Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft
File:                     IIP4tbYgnefJQAjzM3vjQ2866-Y.mft (raw, json)
Hash identifier:          23We4PVcACEdH2YP8bitPrZOCoT6EC9GLwT+hUqnNL0=
Subject key identifier:   D9:81:63:AA:D0:2A:5E:9F:B3:E6:B1:91:A2:DB:67:B6:A0:2E:FB:AC
Authority key identifier: 20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6
Certificate issuer:       /CN=2083f8b5b6209de7c94008f3337be3436f3aebe6
Certificate serial:       0198D583E03304210047A3DAA576E91D2416
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft
Manifest number:          069E
Signing time:             Sat 23 Aug 2025 06:00:46 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:46 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:46 +0000
Files and hashes:         1: IIP4tbYgnefJQAjzM3vjQ2866-Y.crl (hash: Q/dF/MsBu0XNI0XAf3YvgeJnBL3eagoKwZw8WeBZ1wc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:e0:33:04:21:00:47:a3:da:a5:76:e9:1d:24:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2083f8b5b6209de7c94008f3337be3436f3aebe6
        Validity
            Not Before: Aug 23 06:00:46 2025 GMT
            Not After : Aug 24 06:00:46 2025 GMT
        Subject: CN=d98163aad02a5e9fb3e6b191a2db67b6a02efbac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:46:ed:bf:3a:78:90:e6:e4:3f:44:47:0c:61:
                    3b:c0:84:93:88:a4:c9:14:b9:a7:5c:02:4a:2e:8c:
                    13:4d:b8:8d:cc:07:30:08:73:76:f0:89:da:c5:11:
                    97:f5:8b:25:75:24:2b:a1:6e:04:cf:b6:7d:ab:77:
                    b9:06:1f:ea:59:c1:d3:3f:7c:a7:9c:a8:73:36:4d:
                    ae:e4:51:f2:d2:be:6e:77:9b:ed:3f:06:b4:77:2c:
                    9d:81:df:12:b0:4e:39:f7:68:a5:7d:f4:ed:8a:a7:
                    8b:23:e5:cb:ec:e4:0b:4b:76:39:46:00:a8:30:86:
                    fb:7d:f0:31:76:0e:98:37:79:24:51:f1:96:55:c9:
                    fd:24:4e:7b:d8:cf:bc:8c:96:6d:f0:c9:8e:d2:37:
                    6d:b9:f8:68:e5:c6:ff:57:4e:79:f9:7f:3a:79:db:
                    c7:7d:13:95:54:cd:72:df:d2:06:b3:0f:47:67:3f:
                    2d:72:5b:68:9c:80:92:bb:b9:85:95:ce:d9:27:c0:
                    a7:4e:6b:99:6b:f3:75:81:94:f1:2b:65:df:2d:77:
                    78:94:78:0e:85:34:4b:fe:4c:14:7b:c1:d5:88:bf:
                    52:17:6d:c5:1e:b5:30:a1:c7:f0:e5:34:15:1f:fa:
                    3e:05:a6:83:20:e8:4d:81:69:30:fd:40:b4:a7:d2:
                    b4:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:81:63:AA:D0:2A:5E:9F:B3:E6:B1:91:A2:DB:67:B6:A0:2E:FB:AC
            X509v3 Authority Key Identifier:
                keyid:20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:e0:5a:34:8e:bf:f6:ec:36:0e:94:fa:63:0b:49:df:a2:66:
         d8:26:9d:7a:61:8c:8b:af:2e:c2:7c:d8:5e:62:53:22:f6:2f:
         98:77:25:e6:95:e1:5f:b4:51:28:af:f9:c7:70:7d:bb:73:82:
         3c:69:09:94:79:75:7a:ea:7e:37:a5:8e:8f:ec:64:27:9c:0f:
         5b:6c:03:dc:2f:03:56:be:c3:19:f9:d5:6e:2e:a8:5d:6c:2b:
         79:c3:2b:90:f2:69:8c:05:56:5a:7c:7c:2f:c4:3f:e5:fc:16:
         a2:89:9e:52:f2:f1:d6:3a:54:4b:ff:3d:4e:8a:2f:d4:20:1e:
         f7:95:4e:4b:23:5a:57:73:42:c0:bb:57:b4:17:e7:c0:71:bd:
         61:38:32:eb:ba:99:88:48:ed:36:f1:66:32:a6:4d:67:b8:e6:
         7c:1a:f7:53:e6:a6:23:29:91:68:81:c4:ce:1f:f8:5a:52:07:
         48:38:aa:d8:27:4f:fe:bb:a0:c3:5f:a5:b2:2a:85:17:f3:56:
         80:da:d2:65:2f:e5:1d:6f:f3:30:b2:45:73:3b:d8:14:a6:e1:
         94:b9:3e:0e:f8:21:92:e9:82:72:70:23:c4:bf:01:94:c6:c6:
         57:9b:11:00:7b:7b:4a:9e:06:88:dc:d7:73:39:f1:01:84:eb:
         e4:2d:63:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----