Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
File:                     kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft (raw, json)
Hash identifier:          ZTYmStDS92ylFElOFYcGvLR92QYg9YDiBnidSVQmp64=
Subject key identifier:   30:E5:A2:65:79:FB:4C:C0:3B:34:A4:7A:67:9A:2E:EB:C0:F4:48:AA
Authority key identifier: 90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C
Certificate issuer:       /CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
Certificate serial:       0198D5162E78FE0F255B1D83698C4D71338A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
Manifest number:          05E0
Signing time:             Sat 23 Aug 2025 04:00:57 +0000
Manifest this update:     Sat 23 Aug 2025 04:00:57 +0000
Manifest next update:     Sun 24 Aug 2025 04:00:57 +0000
Files and hashes:         1: kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl (hash: Gq+605AAFf4E8z/+KK0nyxJGbL4VCG+xJ4t6lraEAq0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 04:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:16:2e:78:fe:0f:25:5b:1d:83:69:8c:4d:71:33:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
        Validity
            Not Before: Aug 23 04:00:57 2025 GMT
            Not After : Aug 24 04:00:57 2025 GMT
        Subject: CN=30e5a26579fb4cc03b34a47a679a2eebc0f448aa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:c1:2e:17:21:9d:2b:da:3b:16:66:24:7e:cf:
                    f1:00:9d:9e:54:e3:af:1b:7b:6d:b1:45:13:06:96:
                    35:db:43:a0:96:c9:4b:9e:ba:fd:e0:7e:0b:87:5d:
                    18:1a:6a:b5:4b:09:be:3f:9f:56:a0:34:94:cc:27:
                    f1:0e:f4:2e:0a:66:82:77:a3:d8:01:06:c4:06:4a:
                    91:78:91:00:3b:18:37:10:f6:5d:58:bc:80:3b:d8:
                    d8:fc:b3:ca:99:97:ba:b8:42:28:6b:c4:bd:ee:d3:
                    c1:a3:9d:95:70:33:6b:8c:94:3b:2b:b8:ba:72:72:
                    da:07:3c:6c:fd:01:99:1e:5d:c4:71:07:16:a4:84:
                    de:37:a0:a7:ff:90:a0:b8:6d:f2:4e:47:17:60:6c:
                    4c:33:e0:bd:63:a9:4c:48:8a:1a:60:54:0a:9d:c2:
                    bb:a7:5b:81:9a:2f:f8:1d:9f:7c:16:bf:38:db:55:
                    2d:ba:b0:d6:95:d9:8f:0f:dc:8b:02:26:6e:54:7d:
                    f1:c4:f6:37:cf:4e:b6:2f:bc:51:67:06:96:ac:83:
                    ed:c1:42:62:e1:27:7c:3e:fd:c4:66:3d:ec:5d:7d:
                    df:f1:7a:ef:43:d1:ac:6e:71:9c:c0:e2:64:c9:d3:
                    74:fe:55:5d:67:f7:23:59:f7:75:c5:cb:8e:9f:ee:
                    cb:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:E5:A2:65:79:FB:4C:C0:3B:34:A4:7A:67:9A:2E:EB:C0:F4:48:AA
            X509v3 Authority Key Identifier:
                keyid:90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:4f:e2:06:ca:c0:48:d9:65:86:8e:8a:7c:3b:6f:81:8e:40:
         82:30:8b:3f:3b:cb:ba:60:e1:51:d6:43:8c:91:12:4a:8d:aa:
         ad:ff:08:10:ba:42:9c:44:c7:f4:f8:3b:a8:68:59:51:74:86:
         4e:63:bf:09:98:59:f6:f1:6e:a5:dd:c8:3d:88:7d:6e:8e:c4:
         02:d6:0a:25:fd:e3:64:d4:03:41:33:a5:89:ca:2f:6b:6e:56:
         1d:a8:a7:37:81:5a:aa:e0:82:31:98:ad:ee:5a:c4:76:46:11:
         91:15:c1:b7:4d:61:c6:3f:e0:51:28:33:95:b5:49:d5:18:3f:
         7f:f6:6f:a0:28:9f:5d:72:9c:ea:40:a7:c8:b6:24:65:1f:70:
         da:f3:1e:c9:e4:2c:a1:3f:3d:fe:ed:e3:32:4d:a7:ed:2a:12:
         79:96:a9:e7:84:68:e3:20:89:b2:70:0b:af:51:c2:4e:60:c9:
         fb:5c:14:e6:c6:34:bc:c7:a4:b0:70:5b:2d:bd:22:3b:8c:de:
         83:83:2d:a0:7f:8b:d1:d7:d9:ec:2a:0f:48:8c:c8:ad:28:85:
         b3:79:f0:64:70:9c:9a:44:c5:c8:8f:dd:0a:83:ab:44:41:3b:
         20:25:09:2b:d6:05:40:60:66:01:72:1c:74:0f:af:57:b8:fc:
         80:f4:4c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----