Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
File:                     ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft (raw, json)
Hash identifier:          2v2QjSmIzJG5iRuQ+TBfhxbNhSEACiT1atnc6BzZXk8=
Subject key identifier:   04:74:3D:63:7B:AE:20:6E:02:48:CA:CD:E2:9B:06:66:0B:1A:8D:C1
Authority key identifier: 6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
Certificate issuer:       /CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Certificate serial:       0198D4732D820AE32BD80D78D3E3524B5BA9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
Manifest number:          1208
Signing time:             Sat 23 Aug 2025 01:02:54 +0000
Manifest this update:     Sat 23 Aug 2025 01:02:54 +0000
Manifest next update:     Sun 24 Aug 2025 01:02:54 +0000
Files and hashes:         1: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl (hash: xAidyeFMWy1YFCris9stVqsALndSMFEZen9qTT/6aLE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:2d:82:0a:e3:2b:d8:0d:78:d3:e3:52:4b:5b:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
        Validity
            Not Before: Aug 23 01:02:54 2025 GMT
            Not After : Aug 24 01:02:54 2025 GMT
        Subject: CN=04743d637bae206e0248cacde29b06660b1a8dc1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:8d:8f:87:4a:d9:84:2e:f9:57:b6:b1:e3:60:
                    c6:b9:ca:f6:42:e1:d3:ef:66:b7:37:9d:7f:9b:f1:
                    55:6c:8c:ce:fd:3f:34:f8:59:68:d0:11:12:14:df:
                    65:6b:78:e7:d8:59:f0:a7:6e:55:4c:aa:42:cb:d8:
                    d1:e6:85:2a:52:05:0b:11:b5:02:f7:50:06:c4:c1:
                    6d:92:14:49:ed:3f:6c:48:22:34:ab:fc:ce:9c:1b:
                    b2:c8:52:b8:2d:b5:c0:06:42:36:f0:c1:14:ef:06:
                    89:7b:ec:14:1b:b4:af:1a:6d:f8:e4:1b:58:fb:85:
                    37:b7:46:43:0e:ba:87:61:1e:67:18:56:e7:13:31:
                    31:b8:14:27:6c:cd:65:8a:1e:bd:49:73:9c:94:f9:
                    3a:7a:00:78:03:9a:78:fa:a0:9c:a9:da:b1:2d:2e:
                    b2:41:9a:14:ad:cd:6d:3d:2d:d5:a3:f4:63:50:de:
                    0a:42:72:59:b2:f8:a8:91:d4:46:38:42:5e:5b:68:
                    1a:8b:e3:40:0a:37:d5:3f:b2:f4:96:9f:d6:56:6d:
                    7f:1c:74:7a:7d:fe:f8:3a:ec:07:91:5b:74:02:20:
                    83:e7:d1:57:d5:30:0c:10:05:f6:1d:60:61:a3:eb:
                    a7:8a:f9:d0:6d:c0:dc:23:f3:44:48:e0:3a:fd:74:
                    08:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:74:3D:63:7B:AE:20:6E:02:48:CA:CD:E2:9B:06:66:0B:1A:8D:C1
            X509v3 Authority Key Identifier:
                keyid:6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:2f:57:39:56:11:d5:02:2b:7a:65:b1:b1:20:33:55:5f:e9:
         7c:86:dd:a5:15:67:99:d4:8c:74:f9:2d:89:7a:80:82:a4:79:
         6a:cc:b4:e0:d8:e5:27:2f:b7:15:3c:cc:64:6c:c4:2b:bf:22:
         4e:93:dc:46:37:db:f3:9b:a2:a2:8d:78:13:e9:7d:ea:c4:1a:
         7f:27:0d:ba:0c:f9:4f:2b:91:28:65:9d:e7:92:c9:20:fb:a2:
         06:97:fe:b5:ca:9b:f8:81:a2:52:ed:88:d0:6c:7a:32:d9:93:
         1f:11:1a:e0:b6:62:4f:73:e5:7b:5b:83:14:e3:cc:05:0f:d3:
         17:ce:7d:a6:96:1b:f3:87:69:b0:16:4b:ba:4c:a4:ca:e1:f7:
         c2:7e:9e:9c:16:73:36:b5:7d:e3:05:88:56:31:a3:80:e3:8c:
         0f:8c:d5:0b:ec:f5:bb:77:6e:92:8a:d4:e1:32:c4:9e:f5:66:
         fa:e1:1b:a3:16:3a:a1:7b:03:4e:00:d2:0d:22:26:22:c5:eb:
         31:e1:40:7f:3b:be:76:91:27:c7:76:c5:d5:00:41:fd:e1:19:
         cb:de:02:66:88:6b:f9:f5:c3:7a:2a:37:29:e0:5e:a5:27:ae:
         c4:42:c1:eb:52:0b:b3:02:19:2d:c0:be:18:70:f2:ef:56:09:
         d3:e0:b2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----