Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
File:                     9fqTbNBbJl9g8zNAqMY952gvw18.mft (raw, json)
Hash identifier:          l/WEFaPlOv2zp7JwzBaDDM4XHQij6SVJQYfJrqs9kGk=
Subject key identifier:   A1:2F:27:ED:34:F6:8E:CB:6F:F2:47:76:5D:93:2B:8E:D0:56:44:B7
Authority key identifier: F5:FA:93:6C:D0:5B:26:5F:60:F3:33:40:A8:C6:3D:E7:68:2F:C3:5F
Certificate issuer:       /CN=f5fa936cd05b265f60f33340a8c63de7682fc35f
Certificate serial:       01989FA7E0D014172199BFC51CAEA5441C07
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
Manifest number:          061B
Signing time:             Tue 12 Aug 2025 19:00:35 +0000
Manifest this update:     Tue 12 Aug 2025 19:00:35 +0000
Manifest next update:     Wed 13 Aug 2025 19:00:35 +0000
Files and hashes:         1: 9fqTbNBbJl9g8zNAqMY952gvw18.crl (hash: aJY6L7/cKzrAqdOzLp1WBdomiE8f9Xc8EOZRAZpEi4I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 19:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9f:a7:e0:d0:14:17:21:99:bf:c5:1c:ae:a5:44:1c:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5fa936cd05b265f60f33340a8c63de7682fc35f
        Validity
            Not Before: Aug 12 19:00:35 2025 GMT
            Not After : Aug 13 19:00:35 2025 GMT
        Subject: CN=a12f27ed34f68ecb6ff247765d932b8ed05644b7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:93:c1:fe:4b:c9:b8:d6:86:a1:35:56:36:91:
                    16:05:02:00:ec:02:8e:49:2e:b4:0d:1f:70:d4:ff:
                    e9:33:e7:ac:04:1e:36:0c:6b:96:31:10:08:fb:83:
                    00:8c:aa:c4:50:d2:f5:95:4b:15:08:21:a4:b3:c1:
                    13:bb:39:cd:51:3f:b6:46:23:cb:77:9b:1c:76:fa:
                    07:85:61:e5:55:17:63:5b:c7:cd:ac:76:65:c0:f0:
                    54:b0:04:d9:a9:56:b5:4a:76:2d:ea:9e:35:44:fa:
                    7c:11:44:64:98:f7:1c:96:e4:7f:fd:28:b4:9f:5e:
                    79:66:c6:3d:bd:db:9e:b7:72:74:1b:41:a6:65:03:
                    88:4e:e3:ee:31:93:d4:61:3d:d6:74:49:02:0b:98:
                    51:f8:88:be:ea:bd:ea:42:3f:b2:93:d7:a9:86:6e:
                    b3:56:6b:f5:68:23:76:54:e0:56:9f:19:37:5f:9e:
                    df:f6:10:9b:13:aa:ac:bd:3d:f1:00:30:c6:84:72:
                    86:02:b1:57:e0:39:01:ea:f7:18:8c:e0:61:04:f6:
                    cf:a8:07:e6:83:05:05:dd:05:32:7d:61:98:fa:03:
                    22:00:4b:20:9e:a7:b4:4c:66:f4:df:d2:48:f9:e7:
                    38:f2:5d:7a:7b:d1:72:b2:85:f8:c9:7c:94:b3:d1:
                    87:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A1:2F:27:ED:34:F6:8E:CB:6F:F2:47:76:5D:93:2B:8E:D0:56:44:B7
            X509v3 Authority Key Identifier:
                keyid:F5:FA:93:6C:D0:5B:26:5F:60:F3:33:40:A8:C6:3D:E7:68:2F:C3:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:b9:05:4b:a1:5e:a1:43:79:e8:60:70:70:7f:98:41:d7:f9:
         61:fd:4e:80:1f:7f:d4:07:da:74:3f:36:2a:8d:86:63:ce:0e:
         4d:50:a0:49:f3:22:9c:3d:f0:cf:33:95:7d:99:d7:67:3c:54:
         44:07:71:27:e0:78:8b:c8:82:b1:4a:a3:dd:59:66:d1:37:72:
         0c:3a:a0:64:28:f9:18:fc:c5:8d:3a:92:72:c3:f0:2a:ff:db:
         b2:85:16:59:17:8a:b6:81:6f:75:13:39:52:b2:bf:0d:b8:c4:
         74:0e:1e:6d:61:f5:53:fd:b3:63:70:4d:03:30:db:15:4b:82:
         a3:b3:29:f7:a5:67:86:03:43:ed:8c:d5:fe:7d:77:ee:a3:74:
         49:56:a2:ff:ef:b3:78:1b:06:7d:d8:b7:2f:01:8a:32:5d:a0:
         2f:91:dc:d4:b8:dc:64:fd:d2:ff:07:73:5c:18:85:0d:0d:86:
         57:ee:8e:11:bc:e7:40:bc:22:50:07:81:1d:d3:f1:2e:69:1c:
         f0:81:6a:24:4e:cf:32:9b:07:cf:f5:1b:f9:98:53:81:1a:c5:
         9b:d9:d8:1b:5d:d6:59:7f:ba:8b:09:f1:e2:19:a4:c8:3d:31:
         fb:e9:1c:aa:49:0f:94:e9:3d:6e:d9:b5:99:df:74:4a:a9:c1:
         00:72:a1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----