Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
File:                     owVfB71HqGR4w79HOSVzrNU9Y24.mft (raw, json)
Hash identifier:          HGRka39kGkhAsn/L09bUY6Lc43TYV53/23GN0evoKrI=
Subject key identifier:   D3:68:34:2C:5F:D6:5C:DE:FC:7B:5B:B9:C1:9A:F3:9B:6C:E2:78:56
Authority key identifier: A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E
Certificate issuer:       /CN=a3055f07bd47a86478c3bf47392573acd53d636e
Certificate serial:       0198744FBA40A452817D824BFF89CF86C16D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
Manifest number:          1613
Signing time:             Mon 04 Aug 2025 09:00:38 +0000
Manifest this update:     Mon 04 Aug 2025 09:00:38 +0000
Manifest next update:     Tue 05 Aug 2025 09:00:38 +0000
Files and hashes:         1: owVfB71HqGR4w79HOSVzrNU9Y24.crl (hash: KmLxitOsHG6g1x5tzprs1HF9z396L97o2yq2EL5IbUM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 09:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:4f:ba:40:a4:52:81:7d:82:4b:ff:89:cf:86:c1:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3055f07bd47a86478c3bf47392573acd53d636e
        Validity
            Not Before: Aug  4 09:00:38 2025 GMT
            Not After : Aug  5 09:00:38 2025 GMT
        Subject: CN=d368342c5fd65cdefc7b5bb9c19af39b6ce27856
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:46:c2:8d:5b:6a:24:f4:13:55:6a:0b:d2:53:
                    5c:a0:04:0e:78:be:36:2c:29:ea:5e:4a:6b:23:c1:
                    30:b4:64:33:ed:7b:4f:2a:a0:d7:b5:26:33:a8:13:
                    cf:cd:88:70:52:b4:2a:d1:01:55:7e:78:d0:9b:c0:
                    79:5e:51:bc:d3:a6:3c:af:d8:07:20:c8:76:b7:0f:
                    bf:06:25:9d:42:46:f8:d3:c5:fe:ab:a5:d3:f2:55:
                    d5:8f:2a:72:7f:e1:a9:2a:fd:97:8d:18:c4:a1:f2:
                    84:5d:4a:39:d6:9e:0b:44:73:83:96:cb:d5:ce:de:
                    2a:c5:43:1a:f5:5e:38:17:50:3b:88:3d:b3:ff:08:
                    34:1b:85:2c:fb:ba:91:4b:44:1e:09:03:d0:ea:9a:
                    0d:f4:b1:3c:58:18:39:72:12:ca:53:54:d4:54:64:
                    87:68:ca:94:a3:d0:e4:6c:a8:61:17:e7:f9:33:4c:
                    7e:98:25:72:6d:ba:64:4c:a1:39:4e:b1:04:f2:52:
                    28:ac:eb:dc:8d:f5:71:01:d2:08:4a:8a:f6:1a:2a:
                    62:5a:3b:36:76:3b:5b:a7:43:53:09:bd:f4:1b:78:
                    6d:79:44:ba:a0:39:48:fb:e9:ae:ec:c9:f4:2b:b8:
                    2c:d2:09:e2:09:54:7f:c2:2b:39:9d:aa:68:11:e2:
                    e1:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:68:34:2C:5F:D6:5C:DE:FC:7B:5B:B9:C1:9A:F3:9B:6C:E2:78:56
            X509v3 Authority Key Identifier:
                keyid:A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:3b:d7:04:34:26:05:90:e6:32:a2:57:0d:5b:89:f0:4b:c9:
         46:57:c8:97:c4:15:58:12:89:67:a2:e8:87:fe:64:2d:a2:ed:
         da:7d:35:02:61:6f:22:a6:f5:97:8c:a8:57:6f:c0:e1:41:1f:
         52:20:db:e3:85:d8:23:90:90:ad:06:f9:cf:93:9e:4e:2e:eb:
         00:4b:0e:3d:ef:21:12:e9:ef:fd:15:f2:f9:6d:ac:9b:f9:75:
         67:74:4a:39:34:f1:c5:a6:70:a5:03:b2:fa:bf:58:70:e3:a4:
         2b:f1:4c:7c:69:f6:93:e4:34:7d:79:18:53:73:bf:90:47:ed:
         22:b4:69:4a:2e:c6:82:da:bc:ae:d8:f2:1b:4e:5c:da:55:e2:
         de:b2:d4:3c:f6:8b:79:33:05:7e:94:f3:c7:da:2c:1f:5b:b6:
         06:a2:c8:70:fc:d4:fb:b0:f0:a3:5d:90:5e:b6:e9:0c:a7:70:
         02:48:be:12:07:ae:e7:52:1d:c0:68:bd:35:d4:1f:6d:b0:84:
         fb:70:47:58:45:c9:c9:35:18:93:5d:f7:04:4e:42:15:de:c0:
         56:88:79:bb:a0:ee:cb:6a:ae:99:78:80:43:ae:3b:7f:35:6a:
         04:97:1c:75:1f:9c:af:a6:91:42:d9:57:e4:b7:35:36:c0:a5:
         ca:7c:ae:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----