Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft
File:                     SpR3QFKci4QPf4kzCXmshyyj-rg.mft (raw, json)
Hash identifier:          gId9y5PljDvUC/KseO+23l6QQ+TGZMxnjHzcuBtd5yg=
Subject key identifier:   54:B9:3A:D3:80:94:0F:46:4F:63:1E:2A:62:D7:35:5D:0C:16:D4:94
Authority key identifier: 4A:94:77:40:52:9C:8B:84:0F:7F:89:33:09:79:AC:87:2C:A3:FA:B8
Certificate issuer:       /CN=4a947740529c8b840f7f89330979ac872ca3fab8
Certificate serial:       0198D65F2567574B53D00E059901E9BE6377
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SpR3QFKci4QPf4kzCXmshyyj-rg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft
Manifest number:          01F4
Signing time:             Sat 23 Aug 2025 10:00:16 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:16 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:16 +0000
Files and hashes:         1: SpR3QFKci4QPf4kzCXmshyyj-rg.crl (hash: Xrq7i2DNvecO5yrNSoBN4sduVEv2nw5YnEnJfFWAQMo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SpR3QFKci4QPf4kzCXmshyyj-rg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:25:67:57:4b:53:d0:0e:05:99:01:e9:be:63:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4a947740529c8b840f7f89330979ac872ca3fab8
        Validity
            Not Before: Aug 23 10:00:16 2025 GMT
            Not After : Aug 24 10:00:16 2025 GMT
        Subject: CN=54b93ad380940f464f631e2a62d7355d0c16d494
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:09:b8:71:e7:a5:fd:d9:72:1e:60:e7:bc:d8:
                    fc:f5:4f:96:03:a5:ef:51:a7:9a:db:2b:cd:49:64:
                    96:37:25:0c:67:92:1b:31:7f:32:9f:48:fb:a5:75:
                    b2:5a:fa:16:6e:0c:e6:b5:25:d9:2d:d1:67:fb:0b:
                    cf:eb:32:6f:b7:67:64:e4:14:19:41:f5:24:dd:2b:
                    81:2d:83:e0:45:e6:85:09:a5:dc:7e:1f:05:6c:dd:
                    d3:9f:91:70:d2:fb:cb:a3:07:aa:a4:52:94:68:08:
                    85:dd:45:c6:3b:58:11:1e:5c:3a:bf:5d:49:f4:30:
                    83:78:db:7a:3a:c2:7a:76:17:fa:4f:e0:53:0a:2b:
                    d4:71:6d:20:03:a9:5d:62:1b:72:cc:20:9b:6c:fb:
                    c1:08:f3:05:d8:5b:23:78:81:b7:af:14:8e:38:cf:
                    6c:9f:19:e9:f7:06:1c:e8:cc:73:63:ec:b5:64:b9:
                    0a:93:ac:8e:19:1d:4d:2e:ea:b4:7f:ab:8f:46:08:
                    6e:fb:eb:25:00:ce:6b:e7:89:16:73:88:4c:90:cd:
                    a6:fb:84:b0:66:15:cc:81:47:63:43:1d:69:b6:ad:
                    cb:05:58:e7:37:a4:a3:45:18:07:96:ae:95:54:af:
                    c2:53:e3:ea:b7:0b:f5:aa:c5:a5:14:42:17:f6:03:
                    cf:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:B9:3A:D3:80:94:0F:46:4F:63:1E:2A:62:D7:35:5D:0C:16:D4:94
            X509v3 Authority Key Identifier:
                keyid:4A:94:77:40:52:9C:8B:84:0F:7F:89:33:09:79:AC:87:2C:A3:FA:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SpR3QFKci4QPf4kzCXmshyyj-rg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:cb:3f:a5:03:f3:62:5d:48:0e:49:e3:af:95:ac:20:12:54:
         4d:16:d2:dd:ee:22:4d:50:47:17:2f:f3:0c:3b:53:38:82:56:
         58:02:90:01:a3:97:2d:e0:04:49:71:30:da:a1:37:51:73:8c:
         24:66:3b:73:c7:6b:1e:a0:65:48:fe:cc:5d:d7:fa:8e:ed:cd:
         78:fe:0a:f9:ec:eb:a3:bf:f8:23:4d:67:6a:db:a5:54:a2:7a:
         4e:96:2d:e8:eb:da:39:49:b5:31:32:77:63:b2:5f:5d:0b:12:
         7a:26:27:90:61:f6:13:ad:5f:b7:34:4f:b4:4f:07:d1:90:c6:
         c3:e5:d0:97:ab:3d:82:ea:a3:b3:c8:e1:2e:64:db:e4:db:ff:
         5b:21:f3:ac:b7:b6:c7:f9:59:dd:2b:1e:fd:68:24:3b:99:a4:
         f6:b9:4f:74:90:b0:30:8d:6a:a0:62:d8:fd:02:c8:3c:86:33:
         3c:64:14:c8:09:9a:8e:da:63:ba:48:3c:0b:26:c3:92:70:97:
         ac:71:32:1a:ba:10:21:7e:85:a6:6e:38:57:57:06:65:35:ce:
         61:6c:2e:e0:78:38:89:c9:bf:84:3c:60:43:b7:3a:5a:95:8b:
         4b:94:7a:fc:12:b7:70:9d:b0:29:51:4d:d0:e0:45:89:44:19:
         2d:25:17:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----