Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
File:                     qqbmeSWCHkuHnIA-wKUiRflnOtA.mft (raw, json)
Hash identifier:          xH9aZEOJWiwqqZLHS3JCTxdzKQ4k6ZwCweVhQJ3OsVY=
Subject key identifier:   93:33:69:F0:68:15:33:FD:96:53:BD:F8:71:20:8E:3D:F3:91:80:D2
Authority key identifier: AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0
Certificate issuer:       /CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
Certificate serial:       0198D4A7B70E774E3D59505C39E07E7D339D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
Manifest number:          03EB
Signing time:             Sat 23 Aug 2025 02:00:17 +0000
Manifest this update:     Sat 23 Aug 2025 02:00:17 +0000
Manifest next update:     Sun 24 Aug 2025 02:00:17 +0000
Files and hashes:         1: qqbmeSWCHkuHnIA-wKUiRflnOtA.crl (hash: Uk81NgU+hgpiQnLa+5MROJQ/Kg20+atiBr2+zfGcehQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:a7:b7:0e:77:4e:3d:59:50:5c:39:e0:7e:7d:33:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
        Validity
            Not Before: Aug 23 02:00:17 2025 GMT
            Not After : Aug 24 02:00:17 2025 GMT
        Subject: CN=933369f0681533fd9653bdf871208e3df39180d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:18:70:ca:89:be:1f:c0:43:08:7d:1c:4b:b9:
                    d5:85:d9:a7:be:ec:6d:f2:5b:e4:5b:c7:10:f5:b4:
                    b0:3b:8e:83:57:9e:75:99:3c:f7:f2:78:f4:54:0b:
                    e8:e5:30:b5:4b:d3:e3:93:ab:f3:e3:aa:16:f0:51:
                    ba:cb:87:f2:52:a8:5f:7d:4b:23:89:02:13:56:7f:
                    d4:ca:a8:65:de:c4:0e:98:ee:64:94:61:a3:3a:f6:
                    ff:2a:49:68:1a:25:f4:73:d7:0e:8a:f5:41:93:9d:
                    45:60:8d:d7:55:73:d9:51:8d:ec:ac:6f:de:a7:74:
                    c3:f2:7a:e8:90:7f:06:d9:fe:90:62:b2:d2:e4:41:
                    74:8c:bc:63:8f:c9:e8:8c:86:b8:3f:32:77:33:76:
                    f0:25:80:7c:f3:89:3a:b8:ac:d0:9b:f3:93:d0:00:
                    be:51:14:24:27:c0:08:6b:7a:89:7b:9f:60:ce:65:
                    8f:3f:83:87:85:7b:4c:e0:4a:32:68:2a:b7:4c:95:
                    2a:48:6e:9a:b1:33:6d:82:47:97:6f:c5:0b:2a:af:
                    50:bc:cd:9f:b5:e8:4a:15:83:f9:2e:26:b6:56:64:
                    46:d8:80:11:44:3e:e4:c1:c6:7e:13:1b:26:a1:2a:
                    f0:5d:d1:96:f6:32:0a:32:72:b1:bf:5e:8b:e9:18:
                    7f:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:33:69:F0:68:15:33:FD:96:53:BD:F8:71:20:8E:3D:F3:91:80:D2
            X509v3 Authority Key Identifier:
                keyid:AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:9e:25:3c:73:f0:df:0e:f1:b0:dd:fc:3f:11:11:67:23:97:
         4a:eb:b6:09:ca:a6:60:da:ed:e0:0c:86:8b:c1:fa:ed:a3:7c:
         db:61:b4:b0:ec:13:9c:8b:ad:51:3c:11:f2:7b:20:61:e6:1b:
         1e:f3:53:cb:fc:46:be:63:4c:19:93:4a:fa:84:dd:a8:b7:12:
         54:33:28:11:01:b5:72:69:42:c8:f1:21:09:ff:b6:b5:3a:24:
         93:28:90:fb:e7:1a:3e:b8:63:e0:0b:af:6f:10:8a:05:5c:68:
         47:48:bb:2d:ee:71:6c:54:34:85:bc:04:be:20:be:7a:28:ec:
         08:2c:4d:3a:1a:f0:92:72:7c:95:04:5c:65:02:f4:e2:23:f8:
         e7:54:3f:c7:7e:95:42:78:d8:0d:bf:f3:df:d4:10:15:ea:a0:
         d6:f6:e6:da:98:95:99:6c:e3:f4:e7:eb:6c:ba:2f:f9:fc:70:
         70:cf:ea:15:aa:dc:49:35:50:cf:ef:0b:11:39:c3:7a:b6:4a:
         94:26:69:87:5f:17:72:93:1f:3e:35:7b:5f:85:ac:7f:f0:58:
         64:98:f3:c8:d5:8c:0d:09:33:bd:c5:2a:fe:4a:5d:54:2d:d7:
         e3:c6:db:f1:54:d6:76:69:b6:05:e0:c2:c8:c7:99:e9:2d:90:
         1d:85:47:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----