Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
File:                     sUgIa40dx_EOND_RZXGSOadVvTQ.mft (raw, json)
Hash identifier:          z3JU3WdPWvxIraMUMCrAhghztu72GLgONXzA1JSUUNk=
Subject key identifier:   C5:98:36:C3:3F:4D:19:D1:EF:AC:30:0B:D7:6A:9C:95:2B:87:21:3C
Authority key identifier: B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34
Certificate issuer:       /CN=b148086b8d1dc7f10e343fd165719239a755bd34
Certificate serial:       019874507D9D45102DB411AFC25C10E146C2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
Manifest number:          0F93
Signing time:             Mon 04 Aug 2025 09:01:28 +0000
Manifest this update:     Mon 04 Aug 2025 09:01:28 +0000
Manifest next update:     Tue 05 Aug 2025 09:01:28 +0000
Files and hashes:         1: sUgIa40dx_EOND_RZXGSOadVvTQ.crl (hash: likHSNMD2b+vvgYLfPQ9yAP6jy3wFwsZJnmY8tiYpTU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:50:7d:9d:45:10:2d:b4:11:af:c2:5c:10:e1:46:c2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b148086b8d1dc7f10e343fd165719239a755bd34
        Validity
            Not Before: Aug  4 09:01:28 2025 GMT
            Not After : Aug  5 09:01:28 2025 GMT
        Subject: CN=c59836c33f4d19d1efac300bd76a9c952b87213c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:b2:e5:87:95:e4:18:d2:74:53:69:46:2c:3e:
                    15:da:49:b3:fa:bd:74:92:9d:fd:f2:ff:6c:3b:f9:
                    b6:ba:e1:63:fa:5b:41:58:b9:72:cd:ab:c0:5a:4e:
                    c7:47:a2:a9:ee:9a:ad:ec:fc:ce:d5:2c:7f:21:8d:
                    d6:f9:e9:a9:30:b6:4e:69:29:6c:dc:51:15:15:c2:
                    81:c3:c5:77:41:94:ad:1c:33:07:0b:82:6d:5e:14:
                    76:74:1f:20:f5:17:8a:9d:85:58:19:97:d8:cd:d8:
                    b5:7a:28:fc:3a:0c:96:0f:40:3c:20:07:b7:fd:7e:
                    c0:c7:f9:2d:0c:06:5a:4f:31:c8:87:0a:a5:b3:14:
                    e2:c7:f3:85:37:9b:64:f4:b7:bb:67:dc:3f:e4:91:
                    f2:f4:a1:be:8e:59:58:1b:f8:e5:64:47:9b:e1:cc:
                    9e:14:4d:a5:51:38:9d:47:cf:12:4b:02:7a:34:aa:
                    10:a7:da:08:58:ae:fb:b6:eb:19:a9:3e:80:e5:cf:
                    ce:d3:6d:e8:70:27:3c:e4:e8:ff:fc:2b:10:a8:a8:
                    c1:13:b9:52:1f:04:2b:cc:6f:9b:72:58:0a:13:70:
                    8d:31:eb:24:02:18:b9:ad:2f:cb:2b:35:80:4e:d5:
                    29:15:de:9e:b8:f3:d7:93:ee:e2:15:9b:06:37:45:
                    66:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:98:36:C3:3F:4D:19:D1:EF:AC:30:0B:D7:6A:9C:95:2B:87:21:3C
            X509v3 Authority Key Identifier:
                keyid:B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ab:5d:f5:43:9c:68:d4:b2:88:2e:64:1e:83:80:87:a4:31:f0:
         c3:2f:6c:61:52:63:89:7c:89:33:0c:72:9a:29:f7:31:6c:08:
         16:d6:de:ab:a2:5e:67:b6:9d:86:b9:ac:01:f4:2c:48:b7:47:
         8c:4f:8a:fc:0c:95:02:03:a6:af:22:e4:e1:b0:f6:3d:ae:03:
         b1:88:f7:d2:16:b5:e2:a9:e5:56:84:1d:eb:5d:5f:8b:d4:df:
         c0:9d:56:23:ef:11:17:ac:17:be:76:c7:26:94:1e:2f:2f:21:
         76:42:b7:c1:87:f2:db:91:f0:2b:df:ce:29:e3:cf:5e:b6:ba:
         16:01:90:3e:cb:0e:e8:cc:cf:17:69:78:92:d7:d2:aa:5e:f7:
         6e:9d:af:14:35:13:bd:11:34:96:2f:e1:d5:b2:aa:81:f4:78:
         21:d8:65:01:78:34:89:fe:f3:c0:74:9a:f7:2f:d9:5a:78:3f:
         80:96:f2:fe:a5:1d:67:a2:82:18:48:4d:ee:e2:50:9f:b2:ec:
         a9:9b:c2:31:4e:33:40:f5:ba:48:3d:44:93:30:09:df:a0:7a:
         e4:f0:af:3b:5c:f9:8d:6f:b2:ef:c7:a6:74:25:d9:46:81:ae:
         5e:0c:35:15:aa:28:76:c5:37:5e:13:25:70:ec:96:d9:d1:3d:
         29:e0:9e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----