Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
File:                     EDfew086MutlAvFmKoKiD4teohw.mft (raw, json)
Hash identifier:          bEO89uEc6Lho6KdynQsLYBceJJ4wjLQVX+4KHX6I8xo=
Subject key identifier:   CC:EB:B9:1B:E7:AE:F7:D9:4A:77:D1:84:C3:20:37:D4:42:FF:EF:93
Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C
Certificate issuer:       /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
Certificate serial:       0198D6CD9866DA04D325B37EC867FCDC9C25
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
Manifest number:          1648
Signing time:             Sat 23 Aug 2025 12:00:54 +0000
Manifest this update:     Sat 23 Aug 2025 12:00:54 +0000
Manifest next update:     Sun 24 Aug 2025 12:00:54 +0000
Files and hashes:         1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: J2kdTDMABKd+H/29FG9sML/9iZqk8c+Tt1nwBTzgyeo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:cd:98:66:da:04:d3:25:b3:7e:c8:67:fc:dc:9c:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
        Validity
            Not Before: Aug 23 12:00:54 2025 GMT
            Not After : Aug 24 12:00:54 2025 GMT
        Subject: CN=ccebb91be7aef7d94a77d184c32037d442ffef93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:ff:60:31:4a:28:5c:13:08:1f:f2:ad:aa:f4:
                    67:93:57:b4:dc:b8:e3:a8:77:1c:70:4d:f0:9e:1c:
                    4d:11:05:0e:5c:34:f0:52:34:43:77:ab:43:8f:49:
                    e9:d1:28:eb:3a:49:5c:c7:c5:33:73:3f:2b:8b:18:
                    36:62:61:92:ad:4e:11:c5:e2:64:0a:75:02:61:f1:
                    e8:d3:fb:7f:77:0b:4b:aa:74:64:9a:8d:4b:fe:61:
                    fd:fc:50:82:f3:89:9b:f5:34:0c:29:d2:29:cd:25:
                    26:5d:7e:1b:23:db:00:2e:80:b2:ab:37:c3:d3:24:
                    38:95:88:92:da:ef:d4:74:66:51:28:10:a9:de:96:
                    d4:23:01:7f:ff:a8:2b:21:0c:61:c8:0f:5a:4c:8d:
                    a5:9a:74:de:33:66:e3:b3:5d:62:dc:78:4b:07:10:
                    c0:96:04:3b:32:1e:c5:f7:de:5f:48:aa:92:c4:a6:
                    b0:f9:fc:f3:d1:a2:8a:8d:4c:df:e0:e5:67:d7:b8:
                    5c:39:9a:c4:a9:dc:cf:34:ec:76:06:4c:c0:ca:73:
                    1f:50:12:a1:85:9a:49:e3:94:42:d3:01:88:24:77:
                    69:bc:b6:eb:05:bb:10:74:8f:cc:6c:20:71:cb:dd:
                    12:d4:dd:f1:d1:dc:78:8d:c7:4d:37:1c:df:81:7a:
                    71:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:EB:B9:1B:E7:AE:F7:D9:4A:77:D1:84:C3:20:37:D4:42:FF:EF:93
            X509v3 Authority Key Identifier:
                keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:1e:4c:33:bf:b5:11:d9:7a:93:76:9b:fd:0b:d8:da:80:53:
         f8:24:f0:f5:16:fd:3e:21:ee:8d:6e:9f:ba:b1:29:74:dc:2f:
         30:5d:7f:0c:84:c3:54:07:93:2e:bb:06:ee:4c:d8:50:04:9b:
         80:b9:1d:ac:59:ee:b9:49:c0:a4:18:ae:7e:23:ae:e9:23:90:
         f0:9e:15:0a:38:99:c9:aa:1d:c9:d2:93:b8:e5:61:e6:87:f0:
         c8:98:44:6f:ae:3b:b4:73:2d:86:0d:4d:1d:0c:ce:2d:3e:93:
         6a:7b:2d:51:8a:dc:77:b6:10:f6:be:5b:e6:56:d6:16:0d:50:
         f9:35:4c:19:cd:e8:3f:b7:4c:37:de:1a:1f:27:36:00:cb:65:
         c2:61:a5:6f:d9:13:d0:c6:3f:17:a7:95:d8:9d:5a:4e:56:10:
         ac:41:de:e8:f2:68:49:3c:56:cd:64:ee:0e:7a:b8:eb:b6:31:
         6f:de:03:f3:e0:11:63:49:36:7e:04:0f:11:17:7d:4c:5e:ad:
         3c:46:cd:f3:fd:37:48:27:2b:c4:ca:41:c1:6d:80:ce:fe:ae:
         59:43:74:b9:0a:73:21:51:c2:0c:ca:a9:74:3d:71:dc:b7:f2:
         bf:d5:5b:b0:7b:f4:e7:12:ef:0f:c2:3a:41:34:93:61:bc:a7:
         4d:1e:aa:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----