Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File:                     1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier:          s9Xph+dwtuELmQ9AD0wJxqgWkh8isSUbSKU3YqSZyZE=
Subject key identifier:   23:4F:6A:7A:CF:2C:C9:25:38:C4:6B:BB:60:31:94:F3:DF:66:3C:0B
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer:       /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial:       0198D4729B739CAEE830437E23388F0A7940
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number:          0B55
Signing time:             Sat 23 Aug 2025 01:02:17 +0000
Manifest this update:     Sat 23 Aug 2025 01:02:17 +0000
Manifest next update:     Sun 24 Aug 2025 01:02:17 +0000
Files and hashes:         1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: VPKk7RX3Q7Nd9zh6yfmIbDddNo2+bWYm3csN6qR+S4o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:02:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:72:9b:73:9c:ae:e8:30:43:7e:23:38:8f:0a:79:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
        Validity
            Not Before: Aug 23 01:02:17 2025 GMT
            Not After : Aug 24 01:02:17 2025 GMT
        Subject: CN=234f6a7acf2cc92538c46bbb603194f3df663c0b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:96:09:77:68:88:51:88:0a:3d:bf:0e:2c:33:
                    b4:85:9b:51:ff:c9:39:fe:fc:92:82:93:f6:2b:dc:
                    cb:d2:46:b3:d6:ad:fb:9f:5b:d4:36:d2:81:fd:64:
                    13:4a:15:6c:4a:ad:d4:0e:ae:25:37:b3:ea:af:93:
                    77:ba:dd:a1:83:62:4e:4d:25:0f:73:ab:c6:c3:26:
                    f8:3a:a9:1d:20:e0:d1:46:89:68:9d:9f:b7:54:2b:
                    a0:7a:cf:fd:da:d9:01:2a:f4:59:90:41:f1:ff:12:
                    46:c1:17:e6:e2:5a:2a:04:2e:f7:03:97:91:ed:75:
                    fe:78:a6:ed:34:26:2d:32:c0:d1:27:04:7c:81:19:
                    c3:97:42:b6:68:46:2c:c7:3d:3e:ce:db:52:e3:06:
                    8a:15:53:a6:74:58:3e:2f:60:3e:8e:e7:98:1d:9d:
                    53:7e:74:f8:0f:f4:f7:70:7f:10:56:c7:a3:68:94:
                    f5:36:0b:3e:2d:d1:46:ce:59:fc:37:20:e4:01:8d:
                    c3:ce:97:7c:dc:6f:86:1d:96:45:b6:c7:06:c8:6c:
                    e6:63:5c:a2:13:d8:95:83:43:b9:80:5b:14:76:91:
                    5e:93:af:ea:ee:1c:59:30:71:37:55:d3:46:61:57:
                    02:32:4a:2b:a4:7f:2b:79:86:4a:de:00:f8:a6:78:
                    31:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:4F:6A:7A:CF:2C:C9:25:38:C4:6B:BB:60:31:94:F3:DF:66:3C:0B
            X509v3 Authority Key Identifier:
                keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:42:c2:a5:fc:c5:28:59:b1:71:68:43:7e:ef:27:ba:b0:2a:
         3f:08:42:bc:2f:e1:0a:22:0f:23:09:44:db:1d:de:8f:46:06:
         0c:0a:76:b6:44:2f:45:2c:08:50:0f:ae:3a:6c:fb:f2:e5:59:
         ce:64:f3:22:7c:d5:4a:c7:80:2f:2b:1c:85:f4:0e:64:01:dd:
         c1:29:b0:b2:2b:56:f1:64:69:5e:11:38:4a:82:cc:90:c0:c7:
         e0:d5:5a:46:da:cd:5d:13:31:7a:b9:c3:6b:0a:c8:05:10:8a:
         68:07:2b:40:a8:4a:fe:42:3a:3e:9e:70:e7:e2:13:20:31:fb:
         ae:2c:92:59:51:e7:9e:26:13:67:b2:d4:15:20:85:94:4b:46:
         bd:d1:45:11:4a:6e:1a:99:aa:b4:a7:2a:0f:8b:7e:6e:b4:86:
         6f:9e:b7:6d:37:04:3d:10:e6:e8:a8:ee:d6:73:5c:03:09:57:
         c9:10:f3:fe:07:fe:d0:33:bb:e4:7e:1c:d9:84:42:64:ad:ca:
         eb:7c:f3:70:1b:82:f0:ee:51:3a:03:7b:7a:74:f3:ab:df:77:
         6d:f0:f4:d2:da:15:8f:ae:2a:a5:4e:5c:68:83:f5:47:1f:5b:
         e9:1c:68:b5:c3:24:29:1c:9b:4c:db:80:dc:35:c7:f3:d9:f7:
         cf:d2:ac:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----