Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
File:                     5e_Rhp7q_m-fA8s0GGibywxpE3A.mft (raw, json)
Hash identifier:          31YxhVuBOF8pvhgfl/BsmmEowUsCC7ns4cSaZad9yAw=
Subject key identifier:   FC:8D:92:FF:B0:D6:B9:63:5D:04:F6:C1:25:1C:B9:5A:CD:F1:0C:02
Authority key identifier: E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70
Certificate issuer:       /CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
Certificate serial:       0198D65FD1186F23C792289455613AE6C5BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
Manifest number:          1065
Signing time:             Sat 23 Aug 2025 10:01:00 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:00 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:00 +0000
Files and hashes:         1: 5e_Rhp7q_m-fA8s0GGibywxpE3A.crl (hash: ldCZHGfhUOkFQ7VdXPTpxpPgm+JDRowhrQNO6khauro=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:d1:18:6f:23:c7:92:28:94:55:61:3a:e6:c5:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
        Validity
            Not Before: Aug 23 10:01:00 2025 GMT
            Not After : Aug 24 10:01:00 2025 GMT
        Subject: CN=fc8d92ffb0d6b9635d04f6c1251cb95acdf10c02
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:93:a7:8c:bb:d5:bc:23:0d:db:62:48:d4:9a:
                    a8:91:40:ef:1b:45:4c:67:cf:04:a8:83:04:01:3f:
                    87:ff:c7:d1:16:60:48:70:2a:77:00:28:a8:7c:20:
                    08:11:ed:6c:1a:fc:10:a5:1c:e6:16:7c:12:9a:c6:
                    78:ce:f1:4c:88:4f:4f:a8:dd:66:45:32:df:d4:07:
                    90:cc:4a:a9:ed:5d:d8:99:43:0e:bd:92:7f:9e:f7:
                    d1:21:08:f2:74:58:0f:e9:ef:e4:21:38:a4:8f:8c:
                    e4:9f:c7:c8:1d:75:61:49:e0:a4:16:b6:49:c4:54:
                    e3:39:88:1a:7c:e7:8e:7f:fc:d9:63:a0:89:00:d2:
                    55:68:21:90:ab:60:c9:76:2f:65:97:dc:99:28:62:
                    47:54:1c:02:81:fb:ce:33:c0:6a:7f:d3:20:2f:71:
                    35:a1:c6:18:3f:17:be:2b:61:cf:51:50:80:59:49:
                    40:eb:72:b7:dc:58:fd:84:e8:6e:c4:02:7e:f2:1e:
                    f5:ee:28:ec:ec:45:3e:8e:9d:b2:7f:b1:a7:7b:34:
                    b2:79:33:d0:65:80:9c:e6:6a:91:8d:9e:42:f7:5d:
                    9b:27:d9:f5:d6:b4:26:6c:0f:81:78:f0:0d:7d:7c:
                    ac:f5:b4:6d:c7:b5:db:59:9e:60:73:3c:f1:69:36:
                    41:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:8D:92:FF:B0:D6:B9:63:5D:04:F6:C1:25:1C:B9:5A:CD:F1:0C:02
            X509v3 Authority Key Identifier:
                keyid:E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:fd:7f:7d:ff:fa:02:2d:3b:ec:e1:f1:e7:72:7e:b5:2e:d2:
         2f:65:2b:49:97:54:18:a7:af:b4:20:0a:de:72:a0:c7:ef:1e:
         39:e4:6a:e1:6c:77:f3:d1:7f:dc:20:05:24:dd:63:2d:71:90:
         39:8a:3a:46:55:9c:9f:e5:c3:0a:fc:f2:14:06:c7:48:73:95:
         6d:9e:3e:8c:6d:1f:e0:dd:7c:86:4b:eb:b7:97:bb:d9:79:66:
         59:9d:94:88:7a:13:a9:2f:95:82:fe:4c:d1:f5:ea:16:6b:2d:
         d3:cf:01:83:df:86:ed:35:d5:90:16:dc:74:1d:e0:a1:3e:a3:
         40:86:31:b5:54:1e:ac:86:91:b0:1a:2d:2e:3b:e3:87:06:42:
         c8:db:10:e3:17:4d:d3:dc:3e:47:90:34:c3:79:2c:cb:0a:36:
         e7:70:20:43:a5:2b:b9:83:ec:3c:8d:f6:cc:54:b0:9e:21:c8:
         7e:20:a5:12:ed:cc:bb:93:4b:24:21:df:cf:21:21:12:da:9f:
         26:47:c0:f0:5b:55:c7:8f:70:09:79:71:63:d5:57:14:e3:fa:
         1b:a8:1e:59:57:35:15:b9:2a:ed:04:20:b0:1b:6b:37:7d:ef:
         f7:2a:fc:94:f2:4e:96:5f:18:dd:c2:87:9a:bd:95:e5:1e:2f:
         d9:5f:a7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----