Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
File:                     a1a9UK-T9GN-LAfi7EAya8ZABSc.mft (raw, json)
Hash identifier:          OZahXVwz7Zi8gBUvKImfPWWMXCRRPbD7wAIGQ9s8zL8=
Subject key identifier:   F7:40:49:32:D8:83:C1:BA:7E:E0:7C:F5:CE:63:66:E1:A0:AF:18:48
Authority key identifier: 6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
Certificate issuer:       /CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Certificate serial:       01988C5887190077326FAF685CB1C04AE517
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
Manifest number:          0280
Signing time:             Sat 09 Aug 2025 01:01:08 +0000
Manifest this update:     Sat 09 Aug 2025 01:01:08 +0000
Manifest next update:     Sun 10 Aug 2025 01:01:08 +0000
Files and hashes:         1: a1a9UK-T9GN-LAfi7EAya8ZABSc.crl (hash: cjZlloNyeTcvOlnpp/DeT/8rfLQRr11YsZnyOAhg7K4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8c:58:87:19:00:77:32:6f:af:68:5c:b1:c0:4a:e5:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
        Validity
            Not Before: Aug  9 01:01:08 2025 GMT
            Not After : Aug 10 01:01:08 2025 GMT
        Subject: CN=f7404932d883c1ba7ee07cf5ce6366e1a0af1848
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:a8:d7:0c:18:1b:df:63:9b:10:59:58:99:f5:
                    a2:c6:4e:2b:ec:80:06:1f:35:c0:88:bc:3b:01:52:
                    5b:54:28:72:ea:6b:61:da:96:4d:4a:20:20:7a:a7:
                    dc:e7:3b:d5:52:fe:be:f5:c4:f3:12:67:02:35:b9:
                    38:04:53:77:00:ff:13:7b:8c:22:b8:85:69:1d:cb:
                    20:d2:99:92:f8:94:8f:a7:e7:2e:49:13:c1:1b:87:
                    3c:70:de:82:6d:46:c9:35:ae:d0:ad:cf:8b:44:2b:
                    50:35:3c:56:ee:57:a7:40:95:e3:35:60:76:4d:10:
                    bb:cf:db:18:2b:75:d2:92:d6:47:cf:64:6f:50:51:
                    98:20:08:cf:7e:86:0a:90:d0:1d:6a:96:fb:39:f4:
                    60:67:46:3a:49:a0:91:42:a9:bd:de:66:ea:a2:ce:
                    a4:96:e8:53:1e:c4:59:6d:c5:23:99:62:a8:67:7d:
                    60:2b:d5:49:1e:53:5b:3b:50:c8:41:0f:dd:a2:8d:
                    83:b1:f7:b1:67:d8:05:77:ab:23:4e:fd:98:f0:f1:
                    63:3f:7f:b1:7f:f2:99:ff:ec:64:c1:6b:2f:f9:f9:
                    c2:79:c8:4c:29:86:af:bb:94:19:51:07:b8:79:32:
                    bb:6d:93:e3:5b:e3:c7:15:b7:d3:a1:77:6e:68:ad:
                    b9:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:40:49:32:D8:83:C1:BA:7E:E0:7C:F5:CE:63:66:E1:A0:AF:18:48
            X509v3 Authority Key Identifier:
                keyid:6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:c9:4d:02:73:f5:12:c5:73:91:2e:61:b9:40:e6:ab:17:26:
         7f:1d:38:fe:f4:02:f9:88:20:88:d9:6b:83:00:77:94:b5:12:
         3d:12:48:d5:34:4d:26:49:de:b8:8a:cc:df:21:c0:1f:44:08:
         7a:5e:0f:6e:3e:d4:98:19:31:74:3c:d7:69:46:8c:64:f0:37:
         a0:6d:b5:f0:da:a4:04:c3:06:cb:6d:dd:4e:b8:d3:c8:35:6e:
         35:88:da:d3:8b:60:2c:ad:55:8b:ba:b5:bc:96:53:86:65:3c:
         04:1f:f2:92:bb:1b:f0:30:41:16:70:85:41:03:cf:be:fa:d1:
         89:c6:c0:43:21:d7:f8:9f:03:08:4d:f8:50:5e:45:54:85:5d:
         11:5d:c1:de:ec:a4:85:d9:59:7c:5a:5d:b5:76:15:e5:f5:1d:
         5e:3e:be:a6:73:d9:a0:51:b8:9b:06:51:32:f6:e6:55:cd:30:
         94:8a:5d:75:58:64:dd:3b:78:45:b1:04:1d:5a:f2:9e:04:62:
         ba:76:e8:a4:72:98:3a:2c:cd:85:7e:d4:f3:5d:92:23:76:66:
         c4:a9:79:b4:21:c3:33:d7:76:f9:b0:52:c0:a8:90:f4:7e:cc:
         a2:1e:1e:f4:27:09:4d:7c:46:c1:ca:d4:4b:cd:89:aa:d8:4f:
         35:b0:b3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----