Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
File:                     YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft (raw, json)
Hash identifier:          z/o2vBSOTGb9/NxuHKaQB4+wtqG/BWOBOSYc9U6lz5M=
Subject key identifier:   D9:49:0A:2A:3D:FF:37:26:C5:89:57:8B:4C:58:0B:B6:00:1A:B8:CA
Authority key identifier: 63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB
Certificate issuer:       /CN=63062302b438592376c4264f49dc5e673edb2cfb
Certificate serial:       0198D4740CCCAC7FBD0109C5F835BDD4E4E5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
Manifest number:          0A33
Signing time:             Sat 23 Aug 2025 01:03:51 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:51 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:51 +0000
Files and hashes:         1: YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl (hash: zD31RMvA1GK/kTwiG/U4biv1U7NfX71qzlW/brpkm+Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:74:0c:cc:ac:7f:bd:01:09:c5:f8:35:bd:d4:e4:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63062302b438592376c4264f49dc5e673edb2cfb
        Validity
            Not Before: Aug 23 01:03:51 2025 GMT
            Not After : Aug 24 01:03:51 2025 GMT
        Subject: CN=d9490a2a3dff3726c589578b4c580bb6001ab8ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:5a:5f:04:ac:ad:e0:ec:32:80:bf:92:51:b5:
                    78:c1:f6:52:e0:e5:2f:cf:b4:ef:42:5c:04:00:0b:
                    3f:16:37:8f:fd:69:a6:2a:6b:d1:d9:f0:5f:e7:d9:
                    b0:27:fc:90:ee:b7:b7:4c:de:ee:22:84:5b:3c:6e:
                    f6:52:88:ca:8b:ff:78:c4:78:23:85:0a:52:00:22:
                    d2:97:6d:a4:18:63:45:ef:07:59:9e:ee:d9:76:86:
                    2b:bb:75:a1:ba:fc:7b:21:9c:72:ce:56:64:42:74:
                    38:41:b3:64:d7:fb:14:50:95:65:07:a0:94:d4:42:
                    97:90:9b:93:36:38:00:1b:45:57:22:cc:ed:5a:b5:
                    4b:ff:d0:f3:ab:f4:44:54:b7:70:98:70:92:e8:af:
                    fe:48:45:12:4e:8b:83:f9:2f:05:25:10:a8:7b:c3:
                    af:12:94:dc:3d:2c:2a:2f:a1:ee:80:33:05:9f:8a:
                    ce:3e:93:33:34:dd:86:00:da:0f:4d:1c:10:22:17:
                    6d:50:b5:0e:20:da:ca:c7:f2:cc:e0:9e:45:17:a7:
                    7b:a4:a3:96:fe:96:32:3e:5f:5b:e7:b9:5d:7d:56:
                    07:54:19:ce:e5:82:3e:e6:76:b7:8b:12:68:47:99:
                    94:dc:f2:0f:db:69:2b:d4:ec:94:00:3a:be:09:dd:
                    c8:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:49:0A:2A:3D:FF:37:26:C5:89:57:8B:4C:58:0B:B6:00:1A:B8:CA
            X509v3 Authority Key Identifier:
                keyid:63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:f1:e2:c7:3f:ec:34:17:71:46:4e:df:af:d4:2f:37:14:32:
         0c:ea:ce:72:d1:4a:4b:3e:33:fb:6d:12:7a:a6:37:7a:b7:e8:
         05:74:d1:bb:07:05:b2:9e:0b:76:12:b9:2b:a9:5e:6e:b3:88:
         bd:a5:82:d7:b1:ca:75:d2:89:86:eb:3d:6d:2a:9c:4b:30:54:
         88:ff:be:93:22:b5:6f:15:29:a5:5d:70:ff:b6:40:15:2d:42:
         48:8b:ca:88:32:38:2b:dd:24:5f:6b:ef:b9:fc:e0:c7:6c:a7:
         6a:d6:a1:8e:80:3f:19:85:d7:59:6d:fc:e4:e8:34:e8:1c:91:
         5c:a7:64:32:8a:67:fc:6a:52:79:c6:01:95:a6:d3:47:81:3d:
         3c:32:c0:a3:e9:d7:8f:60:9b:38:0a:96:80:0e:ba:2a:78:df:
         d7:e0:12:80:39:55:4f:19:dd:b2:bb:09:bb:78:32:4a:6b:10:
         da:33:86:c8:03:44:c8:18:49:e7:4a:24:26:8d:5c:64:48:16:
         13:56:e1:2a:90:5b:c2:18:c2:16:89:6f:84:0a:71:d2:66:bc:
         e9:98:d8:79:8f:5f:6d:4d:1b:14:7c:20:84:22:94:0c:49:8f:
         ae:dd:bc:e3:a2:0c:ec:c7:b0:63:66:d2:7e:f9:5f:33:46:8c:
         a3:5c:c7:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----