Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
File:                     ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft (raw, json)
Hash identifier:          ptOn/VzKsswKddfZIAgIkfFkfi5QgJvHeU/p1EO3ho8=
Subject key identifier:   79:F8:FB:06:9B:29:DF:81:8F:36:98:D8:77:48:F9:29:85:B0:C2:E1
Authority key identifier: 72:20:2E:64:5F:72:CD:70:AA:81:43:B7:3B:CC:0D:DD:93:BF:E9:1A
Certificate issuer:       /CN=72202e645f72cd70aa8143b73bcc0ddd93bfe91a
Certificate serial:       0198D65F39EA69FD61FA91523D8E9271463F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
Manifest number:          0399
Signing time:             Sat 23 Aug 2025 10:00:21 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:21 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:21 +0000
Files and hashes:         1: ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl (hash: BRxNQc9BHnrL/Xw1AzYxMGrqZdNYGfhwTkHDWVA75yo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:39:ea:69:fd:61:fa:91:52:3d:8e:92:71:46:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=72202e645f72cd70aa8143b73bcc0ddd93bfe91a
        Validity
            Not Before: Aug 23 10:00:21 2025 GMT
            Not After : Aug 24 10:00:21 2025 GMT
        Subject: CN=79f8fb069b29df818f3698d87748f92985b0c2e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:dc:ba:9a:01:58:76:28:96:21:14:77:3b:bf:
                    e8:f5:70:93:0d:25:35:ef:0a:53:02:09:d0:a2:c3:
                    ec:f8:3e:13:91:46:b2:1a:e0:d3:53:34:ba:d0:e2:
                    83:a9:64:59:35:0d:e8:54:00:87:6c:19:1c:c8:11:
                    43:d3:71:43:94:33:58:64:3a:d5:6b:6b:41:32:e2:
                    8f:d7:59:eb:a7:1c:0b:51:8b:3c:1f:cf:e8:d8:08:
                    bd:e6:06:23:4a:84:06:8c:8b:8f:81:ac:a5:b4:24:
                    07:b5:00:8e:0c:01:27:c7:c3:ec:f1:cf:b3:d5:3e:
                    a7:96:81:ee:5c:48:d9:af:bc:ef:d2:97:0e:fa:8f:
                    6b:20:69:94:7f:70:07:14:ee:80:0a:7a:57:00:84:
                    64:10:10:cd:7d:d8:13:e8:96:10:0d:72:8b:f4:be:
                    b7:34:46:d4:82:66:fa:9f:50:08:f7:c7:c9:2b:d4:
                    ce:6b:de:56:7f:00:4d:73:5e:83:a5:5a:69:fd:5b:
                    87:76:83:4e:94:f7:76:26:14:36:13:d1:fe:d5:53:
                    9a:5f:a3:89:95:1d:65:f4:00:a5:ca:80:0f:16:5a:
                    6d:fe:9f:78:81:8a:e1:18:25:0e:c3:82:80:3a:43:
                    16:f2:d9:34:ac:75:78:c7:b5:58:29:6a:e6:48:ef:
                    68:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:F8:FB:06:9B:29:DF:81:8F:36:98:D8:77:48:F9:29:85:B0:C2:E1
            X509v3 Authority Key Identifier:
                keyid:72:20:2E:64:5F:72:CD:70:AA:81:43:B7:3B:CC:0D:DD:93:BF:E9:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:cb:2d:93:52:20:fd:f0:b4:60:54:07:7f:9d:df:8a:c5:85:
         a6:b4:7b:e5:84:ed:eb:ea:da:7b:99:f4:8c:f0:78:20:0a:40:
         59:59:d3:6c:b5:21:94:37:c5:da:00:39:aa:c4:9e:b8:9e:62:
         6f:0b:b9:01:88:49:1e:24:8f:af:69:05:88:74:36:bf:b4:0d:
         d3:92:ff:3e:4f:58:e9:b3:05:35:2c:71:ba:6e:8b:55:83:2a:
         61:05:c7:c8:6d:0f:3a:8c:f7:02:1c:c8:55:92:e3:92:03:b4:
         32:a3:f2:4c:9d:e5:a8:81:19:a8:18:c1:e1:00:92:64:4e:58:
         e2:33:69:6c:1f:71:6a:c9:af:6a:5a:60:ad:15:fa:bd:13:cd:
         12:7a:81:73:7d:8f:d1:dc:d2:bc:59:11:de:f3:c6:51:b1:37:
         5d:a7:78:98:f3:2e:6e:ea:90:7a:28:44:2f:b1:7e:8c:17:5e:
         c5:a5:f4:8e:b9:89:a0:7f:5a:79:3e:cc:c2:a1:38:36:14:04:
         67:f2:53:e5:66:f1:7c:32:0c:48:7c:d1:06:cb:36:50:c1:12:
         8f:41:2d:55:83:f2:6a:07:ec:0c:e8:a2:c9:c8:aa:6a:9a:77:
         ce:90:25:3c:59:a9:42:e4:60:2a:b4:0f:61:13:b2:35:4c:2a:
         cb:f7:0d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----