Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/f1678c-ddcc-4253-8595-63c707441ba6/1/AkhBfH_pzOxbnarMCPznmdZzCIw.mft
File:                     AkhBfH_pzOxbnarMCPznmdZzCIw.mft (raw, json)
Hash identifier:          /EddAUk/sYya+JMUq5lSjRygZIB4idKlmRcZFOOvUkE=
Subject key identifier:   42:27:CA:AE:2A:5F:12:DB:E5:2C:5E:C0:7F:B3:98:49:C0:4B:44:5F
Authority key identifier: 02:48:41:7C:7F:E9:CC:EC:5B:9D:AA:CC:08:FC:E7:99:D6:73:08:8C
Certificate issuer:       /CN=0248417c7fe9ccec5b9daacc08fce799d673088c
Certificate serial:       0198D850ECDB435E6E02A87D1FCF846E151B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AkhBfH_pzOxbnarMCPznmdZzCIw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/f1678c-ddcc-4253-8595-63c707441ba6/1/AkhBfH_pzOxbnarMCPznmdZzCIw.mft
Manifest number:          0E81
Signing time:             Sat 23 Aug 2025 19:03:58 +0000
Manifest this update:     Sat 23 Aug 2025 19:03:58 +0000
Manifest next update:     Sun 24 Aug 2025 19:03:58 +0000
Files and hashes:         1: AkhBfH_pzOxbnarMCPznmdZzCIw.crl (hash: 54rjJ/CSRagtkrP8FyVd468kuZqOg49L+CHUHGQVqz8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/f1678c-ddcc-4253-8595-63c707441ba6/1/AkhBfH_pzOxbnarMCPznmdZzCIw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/f1678c-ddcc-4253-8595-63c707441ba6/1/AkhBfH_pzOxbnarMCPznmdZzCIw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AkhBfH_pzOxbnarMCPznmdZzCIw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d8:50:ec:db:43:5e:6e:02:a8:7d:1f:cf:84:6e:15:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0248417c7fe9ccec5b9daacc08fce799d673088c
        Validity
            Not Before: Aug 23 19:03:58 2025 GMT
            Not After : Aug 24 19:03:58 2025 GMT
        Subject: CN=4227caae2a5f12dbe52c5ec07fb39849c04b445f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:f0:a7:a3:27:25:28:3d:e7:1e:2c:a9:a5:a1:
                    c1:e6:22:29:8f:04:46:bd:74:af:1c:1a:7b:0f:13:
                    cc:90:f1:07:b8:81:0f:df:66:d7:db:2e:aa:e0:c6:
                    7f:f8:ad:e9:17:31:15:6e:52:f7:70:16:b6:c7:75:
                    d4:40:68:57:20:d1:75:d2:dc:82:6c:b0:04:20:1f:
                    86:c1:e4:10:b7:20:13:59:f9:5e:99:ca:0f:01:64:
                    25:d6:72:3c:ee:8d:78:32:4e:e3:40:47:2e:7c:fe:
                    fe:90:a0:5f:4c:dc:55:3a:2a:84:a2:51:33:fd:a5:
                    2d:ec:80:ae:13:4f:f5:74:ec:72:54:3e:8c:a1:5a:
                    87:2e:e9:28:65:5e:4a:41:4b:66:86:ed:f1:10:a5:
                    ea:48:38:a4:97:2e:18:98:2f:2a:f0:01:73:3d:9e:
                    6e:f3:e4:de:ae:58:69:df:2c:be:43:35:fb:58:53:
                    8e:ee:d2:0c:5d:6f:30:1c:15:02:ab:fa:8e:53:d4:
                    60:ca:26:d0:07:25:54:29:fd:68:40:cc:e6:24:a5:
                    00:7a:83:db:dd:02:01:7b:dd:4e:1d:20:0f:f6:ef:
                    7d:ce:1f:6f:ba:8b:de:85:da:d5:6d:34:02:be:91:
                    ba:46:e9:e9:3d:21:7e:ec:ce:66:91:77:90:a7:30:
                    91:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:27:CA:AE:2A:5F:12:DB:E5:2C:5E:C0:7F:B3:98:49:C0:4B:44:5F
            X509v3 Authority Key Identifier:
                keyid:02:48:41:7C:7F:E9:CC:EC:5B:9D:AA:CC:08:FC:E7:99:D6:73:08:8C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkhBfH_pzOxbnarMCPznmdZzCIw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f1678c-ddcc-4253-8595-63c707441ba6/1/AkhBfH_pzOxbnarMCPznmdZzCIw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f1678c-ddcc-4253-8595-63c707441ba6/1/AkhBfH_pzOxbnarMCPznmdZzCIw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:d8:f1:29:0b:b5:0f:54:65:91:94:87:f3:c6:1f:8b:20:6e:
         5e:d7:e6:4e:72:6b:e0:ff:71:a1:fe:99:66:71:a0:3b:79:67:
         09:91:f0:c7:87:ea:36:90:43:ef:43:b3:19:bb:23:69:3b:29:
         4d:7f:a7:52:13:8b:bf:20:d7:53:3f:05:23:81:8e:fc:f0:fb:
         62:f4:2e:51:62:08:78:61:9a:49:68:48:78:f4:1c:e4:59:00:
         24:51:c6:f6:12:3a:6b:37:a0:af:40:d2:29:d3:ea:e4:66:ef:
         59:a8:b6:50:71:a5:89:69:18:11:c4:9a:e0:e6:ff:ba:fa:e6:
         84:01:38:50:36:82:b2:f8:78:29:40:20:59:12:3e:a5:b7:23:
         34:cc:53:a2:2e:55:07:75:67:d4:ed:e1:74:48:56:47:7b:ad:
         e6:66:7f:c5:e7:0a:25:b0:6b:04:74:e4:d8:fd:b0:6f:e3:e5:
         25:d4:88:02:16:fb:11:9c:bf:6e:b1:40:6c:17:28:03:70:23:
         04:97:6b:bb:8c:cf:19:57:7a:29:ea:30:48:9e:72:86:ae:b2:
         a0:a0:3e:91:ce:a6:c2:b7:47:c8:49:8c:9c:5b:2a:92:69:dc:
         ef:c7:03:19:c7:2c:63:71:de:98:88:ca:41:43:33:d5:4c:39:
         3d:7e:7b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----