Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft
File:                     WZyb6F-CikOPCNH1CvrCUz0qbsI.mft (raw, json)
Hash identifier:          LE9MaEnrN1FKpKO5sfSXH0HfnmEECryPazgwRH8GEec=
Subject key identifier:   4E:1E:89:93:40:D3:AF:E9:5C:2E:66:48:AD:21:2C:6E:03:9E:0D:0C
Authority key identifier: 59:9C:9B:E8:5F:82:8A:43:8F:08:D1:F5:0A:FA:C2:53:3D:2A:6E:C2
Certificate issuer:       /CN=599c9be85f828a438f08d1f50afac2533d2a6ec2
Certificate serial:       0198D6CD62A27B9193ECA420437FD734611E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/WZyb6F-CikOPCNH1CvrCUz0qbsI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft
Manifest number:          061A
Signing time:             Sat 23 Aug 2025 12:00:40 +0000
Manifest this update:     Sat 23 Aug 2025 12:00:40 +0000
Manifest next update:     Sun 24 Aug 2025 12:00:40 +0000
Files and hashes:         1: WZyb6F-CikOPCNH1CvrCUz0qbsI.crl (hash: dKLhi83DRh72vniTl6YgAZ/TcoDo45SKdS7KgZMbfMQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/WZyb6F-CikOPCNH1CvrCUz0qbsI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:cd:62:a2:7b:91:93:ec:a4:20:43:7f:d7:34:61:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=599c9be85f828a438f08d1f50afac2533d2a6ec2
        Validity
            Not Before: Aug 23 12:00:40 2025 GMT
            Not After : Aug 24 12:00:40 2025 GMT
        Subject: CN=4e1e899340d3afe95c2e6648ad212c6e039e0d0c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:a7:18:eb:e5:d6:d0:8d:81:60:b5:31:36:21:
                    7d:bf:b3:54:d3:13:af:8e:71:08:29:25:e5:85:09:
                    c9:9f:15:c0:cf:cb:2d:de:58:72:7d:09:69:f3:58:
                    5f:e0:5b:e3:7b:2a:37:a0:4c:46:54:76:3d:6a:96:
                    a2:e9:e3:9b:31:a6:ca:a4:20:ea:36:d3:fb:5b:1e:
                    f5:88:4a:f4:6e:ee:15:99:d1:ee:ba:3c:b3:11:97:
                    bd:ca:46:49:23:6f:2b:c4:3a:91:1d:bb:bb:42:c0:
                    18:47:76:cf:f8:41:8b:21:25:80:d1:7d:1f:f9:af:
                    a2:69:a9:f7:a1:cd:02:31:4d:88:0f:39:b4:04:56:
                    9d:55:f3:e8:62:c8:04:ab:1a:f8:b0:53:5e:68:31:
                    30:66:58:3b:04:2b:a6:60:40:3a:1a:fc:6e:4c:f6:
                    e4:9c:04:5d:3b:94:86:15:8a:51:73:04:fa:46:5b:
                    ae:ca:21:08:05:6f:27:9b:a3:b0:bc:81:45:67:42:
                    c6:8a:65:1f:e3:77:5d:b7:d9:27:4d:b6:7d:aa:39:
                    c9:67:1f:c2:8a:7b:96:6b:0e:b6:88:eb:ff:ea:d6:
                    78:9d:7d:4f:35:b9:1f:db:58:a9:43:89:42:81:28:
                    db:cb:5f:0b:e4:57:96:5a:f0:ba:0b:0e:7a:3a:76:
                    b9:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:1E:89:93:40:D3:AF:E9:5C:2E:66:48:AD:21:2C:6E:03:9E:0D:0C
            X509v3 Authority Key Identifier:
                keyid:59:9C:9B:E8:5F:82:8A:43:8F:08:D1:F5:0A:FA:C2:53:3D:2A:6E:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZyb6F-CikOPCNH1CvrCUz0qbsI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:4a:63:8a:12:0d:dd:bb:2e:58:dd:69:95:60:6d:a5:b1:62:
         be:ef:e1:af:c0:83:48:45:55:39:7e:28:ef:e8:4f:9d:08:4a:
         04:d6:24:38:b3:6e:94:38:2d:ee:74:0d:af:f6:3b:be:a7:18:
         67:fd:60:d3:30:36:3a:90:09:b6:37:20:ec:ee:1a:c6:c3:90:
         4c:3a:c9:b9:96:09:c6:43:ad:5b:51:df:91:69:66:c3:aa:e4:
         32:50:3b:04:7b:36:3e:e6:c8:72:49:fd:15:f3:77:20:e8:dd:
         5b:cf:8a:31:c2:8c:26:5d:0b:fd:4b:40:99:bf:d4:72:f7:07:
         4a:e7:9a:75:fb:42:9f:39:de:66:4d:a0:44:9d:3a:b1:85:8e:
         4e:14:91:00:2d:5b:b0:9c:6c:91:b3:9c:5d:9b:ea:f9:6d:04:
         4d:66:9e:25:28:21:9f:f7:f6:82:d0:d7:4a:5e:3c:ea:2f:c6:
         d1:d3:ae:73:f7:eb:cc:b6:42:6e:10:19:a2:3f:ed:27:aa:7b:
         fb:6b:01:5b:9b:19:0c:b7:11:90:a8:10:2a:25:1d:16:fc:fc:
         13:32:27:ab:d2:a3:38:24:6a:20:84:c7:2b:0d:e8:61:c3:fe:
         cf:dc:96:d5:a3:b1:90:bc:47:cd:98:9c:2d:8f:ff:13:8a:06:
         0f:9d:46:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----