Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
File:                     XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft (raw, json)
Hash identifier:          rl8sOHyY+llC9qwcpzSwbQS6mujyI9ZLpNNVhkIJsMM=
Subject key identifier:   2B:73:1F:7E:74:2A:2E:5E:1E:E4:C2:FD:B5:27:F4:D1:3F:58:01:D8
Authority key identifier: 5E:52:14:15:8A:F3:10:FF:A9:C3:15:29:83:43:F4:C3:E6:6A:EC:9A
Certificate issuer:       /CN=5e5214158af310ffa9c315298343f4c3e66aec9a
Certificate serial:       0198D4E07241D61C59AE26DC15FC044DEBC3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
Manifest number:          0695
Signing time:             Sat 23 Aug 2025 03:02:15 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:15 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:15 +0000
Files and hashes:         1: XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl (hash: wJ/3/4QAfSXZdkIPQRWrX1lKzx7xz2oAQnVbN4PDVKM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:72:41:d6:1c:59:ae:26:dc:15:fc:04:4d:eb:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e5214158af310ffa9c315298343f4c3e66aec9a
        Validity
            Not Before: Aug 23 03:02:15 2025 GMT
            Not After : Aug 24 03:02:15 2025 GMT
        Subject: CN=2b731f7e742a2e5e1ee4c2fdb527f4d13f5801d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:ba:9d:a8:a6:f5:23:51:0a:cc:ad:85:c1:88:
                    d6:19:d3:a9:09:c2:d1:9d:3d:18:f7:b9:47:73:94:
                    2c:d8:63:8d:26:fc:79:b3:7a:c0:20:96:4c:a0:3c:
                    e0:38:88:ad:99:e4:e6:b0:06:55:e0:62:8f:9b:34:
                    1a:c6:e1:3d:69:e6:41:a7:f7:32:e0:35:93:88:46:
                    70:3a:07:a8:c8:da:63:10:c2:35:8f:04:1c:06:ee:
                    1d:c4:58:29:09:a8:dc:16:4e:10:a0:2c:74:0c:f3:
                    e0:be:da:02:19:55:a1:65:b2:40:c6:ab:4b:17:80:
                    60:46:48:dd:41:00:39:55:e5:de:db:69:42:ff:8a:
                    c2:79:78:23:9a:74:bb:67:8a:a1:cb:d7:7e:a1:e4:
                    74:82:bf:ea:89:54:71:3c:14:d3:9d:9a:e6:51:34:
                    5a:0e:cf:65:d3:7f:38:5e:6e:66:a3:38:ed:0d:95:
                    d2:db:73:ff:c8:e9:34:93:69:e3:50:aa:38:13:92:
                    55:aa:18:f6:32:16:87:49:9d:7f:98:54:b9:ab:8f:
                    7f:1e:4a:1e:79:49:10:d2:47:c7:7d:03:db:0c:a8:
                    30:9a:1a:97:98:5d:1d:25:ac:79:b0:bc:3d:bb:3b:
                    97:d9:10:dc:59:d5:f5:73:2a:af:0b:23:4c:23:21:
                    f6:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:73:1F:7E:74:2A:2E:5E:1E:E4:C2:FD:B5:27:F4:D1:3F:58:01:D8
            X509v3 Authority Key Identifier:
                keyid:5E:52:14:15:8A:F3:10:FF:A9:C3:15:29:83:43:F4:C3:E6:6A:EC:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:cf:a2:80:03:76:7f:f1:25:c8:fa:21:4e:8e:cb:2e:0d:aa:
         3c:4c:32:f3:c1:c3:c5:31:e5:94:99:5d:dc:d8:8e:c6:b9:45:
         e8:b0:ba:af:20:b2:d9:be:95:e3:5a:c7:2d:d0:b3:74:15:ac:
         5b:d1:ea:51:4a:8d:94:d9:c7:22:c6:0c:65:bb:cb:e7:dc:3f:
         66:ec:cd:e1:b6:44:ca:86:53:2a:23:b5:05:38:d9:1d:03:2f:
         66:2a:5e:cc:1e:b9:53:3f:0e:68:28:5c:5a:1e:b3:eb:c3:d1:
         85:6f:41:1d:68:86:64:90:28:22:70:f5:9e:0f:00:56:3d:e2:
         8f:47:d4:6a:79:fe:b2:f1:d4:e8:bc:c7:5d:35:32:fe:8e:e4:
         b5:9a:a1:93:a0:90:f7:ba:66:26:da:62:d9:76:25:93:8f:ca:
         15:da:81:1b:75:5c:37:97:bd:1e:6f:03:f5:4d:f0:13:e5:95:
         22:c0:d9:72:c5:fd:68:03:6e:b4:eb:42:04:8b:cd:9b:a7:10:
         f3:cf:7a:4a:b7:34:c5:5f:4d:00:47:1f:4f:6c:8f:33:f9:fd:
         be:33:c3:28:62:4a:ef:05:dd:7a:ea:ec:b3:cc:42:f1:ec:de:
         20:56:d7:ef:55:3e:d8:bf:db:68:d3:0c:2a:c1:34:c3:c7:07:
         1d:75:92:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----