Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft
File:                     qKI6ziwGf44hL_NZ2pbCBYtks-o.mft (raw, json)
Hash identifier:          O1pjXTO67QkHT1m/TxXGPccN8Mww6RVvh+ToOCK6SMg=
Subject key identifier:   07:87:51:59:85:82:BC:2D:72:F3:D1:4E:67:F5:05:41:3C:9A:F9:EC
Authority key identifier: A8:A2:3A:CE:2C:06:7F:8E:21:2F:F3:59:DA:96:C2:05:8B:64:B3:EA
Certificate issuer:       /CN=a8a23ace2c067f8e212ff359da96c2058b64b3ea
Certificate serial:       0197B7458844914B05ABBB4F9726224D3624
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qKI6ziwGf44hL_NZ2pbCBYtks-o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft
Manifest number:          05E8
Signing time:             Sat 28 Jun 2025 16:01:16 +0000
Manifest this update:     Sat 28 Jun 2025 16:01:16 +0000
Manifest next update:     Sun 29 Jun 2025 16:01:16 +0000
Files and hashes:         1: qKI6ziwGf44hL_NZ2pbCBYtks-o.crl (hash: 7ilRN2KzElzDegJ3txzrotrRLzSl4rNNGaj8SyxNZEw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qKI6ziwGf44hL_NZ2pbCBYtks-o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:45:88:44:91:4b:05:ab:bb:4f:97:26:22:4d:36:24
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a8a23ace2c067f8e212ff359da96c2058b64b3ea
        Validity
            Not Before: Jun 28 16:01:16 2025 GMT
            Not After : Jun 29 16:01:16 2025 GMT
        Subject: CN=078751598582bc2d72f3d14e67f505413c9af9ec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:e3:aa:52:03:e4:84:af:cd:2e:a4:8f:9f:de:
                    67:e7:66:62:83:f8:72:f0:62:c5:17:39:4f:f1:6a:
                    92:95:26:00:a2:2f:ec:f5:ef:b9:92:08:06:a2:3e:
                    3a:37:7f:04:75:35:e8:d0:06:4d:a4:17:d9:9d:d9:
                    08:4c:c6:48:d4:ea:78:02:cb:d7:be:fe:52:27:e7:
                    5d:e4:63:45:28:0f:e5:be:de:90:41:b3:b0:25:7d:
                    13:93:ba:cb:f4:59:77:8e:e9:be:4d:3b:9c:0b:7c:
                    35:07:9e:50:94:96:a3:5d:75:a6:3b:8c:07:02:5d:
                    77:6d:fa:27:f2:72:8f:f1:8f:80:19:22:d7:8e:a3:
                    14:35:d8:47:ba:59:05:8e:7d:df:3f:a4:f5:72:00:
                    70:cf:75:7f:10:7b:6d:60:a7:5d:8a:bb:2e:d4:40:
                    aa:3b:a9:ef:99:14:a1:7c:c1:ee:9a:f8:66:d8:22:
                    03:c3:ff:e8:66:cc:3f:29:90:fb:bf:e4:4f:72:dd:
                    ba:d7:90:27:40:ab:82:df:84:7a:71:37:d0:28:dc:
                    0f:0f:b9:66:83:01:7e:34:13:1b:cf:65:ab:6d:4a:
                    13:f7:bd:88:54:45:4b:2c:9e:fb:e1:18:19:ab:4c:
                    1d:1d:e4:c5:ea:5e:0a:fa:04:a8:0b:0a:7b:8e:63:
                    33:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:87:51:59:85:82:BC:2D:72:F3:D1:4E:67:F5:05:41:3C:9A:F9:EC
            X509v3 Authority Key Identifier:
                keyid:A8:A2:3A:CE:2C:06:7F:8E:21:2F:F3:59:DA:96:C2:05:8B:64:B3:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qKI6ziwGf44hL_NZ2pbCBYtks-o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:86:2b:8f:5c:14:ca:7f:eb:80:da:d3:e7:ca:97:bb:d4:3d:
         2c:3d:56:a5:6e:38:6f:5a:76:3a:60:47:70:02:c2:cf:0b:d9:
         e0:d7:16:3c:15:95:35:c2:78:2b:b0:4f:3c:8f:75:9a:48:13:
         a1:d9:6b:83:f1:e4:00:ff:4a:2d:f5:54:18:ea:5f:9c:91:25:
         65:94:6c:2d:b3:b4:03:ed:94:19:ca:e1:0a:8c:15:4f:b8:f1:
         e1:36:5f:50:43:1d:0e:56:b2:6c:4a:9a:5b:4f:a8:62:fb:3a:
         b7:c8:78:4e:9e:64:ea:13:65:3b:e4:b2:4e:1e:a4:bd:bf:97:
         a7:86:3c:14:b1:4f:93:d1:dd:aa:73:1f:3c:aa:52:e9:fa:68:
         e2:c3:a7:d3:60:db:e4:06:df:f8:de:e4:2a:c2:66:92:b4:e1:
         d3:2a:e1:9b:2d:53:d5:82:40:f5:35:55:a8:c4:f7:82:f5:b4:
         e2:ef:67:5b:a1:40:9b:87:3e:47:eb:f3:ac:c7:45:2d:37:10:
         e4:bf:55:e0:58:5e:f6:ed:d1:27:0f:a5:57:96:28:d7:52:c5:
         52:69:c9:63:df:98:d0:bf:0d:ef:2c:4f:bb:5d:4d:78:a9:d1:
         c7:00:ec:3d:37:bc:4f:1f:e7:12:40:9f:46:11:a2:3f:89:71:
         31:60:ae:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----