Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
File:                     UMrU5Xdbox7K4ibRBG89waEEgU0.mft (raw, json)
Hash identifier:          RV3uVtvuVBDi+QyG2MMCOlFyBvyyxUIYAZRQG6xaEOc=
Subject key identifier:   FE:3B:D4:D4:A0:D6:83:BB:5C:2B:FC:A6:C0:7D:27:53:C6:BE:43:7D
Authority key identifier: 50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D
Certificate issuer:       /CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
Certificate serial:       019882E791DC5A38930D2D3A2CEB09273E8B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
Manifest number:          05B4
Signing time:             Thu 07 Aug 2025 05:01:10 +0000
Manifest this update:     Thu 07 Aug 2025 05:01:10 +0000
Manifest next update:     Fri 08 Aug 2025 05:01:10 +0000
Files and hashes:         1: UMrU5Xdbox7K4ibRBG89waEEgU0.crl (hash: Uxd3B4BoPSevHsnMAXLsrFVW8Xrav/GmHMBIGwhTjdE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 23:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:82:e7:91:dc:5a:38:93:0d:2d:3a:2c:eb:09:27:3e:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
        Validity
            Not Before: Aug  7 05:01:10 2025 GMT
            Not After : Aug  8 05:01:10 2025 GMT
        Subject: CN=fe3bd4d4a0d683bb5c2bfca6c07d2753c6be437d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:25:d6:a3:18:9a:45:2e:aa:7e:b2:81:99:ea:
                    cb:42:83:9c:6d:bd:33:f4:c7:d9:0f:a5:19:40:24:
                    0b:96:56:19:41:78:b0:d4:cc:30:c1:91:8d:bb:f7:
                    b0:9e:8d:3a:fc:2c:a2:26:1d:62:c0:21:30:81:d8:
                    02:cf:9d:0a:c9:71:8f:16:d9:81:67:ab:19:ee:4a:
                    99:b0:ae:8c:1e:3c:e5:fb:bc:b9:95:aa:ec:5b:a9:
                    32:cd:b3:9a:7a:a7:1c:7b:37:6c:ed:4b:e6:57:5e:
                    2a:17:a4:06:0d:dd:8e:76:6b:4e:78:e0:60:be:63:
                    68:95:46:1c:41:db:3b:9c:c4:0a:7e:eb:b1:c4:96:
                    15:bb:fd:1c:55:30:82:24:32:5d:46:42:01:ac:75:
                    36:24:f8:17:88:53:7b:10:c0:59:a1:95:b7:52:49:
                    87:96:f8:dd:a7:2c:f9:0f:bb:44:9d:03:99:9a:b4:
                    44:87:eb:1a:4d:09:22:5d:f0:fe:d0:bf:b4:54:67:
                    61:a6:88:6d:8e:d9:c3:fc:fd:2f:84:12:09:79:3c:
                    6b:28:62:b2:59:23:dd:89:40:9c:23:a1:b2:97:d6:
                    bb:3d:61:cb:8b:b0:fd:0c:81:5e:e4:5d:de:55:e0:
                    4e:50:23:c3:7d:a4:99:bd:05:53:a1:0d:6a:e7:90:
                    1e:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:3B:D4:D4:A0:D6:83:BB:5C:2B:FC:A6:C0:7D:27:53:C6:BE:43:7D
            X509v3 Authority Key Identifier:
                keyid:50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:27:34:80:d4:76:7c:bd:f4:f6:52:98:ec:cf:85:9f:1a:e7:
         c4:ed:03:e9:57:c0:6c:b4:ac:03:24:93:08:0b:a3:4d:f5:d4:
         11:4a:33:15:ec:04:51:83:fe:39:6a:38:36:f2:a0:9d:ca:98:
         ad:d8:bc:6c:33:45:12:f2:96:b5:1c:9c:ea:39:01:41:5b:5e:
         87:85:8c:53:2a:12:71:25:e8:93:11:43:77:89:c9:97:1a:3f:
         e5:e0:37:26:68:37:3c:ec:c5:01:3d:10:27:a4:dd:fd:c5:2e:
         2f:dc:82:48:17:5d:97:5d:4e:fb:fb:72:8b:ef:f6:15:fe:d6:
         1e:88:ca:25:3a:d6:89:aa:d3:32:a3:de:bf:ed:f5:1d:d1:59:
         b2:c3:88:e5:71:56:12:b8:74:bb:59:57:29:31:dc:cd:2d:cc:
         82:c9:54:90:32:a2:28:87:91:53:8b:57:be:e3:6b:7e:f1:55:
         f9:56:e7:17:d0:b1:a3:78:3d:e0:c7:33:88:49:ab:dd:b9:5d:
         49:37:15:2a:8a:1c:c8:64:0b:c4:d0:25:1a:38:3b:6c:9f:f6:
         27:ed:40:c5:2a:d6:0b:58:eb:28:80:47:2b:d2:f9:23:71:5d:
         a4:85:69:1e:31:68:f8:3c:f7:1b:3e:35:fe:94:50:a0:ae:2b:
         79:4f:14:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----