Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
File:                     UW2UBk9zhVXozjZaGVfWnnaICcQ.mft (raw, json)
Hash identifier:          yyo3hf6qqGbcTwNGB6hq+UgtiR1fzJFjVOdXx2h+1wQ=
Subject key identifier:   3A:6E:EF:6E:89:E2:1F:CD:84:DD:F3:A8:AB:20:9C:84:52:EF:40:3E
Authority key identifier: 51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4
Certificate issuer:       /CN=516d94064f738555e8ce365a1957d69e768809c4
Certificate serial:       0198D65F328C3E23E59EBAFA76624B72A8E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
Manifest number:          062B
Signing time:             Sat 23 Aug 2025 10:00:19 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:19 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:19 +0000
Files and hashes:         1: UW2UBk9zhVXozjZaGVfWnnaICcQ.crl (hash: eofyBVN+sUHeSSJgi3FrO8UMIvxHgMyDbjxrJw8uZWk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:32:8c:3e:23:e5:9e:ba:fa:76:62:4b:72:a8:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=516d94064f738555e8ce365a1957d69e768809c4
        Validity
            Not Before: Aug 23 10:00:19 2025 GMT
            Not After : Aug 24 10:00:19 2025 GMT
        Subject: CN=3a6eef6e89e21fcd84ddf3a8ab209c8452ef403e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:fe:f9:da:3f:18:18:0c:ec:b3:4f:e1:7a:5f:
                    1a:66:19:26:8c:b1:25:52:5d:2c:fb:cc:1a:56:0d:
                    a8:05:c9:91:33:df:18:bf:ff:14:48:55:c4:fa:7e:
                    b7:0a:4e:ef:ec:09:40:e0:3f:70:e6:5c:95:b1:2a:
                    6d:51:2b:4b:c0:49:00:94:07:9c:9e:8b:e8:51:f9:
                    02:72:5d:fa:40:b9:87:2f:ae:34:82:fc:e6:0f:bb:
                    34:eb:9c:f5:46:8d:53:12:e3:82:66:d5:90:9c:5c:
                    95:85:3e:38:3b:c7:da:b0:4f:cf:38:4a:51:95:0a:
                    5f:22:f6:20:3d:9f:3c:12:88:f2:e0:1e:3e:78:9c:
                    8d:0e:f3:02:f3:02:61:7c:c6:7e:db:93:27:f5:b8:
                    5d:23:70:47:c7:8e:a1:37:59:ec:22:11:69:df:65:
                    c0:1e:b5:2d:8d:96:c6:6f:e3:ed:0f:32:75:34:2a:
                    d6:92:63:72:b9:28:c9:f7:78:f3:b5:0f:56:d9:77:
                    ab:ba:ec:d3:47:44:89:7f:46:fb:fa:ac:6d:8f:40:
                    11:5b:c1:c5:1a:ba:64:93:c7:fa:1a:d5:73:b1:28:
                    ed:ed:51:a9:b6:e1:f4:26:01:8e:0f:4c:89:1f:e0:
                    49:dc:5b:3a:3c:58:bd:df:54:73:cd:7d:75:dc:2b:
                    b8:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:6E:EF:6E:89:E2:1F:CD:84:DD:F3:A8:AB:20:9C:84:52:EF:40:3E
            X509v3 Authority Key Identifier:
                keyid:51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:bc:86:93:12:ae:23:51:21:8b:5d:02:ef:9b:ca:52:d4:bd:
         e8:cd:1e:31:01:f1:d1:cf:57:af:30:60:ad:a9:1a:e2:4f:37:
         21:a7:b3:77:74:4a:6f:a5:54:5e:1e:59:f3:ba:2b:99:73:b0:
         52:8d:35:c6:f6:87:8f:d2:57:5f:b8:87:55:d2:10:93:15:38:
         59:10:cd:a1:ed:04:18:31:b3:21:ab:19:4b:04:1e:0e:7d:55:
         ee:7d:8e:34:d8:ed:69:4b:d7:24:ca:56:10:a9:c6:d4:d1:7e:
         66:cd:b5:0a:fa:5b:b6:cb:e5:ef:04:ea:e4:89:31:de:4e:30:
         6b:6f:aa:b3:25:62:e2:94:3a:99:ee:28:f2:97:41:5b:f8:8f:
         41:e3:b4:d5:a4:00:f6:3f:73:e8:b6:9f:d6:39:0c:70:aa:d2:
         0f:1e:a7:dc:39:3b:a1:85:25:44:75:7e:91:2e:71:19:36:00:
         52:3f:28:21:d2:69:e8:4b:bd:fb:41:d2:a0:38:86:6e:c8:77:
         78:22:1f:25:80:1f:c2:50:40:49:6c:49:e9:0d:e6:4a:f0:b9:
         dd:2d:cc:0a:ae:a8:9e:a6:01:f1:55:06:46:9b:44:ed:3c:01:
         4a:6d:6b:92:12:7b:3b:bf:3e:b6:7a:1a:35:fc:b2:7a:9c:0a:
         aa:9f:92:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----