43:44:e6:79:82:ea:b8:4f:d1:c8:4a:
         5d:81:d0:0f:0f:cf:13:eb:32:c5:bb:1f:65:18:62:22:f7:88:
         2d:d8:06:36:99:a8:d1:cd:58:61:31:01:35:a7:07:53:89:b4:
         02:82:17:71:a4:ca:fe:8b:a8:12:07:6d:42:a9:da:ba:dc:9e:
         3f:fb:91:1c:8a:8f:a1:6c:8a:f8:18:fc:af:e0:13:e2:52:43:
         d7:e0:ad:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----