Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ade60a-fd8c-422e-bca8-9a0284b3adc1/1/d4LgCn_HYX2UJguB_SKjo_PcaG0.mft
File:                     d4LgCn_HYX2UJguB_SKjo_PcaG0.mft (raw, json)
Hash identifier:          aB4GMS4yZUgD/AIuHxf/tfMGCjgr31RcDM1QTq+qO/k=
Subject key identifier:   AE:84:08:EF:CF:43:F1:39:22:8A:06:1C:52:2B:BD:5A:CC:97:42:AD
Authority key identifier: 77:82:E0:0A:7F:C7:61:7D:94:26:0B:81:FD:22:A3:A3:F3:DC:68:6D
Certificate issuer:       /CN=7782e00a7fc7617d94260b81fd22a3a3f3dc686d
Certificate serial:       0198D660AF24D371D32CBFAC2024194C53FC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d4LgCn_HYX2UJguB_SKjo_PcaG0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/ade60a-fd8c-422e-bca8-9a0284b3adc1/1/d4LgCn_HYX2UJguB_SKjo_PcaG0.mft
Manifest number:          0AD8
Signing time:             Sat 23 Aug 2025 10:01:57 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:57 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:57 +0000
Files and hashes:         1: d4LgCn_HYX2UJguB_SKjo_PcaG0.crl (hash: SWJjabywcxw/IZ4PhmehEaWndQJtTasYJnXUBU3KTQY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/ade60a-fd8c-422e-bca8-9a0284b3adc1/1/d4LgCn_HYX2UJguB_SKjo_PcaG0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/ade60a-fd8c-422e-bca8-9a0284b3adc1/1/d4LgCn_HYX2UJguB_SKjo_PcaG0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d4LgCn_HYX2UJguB_SKjo_PcaG0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:af:24:d3:71:d3:2c:bf:ac:20:24:19:4c:53:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7782e00a7fc7617d94260b81fd22a3a3f3dc686d
        Validity
            Not Before: Aug 23 10:01:57 2025 GMT
            Not After : Aug 24 10:01:57 2025 GMT
        Subject: CN=ae8408efcf43f139228a061c522bbd5acc9742ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:8b:07:ff:a8:df:4f:b2:bf:3f:53:dc:ad:d7:
                    15:ef:01:aa:03:5f:34:86:73:29:c7:c2:76:b2:40:
                    e1:e2:16:56:3b:56:0b:bb:c9:e3:46:f3:ee:b2:e7:
                    92:4c:db:d1:6e:98:4a:6f:e0:88:bd:e6:c3:7e:a7:
                    29:bc:dd:d0:6c:0b:be:e4:e5:cb:d4:14:83:9c:a2:
                    55:8a:f9:a6:75:b8:5c:87:c0:48:e7:1c:6e:c2:f8:
                    25:8e:62:e6:b6:ef:2d:5f:6a:cc:75:99:68:14:57:
                    30:33:1e:d4:73:52:a5:54:e0:85:b7:b0:b9:a6:46:
                    50:62:08:1d:45:4c:13:55:c9:49:7b:2d:fa:bc:93:
                    63:65:37:54:74:ef:e8:f4:1d:e2:1c:25:b9:7f:5d:
                    d3:ce:f2:54:dc:fa:14:04:5b:1f:7a:61:a5:a8:72:
                    fb:de:2b:32:1f:00:d3:98:cc:8e:f4:f5:60:e6:41:
                    4a:b3:84:11:20:2e:11:6c:01:48:d6:82:b4:df:06:
                    ea:7c:45:e3:4e:c2:a2:63:eb:1f:35:ce:34:f7:2d:
                    05:ab:48:7a:a3:04:00:3f:08:8d:e0:e6:d9:83:8c:
                    7e:12:04:d2:61:56:77:57:fe:79:c5:ec:28:de:97:
                    d4:43:df:6b:d4:d3:4a:42:ff:1c:2e:8a:de:99:c2:
                    3b:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:84:08:EF:CF:43:F1:39:22:8A:06:1C:52:2B:BD:5A:CC:97:42:AD
            X509v3 Authority Key Identifier:
                keyid:77:82:E0:0A:7F:C7:61:7D:94:26:0B:81:FD:22:A3:A3:F3:DC:68:6D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4LgCn_HYX2UJguB_SKjo_PcaG0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ade60a-fd8c-422e-bca8-9a0284b3adc1/1/d4LgCn_HYX2UJguB_SKjo_PcaG0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ade60a-fd8c-422e-bca8-9a0284b3adc1/1/d4LgCn_HYX2UJguB_SKjo_PcaG0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:f6:8e:50:89:57:f6:10:d5:20:18:c5:dd:99:25:ec:2f:ab:
         3f:b1:91:f1:86:c8:90:4e:d4:80:3c:9a:1b:3e:93:be:cb:bb:
         6c:b0:e8:16:6e:e8:3b:87:61:85:2e:a2:0c:08:66:c5:25:af:
         10:96:02:20:0e:e2:24:a7:ea:34:29:e1:c7:14:88:5d:14:b4:
         59:21:0e:cb:ea:73:63:b9:97:2a:ea:c9:a8:05:fb:f0:41:20:
         91:10:c2:dd:61:b0:1a:1e:e4:47:cf:e3:a9:80:79:c9:43:50:
         15:d7:9a:53:31:f7:b1:48:9f:7d:d7:98:ea:65:75:a8:24:00:
         93:dc:b6:44:f8:1e:8d:6e:ab:aa:72:3b:4b:92:20:9c:1a:f4:
         c4:80:fd:7b:85:be:d1:24:7d:51:d8:42:ae:ce:d8:74:00:72:
         28:91:a8:d6:50:94:1a:85:65:e1:85:10:dc:05:ba:44:cc:2b:
         86:50:41:85:ff:11:2d:18:46:ee:10:63:ac:e0:58:f8:90:b0:
         db:c7:2c:e2:07:44:33:29:d9:5f:bb:a6:14:29:83:42:99:df:
         7e:be:f9:a3:a8:3e:23:ec:37:05:1f:58:b6:e9:32:b6:45:be:
         43:54:6b:7e:90:15:3e:6e:f6:43:20:45:fb:29:0a:58:cd:c8:
         0e:4e:32:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----