Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
File:                     UNorr8N6OYjdKUyROuUiDgONuWQ.mft (raw, json)
Hash identifier:          HBUVKeobOP7TszX7yQ/FeA9WbDXex9lG0qtFvtMK/GI=
Subject key identifier:   E7:B3:21:4D:D0:71:66:A8:70:8F:54:3F:D0:59:BB:CA:71:9D:7D:CA
Authority key identifier: 50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64
Certificate issuer:       /CN=50da2bafc37a3988dd294c913ae5220e038db964
Certificate serial:       0198D7A9480B1222600A78B183825854FF00
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
Manifest number:          1597
Signing time:             Sat 23 Aug 2025 16:00:52 +0000
Manifest this update:     Sat 23 Aug 2025 16:00:52 +0000
Manifest next update:     Sun 24 Aug 2025 16:00:52 +0000
Files and hashes:         1: UNorr8N6OYjdKUyROuUiDgONuWQ.crl (hash: aFIFuUBTgiatVhipoL4vM0B5wlqtVgf+appEhOpDmuw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:a9:48:0b:12:22:60:0a:78:b1:83:82:58:54:ff:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50da2bafc37a3988dd294c913ae5220e038db964
        Validity
            Not Before: Aug 23 16:00:52 2025 GMT
            Not After : Aug 24 16:00:52 2025 GMT
        Subject: CN=e7b3214dd07166a8708f543fd059bbca719d7dca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:d8:09:ae:bc:b1:3e:ab:db:20:1b:84:ea:ea:
                    a0:15:b9:16:09:f7:26:39:cd:ae:ed:ab:3d:75:45:
                    23:8c:94:db:55:6f:64:d2:b6:0a:1a:a4:84:b3:3f:
                    51:e0:d6:26:1c:3d:1a:3f:23:3b:69:8c:c2:29:84:
                    36:c4:65:9f:91:b0:d2:f8:b2:9d:bd:92:0c:c5:d0:
                    86:31:c1:06:ec:4a:97:71:c9:95:3b:db:fa:15:c8:
                    71:9e:53:0b:80:85:dd:27:d0:ce:94:09:cc:ec:d7:
                    a2:f7:19:fc:21:9d:a1:8e:f7:21:82:6a:79:08:e0:
                    f5:8a:a0:67:ab:5f:4c:01:e1:e8:a6:e5:46:a1:0d:
                    0e:91:2b:1c:b1:e0:ea:7a:53:8b:d1:81:d0:95:65:
                    04:03:a5:7c:87:78:9f:b6:26:59:2b:f4:19:d7:51:
                    99:0c:1b:0d:fe:ec:46:2e:b5:b8:e2:c6:49:4d:31:
                    98:b3:63:bf:fb:9b:26:50:26:5c:6e:b2:46:41:03:
                    84:38:3c:39:63:e1:92:37:48:a7:2f:83:ea:d0:70:
                    04:eb:20:82:ad:8b:3a:36:17:64:a0:50:87:ec:8b:
                    bc:09:76:df:35:29:99:25:b8:24:46:2a:2a:4d:2c:
                    48:96:51:9a:7e:27:b7:7f:a0:a4:00:a7:34:34:7b:
                    72:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:B3:21:4D:D0:71:66:A8:70:8F:54:3F:D0:59:BB:CA:71:9D:7D:CA
            X509v3 Authority Key Identifier:
                keyid:50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:b2:d6:0c:91:2a:38:52:13:7c:c1:b4:d0:98:60:df:9a:3f:
         8e:e0:eb:8a:77:aa:04:02:7c:62:96:40:08:88:6d:cf:6f:20:
         24:74:4a:0e:90:48:1c:87:c0:e8:62:a9:b2:b2:b1:22:e3:40:
         fb:f8:68:96:4e:29:19:af:33:67:83:46:e6:35:59:aa:e2:00:
         4d:93:72:9c:90:5c:24:62:07:ed:82:a3:e2:16:7f:be:5c:9b:
         cb:b0:f6:c5:fe:5d:b8:7e:88:5d:7a:6d:d6:91:f0:15:13:d2:
         61:0c:a0:30:62:6b:9c:25:f9:fb:ef:60:6f:22:8f:aa:03:a8:
         2e:74:53:dc:75:86:53:01:d6:ac:16:0f:77:87:bd:db:bc:e1:
         ce:e7:c1:3b:06:13:e1:27:b2:02:9a:22:d1:83:18:69:6c:24:
         89:a7:09:2a:63:21:fd:ee:6c:f9:e9:39:a9:cb:64:a1:6c:69:
         ab:0d:47:8d:3c:af:aa:c3:0b:32:0d:8b:87:bc:85:61:8f:17:
         b5:c1:c0:a6:f9:c4:28:ef:ce:98:6d:59:5d:df:ff:a7:d9:55:
         17:d2:fb:16:a8:e7:45:55:ea:0f:e9:14:7c:96:95:c0:06:ed:
         0a:63:85:de:a9:90:39:20:96:f3:c5:63:b5:7f:e9:04:e4:78:
         e2:e8:57:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----