Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
File:                     71j4Vyvdd9mBQRGA4u-aioAsdqw.mft (raw, json)
Hash identifier:          OzwBt7RzOx00F5VPRO4bIUqqJk3cdunBaLvx8UsDAxw=
Subject key identifier:   C2:03:44:C1:3B:C5:BB:99:C1:E7:E1:A0:9E:B7:88:FE:CB:55:44:71
Authority key identifier: EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC
Certificate issuer:       /CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
Certificate serial:       0198D5BB8EE8AC28C6EEA991057021D4654D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
Manifest number:          01C5
Signing time:             Sat 23 Aug 2025 07:01:35 +0000
Manifest this update:     Sat 23 Aug 2025 07:01:35 +0000
Manifest next update:     Sun 24 Aug 2025 07:01:35 +0000
Files and hashes:         1: 71j4Vyvdd9mBQRGA4u-aioAsdqw.crl (hash: yEpdB177SwXdX7vWXF1XT8173sww5o+Nn0DmzDKC1nU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:bb:8e:e8:ac:28:c6:ee:a9:91:05:70:21:d4:65:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
        Validity
            Not Before: Aug 23 07:01:35 2025 GMT
            Not After : Aug 24 07:01:35 2025 GMT
        Subject: CN=c20344c13bc5bb99c1e7e1a09eb788fecb554471
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:6b:07:71:32:fe:5f:5c:e5:2f:32:93:bf:09:
                    0e:07:21:70:b2:5c:8d:9c:a9:bd:a2:da:e1:64:93:
                    d9:16:d1:20:d7:63:3a:06:e7:1d:8d:b8:c0:74:71:
                    f6:b0:b8:59:ee:b3:ea:c6:ca:97:cd:fa:df:84:a4:
                    43:9e:cc:7a:cf:51:0e:34:98:13:cf:bb:35:59:d7:
                    39:f9:3b:a4:2f:30:03:69:8f:71:75:a1:4d:dd:49:
                    b8:b3:6f:97:12:8a:80:7c:63:20:14:98:38:ce:c5:
                    b2:bb:03:18:1d:f7:ff:61:79:08:ce:93:b9:d8:f5:
                    62:69:6c:97:22:33:46:34:47:4a:93:c0:31:70:f9:
                    76:3b:8e:ac:1d:4e:1e:f6:ef:a3:0f:bb:16:45:0b:
                    49:e0:f1:e4:ac:34:6d:2d:35:2c:54:45:c9:c0:e1:
                    32:1a:43:16:f3:86:03:c0:f4:43:8b:db:eb:98:3b:
                    f5:e6:36:de:ec:ac:2f:8b:09:a5:8e:7b:39:74:49:
                    2c:23:8a:64:9e:39:53:39:f3:ca:18:f0:4f:9f:f1:
                    88:69:f1:02:23:70:17:9b:74:07:b3:08:f9:8a:ef:
                    02:b5:50:a0:9f:0a:74:3b:6c:d5:46:92:b7:07:a8:
                    7c:6c:13:40:6d:71:1b:13:93:f4:5f:94:55:ee:c2:
                    80:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:03:44:C1:3B:C5:BB:99:C1:E7:E1:A0:9E:B7:88:FE:CB:55:44:71
            X509v3 Authority Key Identifier:
                keyid:EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:77:42:2d:9e:fa:8d:13:c6:f3:f7:ea:7c:38:c3:58:74:ac:
         f8:a8:ec:de:92:ea:d6:2a:7c:07:a1:e3:69:73:3a:e5:bb:b4:
         40:74:bc:59:76:8b:e0:99:af:93:92:e1:aa:a2:73:08:d1:9f:
         74:84:a5:7d:05:a5:bb:27:d1:d3:67:16:d9:33:6f:93:1e:00:
         da:f7:1d:34:85:ee:74:f7:10:9f:cf:c5:b7:97:15:b4:d1:89:
         61:f2:ac:0b:35:7a:0c:3e:f2:84:68:eb:c9:e9:1f:c7:0c:bf:
         6c:57:85:d7:c2:16:a9:13:02:cf:67:31:ae:97:ee:ea:05:80:
         6c:0c:7d:a9:7e:1a:e9:0c:d5:31:92:ca:df:80:05:50:e2:0e:
         54:aa:fc:74:b7:44:48:2c:c0:34:2a:98:f6:c4:ff:64:05:a1:
         55:69:a1:8b:b4:6e:e6:3b:e2:6b:9f:46:3e:fa:78:8e:83:ee:
         37:5a:0f:df:41:e6:93:f0:a2:02:45:eb:12:9a:c8:e5:fb:52:
         d1:ad:00:53:4f:2a:00:06:0e:90:6f:d3:9e:61:cc:65:2a:b7:
         1a:55:13:47:a8:0f:ea:cb:42:84:76:aa:2b:39:34:14:ad:de:
         fe:44:2b:2f:32:57:18:22:be:3a:52:d5:cf:c5:06:43:cc:eb:
         a2:62:fc:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----