Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
File:                     U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json)
Hash identifier:          uXB+tc7D4IfWFCvBDFp76q9LMNNhhfD2yN5aSslNa1g=
Subject key identifier:   63:13:24:12:07:84:C4:FB:67:17:31:52:1B:AB:DC:BD:20:21:8C:BE
Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
Certificate issuer:       /CN=53bf98d53522aa957081fdec28b172084394f112
Certificate serial:       0198D84F5381F6D5BDF441DA1CC8DD679161
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
Manifest number:          0E5F
Signing time:             Sat 23 Aug 2025 19:02:14 +0000
Manifest this update:     Sat 23 Aug 2025 19:02:14 +0000
Manifest next update:     Sun 24 Aug 2025 19:02:14 +0000
Files and hashes:         1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: Za7h9izcR+VDp4EKUo9J9xO7NXXIRK9ZhqUsuQZ3PUE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 19:02:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d8:4f:53:81:f6:d5:bd:f4:41:da:1c:c8:dd:67:91:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53bf98d53522aa957081fdec28b172084394f112
        Validity
            Not Before: Aug 23 19:02:14 2025 GMT
            Not After : Aug 24 19:02:14 2025 GMT
        Subject: CN=631324120784c4fb671731521babdcbd20218cbe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:03:6d:95:90:54:dc:cb:e7:df:23:db:bf:9a:
                    68:7d:51:22:e3:cc:6a:d0:81:ca:01:97:9e:34:c9:
                    37:58:a9:d3:d9:46:af:8c:a1:19:94:15:ef:a4:43:
                    00:2b:f3:5e:b8:da:9b:af:3f:ca:34:14:63:83:55:
                    8e:b6:45:97:a9:54:80:8b:79:64:2c:11:5a:f2:b5:
                    29:19:85:b8:f8:79:25:19:9e:a7:00:4b:e0:a5:a4:
                    62:94:60:03:e6:65:f5:d6:2a:7c:e2:4c:e2:9b:77:
                    88:f5:f7:ac:db:f1:24:ff:b4:53:a6:32:c9:d0:94:
                    c9:7d:03:31:4c:7e:f6:78:50:28:31:91:fc:3a:63:
                    b4:74:3b:0a:12:04:23:74:d9:48:41:f9:f9:24:06:
                    07:0a:3f:5a:1b:44:43:e7:ae:38:61:1d:10:90:f4:
                    e7:43:11:63:bf:3f:de:2a:49:6e:25:c3:57:74:18:
                    52:14:70:4f:5c:b6:5d:86:df:1d:60:3f:3e:b7:34:
                    b8:82:35:e5:99:e7:c7:65:4c:02:43:01:0b:80:d7:
                    b8:b2:eb:44:9b:c5:51:3e:a0:52:b4:cb:05:b1:1f:
                    f9:1b:89:9b:69:48:7e:39:ff:01:99:6f:5f:cc:8b:
                    f3:d8:3e:d1:fa:b5:94:c5:50:08:9a:03:8e:94:f9:
                    55:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:13:24:12:07:84:C4:FB:67:17:31:52:1B:AB:DC:BD:20:21:8C:BE
            X509v3 Authority Key Identifier:
                keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:a7:d9:f9:11:37:01:b7:14:6a:58:cd:91:94:e1:47:66:39:
         13:e4:39:72:3c:5c:19:ff:24:ac:e8:e5:d8:f9:12:73:c2:b2:
         f7:f8:20:72:a1:4d:32:6d:0b:25:8e:ba:55:a3:61:4e:3c:22:
         f8:2e:e1:a8:bc:b6:c7:e1:1a:fe:a6:f5:f4:aa:37:8f:bd:a0:
         e0:f7:77:d1:0d:af:ad:bd:56:4e:50:d4:cd:1c:aa:70:36:8f:
         13:e9:84:55:9d:86:a5:d5:16:53:03:e5:8e:31:3b:01:66:a3:
         70:5f:45:01:71:07:58:e4:f4:05:be:98:cf:e8:7f:12:26:d4:
         30:62:ef:e8:f1:f1:13:ba:60:3a:5b:1e:a1:36:9a:6f:67:61:
         04:7b:b8:71:43:a6:4b:72:8b:39:25:97:23:17:22:20:8a:48:
         16:de:2f:1b:6c:6f:79:d2:76:92:29:c5:47:e5:4c:1a:b7:64:
         47:0f:02:99:d6:2f:c5:70:5c:23:3d:f4:37:e9:c6:dd:6d:f7:
         02:14:f6:12:7b:f9:13:e6:7a:7c:b8:87:2b:f9:a8:d9:7b:8d:
         3c:a9:19:39:04:5c:ed:f2:c8:1d:4a:6f:99:e9:1e:29:28:37:
         a6:18:91:54:5f:c2:f7:01:b5:bd:21:c9:86:36:8a:72:de:94:
         e2:52:90:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----