Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft
File:                     9h0r7udUOkGpCKGgHs_AqHJqOuI.mft (raw, json)
Hash identifier:          dfVKDQBM45b4UT9Uq+g+Pgxm+UU9z1BIRN7S41AQdr4=
Subject key identifier:   2A:C3:90:19:CC:40:B1:9C:4D:CE:4A:CB:92:09:AA:59:05:E3:5D:28
Authority key identifier: F6:1D:2B:EE:E7:54:3A:41:A9:08:A1:A0:1E:CF:C0:A8:72:6A:3A:E2
Certificate issuer:       /CN=f61d2beee7543a41a908a1a01ecfc0a8726a3ae2
Certificate serial:       0198D5BB88D704B4C34E3112A9D9583E78B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9h0r7udUOkGpCKGgHs_AqHJqOuI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft
Manifest number:          0AEB
Signing time:             Sat 23 Aug 2025 07:01:33 +0000
Manifest this update:     Sat 23 Aug 2025 07:01:33 +0000
Manifest next update:     Sun 24 Aug 2025 07:01:33 +0000
Files and hashes:         1: 9h0r7udUOkGpCKGgHs_AqHJqOuI.crl (hash: sTzwCZlJuTPjFoOr4Ea9WoIHxPArVe1dP+kZl7tQQl0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9h0r7udUOkGpCKGgHs_AqHJqOuI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:bb:88:d7:04:b4:c3:4e:31:12:a9:d9:58:3e:78:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f61d2beee7543a41a908a1a01ecfc0a8726a3ae2
        Validity
            Not Before: Aug 23 07:01:33 2025 GMT
            Not After : Aug 24 07:01:33 2025 GMT
        Subject: CN=2ac39019cc40b19c4dce4acb9209aa5905e35d28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:03:11:f7:fe:d1:a6:6b:04:39:f4:26:6c:e2:
                    de:eb:c6:19:91:93:73:31:2d:a2:ac:75:d9:4e:ff:
                    7d:93:cc:f7:af:8b:95:fd:e8:69:ec:89:4c:48:9a:
                    ad:85:a7:22:9e:a3:96:bc:4d:65:c1:70:f9:81:74:
                    17:2e:d9:e5:c6:b0:2c:1a:94:53:d3:ca:b1:86:57:
                    f6:85:50:90:24:da:77:c2:df:ea:be:b4:d8:44:3f:
                    e7:fb:f6:02:85:28:68:24:3e:3e:d5:3f:ee:8f:da:
                    0f:9b:63:8a:23:f6:59:6c:ba:2d:f7:ea:7a:e0:f0:
                    2d:b9:10:03:34:1e:b2:61:c3:d3:90:0f:aa:8a:08:
                    5a:0f:3c:74:b5:18:f5:dd:bc:dd:4c:6b:37:55:11:
                    2e:92:84:69:a4:9a:be:4e:16:fa:31:bf:7c:6f:37:
                    99:fb:6a:dd:36:ee:01:56:50:0b:e0:c2:41:8e:19:
                    33:23:12:67:32:99:67:19:93:88:8a:14:90:b3:2d:
                    bc:19:f5:b0:56:92:09:5f:94:15:4e:7e:03:33:58:
                    e6:c9:a7:9c:f9:91:6c:d8:38:00:13:56:e5:d9:9f:
                    f6:c3:16:43:e2:a4:56:4a:f9:87:96:9d:30:1b:55:
                    e1:d8:7c:7c:3f:ee:9e:a8:c6:90:06:99:7b:f9:21:
                    1f:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:C3:90:19:CC:40:B1:9C:4D:CE:4A:CB:92:09:AA:59:05:E3:5D:28
            X509v3 Authority Key Identifier:
                keyid:F6:1D:2B:EE:E7:54:3A:41:A9:08:A1:A0:1E:CF:C0:A8:72:6A:3A:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9h0r7udUOkGpCKGgHs_AqHJqOuI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/29/1edf10-d3df-40f5-b4a3-a731e9e1e533/1/9h0r7udUOkGpCKGgHs_AqHJqOuI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:26:f7:6b:0c:6d:db:62:bf:11:07:8b:9b:2c:2e:92:78:ba:
         bd:31:23:e4:62:9b:54:2c:7f:4a:4c:6b:89:5b:e6:58:b1:bb:
         f0:c8:6e:d8:80:3e:45:63:94:b3:50:49:6a:e1:48:d6:1c:6b:
         05:cb:b2:cd:13:d8:5e:9d:28:94:f9:c6:4c:28:78:a1:03:f4:
         52:ff:a7:96:a6:a3:c7:5a:06:db:35:6e:69:13:68:6b:43:e1:
         ad:8f:8a:ee:39:d7:7d:ff:90:e7:b4:9d:2b:ec:24:99:91:4b:
         9c:41:68:b4:a8:25:74:db:0e:1d:13:25:b7:72:f6:72:99:a1:
         60:aa:70:b5:32:d4:9c:96:72:a0:a5:15:a5:fc:d5:db:6f:6e:
         65:19:92:cd:21:fd:4d:9b:61:a7:b4:b3:9a:2e:c6:78:18:82:
         d0:64:4e:36:92:21:91:87:6f:03:25:6a:d7:ca:21:5a:09:ae:
         bd:42:29:f1:c9:37:2a:d7:db:dc:6b:b7:25:ce:54:a3:11:48:
         12:92:0b:c5:75:4a:7e:54:10:76:cf:2c:52:0d:4f:dd:75:ea:
         07:9d:82:00:68:f7:c7:01:8e:05:cc:d6:a3:d5:cf:65:e9:9c:
         fb:4b:75:0d:fe:67:d8:9c:7a:77:94:51:6e:bc:c4:bf:d1:ab:
         04:9d:10:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----