Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
File:                     41wFcLO3dz0eEYgufdLGJVN-sJw.mft (raw, json)
Hash identifier:          ZaQc6sRFJ/7QPBJbRngNZ7kIXdLAUCAkQLFcZZ/1UPE=
Subject key identifier:   EE:A6:81:3C:F7:DA:7A:5D:CA:6F:22:D4:3C:8D:B6:53:99:08:5B:64
Authority key identifier: E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C
Certificate issuer:       /CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
Certificate serial:       0198D6603AB414304B1F69A5CFE2F042A233
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
Manifest number:          1382
Signing time:             Sat 23 Aug 2025 10:01:27 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:27 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:27 +0000
Files and hashes:         1: 41wFcLO3dz0eEYgufdLGJVN-sJw.crl (hash: zyvOra19G5VHeOOS7qCWT13CF7GnhCUNdFTfTH/YDm0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:3a:b4:14:30:4b:1f:69:a5:cf:e2:f0:42:a2:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
        Validity
            Not Before: Aug 23 10:01:27 2025 GMT
            Not After : Aug 24 10:01:27 2025 GMT
        Subject: CN=eea6813cf7da7a5dca6f22d43c8db65399085b64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:43:c7:ee:67:b4:38:e4:1c:32:b7:ff:d1:e7:
                    dc:d9:2e:b9:a3:69:62:ba:9e:e3:d8:06:49:30:62:
                    70:36:31:90:39:c8:c0:65:2c:d5:2a:8b:a8:66:93:
                    eb:42:fb:40:3e:e3:0a:5e:6d:4f:94:a4:b6:c6:20:
                    34:d7:fb:9c:e5:7a:ce:a4:5a:37:fe:55:3f:87:70:
                    16:63:e9:78:97:50:cd:22:58:20:1a:75:16:43:8e:
                    cf:24:e7:0c:79:d9:47:4b:e7:80:e6:b7:f2:9f:95:
                    71:90:d8:d1:5f:5d:9d:6b:be:ff:f4:dd:4e:eb:64:
                    71:16:c9:b1:21:ed:f2:05:7b:05:bb:3a:fa:90:fb:
                    86:4f:21:c7:91:48:dc:10:10:fa:96:93:f9:7d:16:
                    56:43:0a:84:28:37:a6:02:bf:ba:7c:21:3a:24:9b:
                    33:99:31:41:9f:47:bb:0c:94:03:64:e1:47:c6:43:
                    5b:b6:89:df:4e:d6:fd:c1:76:22:05:24:e2:3a:d2:
                    e9:a7:85:49:c5:7c:ee:da:14:7c:03:56:fe:e4:63:
                    c6:3d:88:5e:57:89:1b:eb:fe:51:c3:88:02:ed:3e:
                    e3:50:63:46:c9:da:ca:4f:22:fc:85:e7:3a:f0:89:
                    dd:86:eb:c6:e8:bd:da:78:aa:9f:33:fe:e4:2f:79:
                    16:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:A6:81:3C:F7:DA:7A:5D:CA:6F:22:D4:3C:8D:B6:53:99:08:5B:64
            X509v3 Authority Key Identifier:
                keyid:E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:e2:71:65:b2:46:79:1f:ff:92:3f:38:3f:40:ab:cc:1b:0b:
         fb:41:c4:7c:72:d9:6a:ad:b3:1f:c6:e3:68:3b:a7:79:1b:ed:
         d1:1e:f7:e7:49:ce:f7:9e:95:1f:1d:08:2e:ea:ff:65:9e:8d:
         0b:5d:c9:0c:a0:59:11:18:40:ea:7c:fa:48:3e:de:e8:d8:6a:
         6e:da:fc:46:6f:cb:9c:f8:3d:da:48:32:91:0c:b8:4a:18:20:
         7a:1d:94:ce:51:d1:4b:e1:0a:56:6a:03:29:a0:96:f9:6d:fc:
         76:e8:31:e6:7a:e7:38:39:c8:d2:bc:07:1f:eb:7e:a2:7f:03:
         f4:27:85:24:f5:ae:43:8a:ec:70:e2:d9:72:4d:d5:5d:ad:15:
         d3:62:61:d4:f9:20:f4:86:e1:45:5a:28:1f:46:1a:d3:fe:5a:
         f5:70:8e:8c:7d:a6:70:c5:f8:a8:19:81:eb:e2:f6:99:57:62:
         a5:2c:07:e0:8f:46:fe:69:a6:61:ef:f5:63:7e:a2:dd:33:62:
         ec:10:eb:a0:63:62:23:b1:63:ee:39:4c:2c:57:25:65:93:27:
         80:cd:b7:8b:53:59:e6:c2:29:60:78:8d:28:6e:82:67:de:24:
         a8:ed:98:a6:33:9f:ac:13:49:eb:44:5d:12:6e:b5:d3:ec:19:
         cd:82:2e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----