Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft
File:                     uU8woHaUohE5ZIclom6zTOSha6s.mft (raw, json)
Hash identifier:          5ommWNy4iaPmnQcWyFIc9jvqcqcKGu4T9xvSkXLAjus=
Subject key identifier:   93:28:CD:A2:56:B2:41:E0:07:E8:22:DE:A0:92:3A:F3:35:96:BF:4E
Authority key identifier: B9:4F:30:A0:76:94:A2:11:39:64:87:25:A2:6E:B3:4C:E4:A1:6B:AB
Certificate issuer:       /CN=b94f30a07694a21139648725a26eb34ce4a16bab
Certificate serial:       0198D54E321B9212751D90F9435778736FF5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uU8woHaUohE5ZIclom6zTOSha6s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft
Manifest number:          02DD
Signing time:             Sat 23 Aug 2025 05:02:08 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:08 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:08 +0000
Files and hashes:         1: uU8woHaUohE5ZIclom6zTOSha6s.crl (hash: jVkzRTT0xJOQuWoJzfEpcGQ7arq83NEobDTEmkDWcsQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uU8woHaUohE5ZIclom6zTOSha6s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:32:1b:92:12:75:1d:90:f9:43:57:78:73:6f:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b94f30a07694a21139648725a26eb34ce4a16bab
        Validity
            Not Before: Aug 23 05:02:08 2025 GMT
            Not After : Aug 24 05:02:08 2025 GMT
        Subject: CN=9328cda256b241e007e822dea0923af33596bf4e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:c9:c3:fd:b3:a0:84:c9:42:13:bc:ad:0c:a8:
                    43:71:45:a2:b3:03:b6:77:cd:14:06:ba:d8:c7:e8:
                    1a:f8:9d:42:bb:81:b5:c1:cd:63:2b:a5:4a:fe:44:
                    ef:bb:31:42:c6:08:ab:61:62:16:94:df:02:bc:65:
                    4d:9f:d4:85:47:48:5d:fa:67:6c:ac:7e:d1:07:52:
                    78:4c:ee:79:d7:e2:56:d5:2e:cd:d0:a4:dc:ee:1d:
                    b8:66:5c:be:48:c0:26:e6:bb:b2:d2:21:e1:c9:36:
                    da:7f:be:e6:1a:c9:87:85:74:5d:1b:f7:b7:3f:e5:
                    ee:47:a0:9f:ff:73:50:a2:23:be:b8:25:1d:92:82:
                    1a:8a:cc:fa:6e:37:1b:23:88:77:ce:2e:bb:95:25:
                    4f:ad:5a:d7:02:61:8d:f8:39:27:7e:4f:5a:aa:77:
                    c3:8f:38:16:70:90:f9:20:31:3b:c9:6f:c6:95:70:
                    bb:b3:f2:64:40:87:0d:f7:4f:58:e6:e4:b7:6c:7f:
                    b2:07:55:fc:36:b2:42:0d:0c:d9:c2:6e:85:d4:8e:
                    6a:c8:40:2f:de:f4:49:3a:2a:a2:6c:d4:4b:46:ae:
                    fd:fd:2e:7b:e3:aa:46:8c:c1:99:ea:07:01:dc:a9:
                    33:d4:ab:30:1c:e7:d3:c5:df:cc:07:7e:ee:f7:aa:
                    b5:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:28:CD:A2:56:B2:41:E0:07:E8:22:DE:A0:92:3A:F3:35:96:BF:4E
            X509v3 Authority Key Identifier:
                keyid:B9:4F:30:A0:76:94:A2:11:39:64:87:25:A2:6E:B3:4C:E4:A1:6B:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uU8woHaUohE5ZIclom6zTOSha6s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:ff:ee:94:3e:65:72:74:f1:f1:d6:5e:0e:76:d6:a5:ad:3b:
         f3:0c:9b:49:dc:d2:62:8c:2b:e8:0a:88:48:a7:ec:ac:87:43:
         5d:0f:6b:1b:73:82:e5:af:86:20:14:e0:4c:c2:93:5e:b8:f9:
         63:56:39:c9:20:53:a9:55:2e:16:65:9e:5f:6e:95:2d:7d:f8:
         03:f0:3b:32:5e:8b:fb:74:51:27:7a:e3:82:04:92:41:7b:da:
         dc:01:b7:6f:5a:2e:82:a8:36:cc:be:17:76:16:c5:f7:8b:10:
         2b:e2:73:10:f0:6a:0f:89:b1:49:18:4f:a7:0b:76:ea:84:fc:
         d4:f5:9d:eb:0f:ad:7f:07:07:dc:9a:2b:8e:b7:a9:e4:18:10:
         73:9f:94:2e:6d:81:a6:5d:d4:59:50:6c:8d:0e:b8:e5:cd:ce:
         27:7b:ed:f2:6e:0a:40:96:a7:fa:ce:52:40:3a:c5:39:e2:fa:
         30:ea:f9:b3:02:36:b7:72:2f:7f:c6:52:2b:d3:c6:20:79:88:
         f4:f9:67:e3:e8:da:ef:8e:16:24:92:0a:1e:f8:a3:73:d0:21:
         11:34:a6:79:7d:c2:39:ba:f0:02:d4:89:7f:38:7d:0a:e9:cc:
         4f:95:b7:d8:e0:24:dd:fb:09:a6:b7:cd:ff:21:96:45:55:16:
         8d:bb:60:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----