Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
File:                     hfR7ZaUlMyab0hmBOlIDr92eXb4.mft (raw, json)
Hash identifier:          wFM7/PT0I2DuUUt5c1pd0LcW9FwDuo8wiG3sIpF8DDY=
Subject key identifier:   46:E1:AE:19:EB:EE:26:E4:70:3C:CE:C7:22:F4:23:32:13:77:4E:C0
Authority key identifier: 85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE
Certificate issuer:       /CN=85f47b65a52533269bd219813a5203afdd9e5dbe
Certificate serial:       0198D4E0344440EF717EE79B82CB201C9C13
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
Manifest number:          123B
Signing time:             Sat 23 Aug 2025 03:01:59 +0000
Manifest this update:     Sat 23 Aug 2025 03:01:59 +0000
Manifest next update:     Sun 24 Aug 2025 03:01:59 +0000
Files and hashes:         1: hfR7ZaUlMyab0hmBOlIDr92eXb4.crl (hash: JUZLrbKWTTWJ+KGRybABxrjUP+clmzpa5BMbhLfcwiY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:01:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:34:44:40:ef:71:7e:e7:9b:82:cb:20:1c:9c:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85f47b65a52533269bd219813a5203afdd9e5dbe
        Validity
            Not Before: Aug 23 03:01:59 2025 GMT
            Not After : Aug 24 03:01:59 2025 GMT
        Subject: CN=46e1ae19ebee26e4703ccec722f4233213774ec0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:ad:dc:6c:f6:21:a4:7c:54:e7:29:24:15:ee:
                    cd:b5:b4:01:50:1c:ce:92:6a:a6:2a:20:8d:cd:9c:
                    43:c1:49:4d:5a:6e:04:e8:9d:51:d8:43:25:bc:b1:
                    5e:3c:d6:7b:38:ec:25:aa:89:5c:15:28:89:1c:5b:
                    b7:69:f5:38:93:bd:bf:c9:d0:e0:01:43:cf:19:35:
                    68:dc:12:b4:34:dc:fb:20:aa:d4:99:8e:8a:09:3f:
                    29:77:3f:ed:5e:91:32:a4:8e:15:1d:28:c4:0c:95:
                    66:12:3b:89:30:eb:41:0f:70:cc:bf:a2:b9:48:8c:
                    89:27:5c:d7:ce:1b:66:b6:30:0a:d1:23:ee:45:be:
                    3a:92:03:9d:2c:4b:d1:d5:b5:85:38:65:a1:68:77:
                    39:2a:8d:7d:57:e6:7a:4c:87:00:4f:d1:fa:b1:35:
                    bb:95:3a:4c:8e:38:1b:96:a6:6d:cd:d9:49:0f:d3:
                    fa:c4:bc:c6:02:bc:ed:d7:db:5a:a8:1a:60:fa:9a:
                    98:58:c6:bf:1a:f8:52:61:21:ff:a1:bb:a6:63:53:
                    3c:07:81:45:52:1f:4a:3c:4f:b4:54:8f:7d:68:75:
                    61:74:28:18:71:7f:dc:c2:ed:e6:6e:00:ae:6a:03:
                    e3:b9:97:9f:b0:9d:c1:56:12:00:57:ae:e7:f4:06:
                    5c:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:E1:AE:19:EB:EE:26:E4:70:3C:CE:C7:22:F4:23:32:13:77:4E:C0
            X509v3 Authority Key Identifier:
                keyid:85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:03:49:cf:5b:15:c1:04:88:c1:34:15:87:67:69:3b:40:29:
         8d:f0:89:30:0e:16:7b:f1:5f:e6:45:1e:26:15:d6:f9:1f:a5:
         ac:e1:7e:55:1a:77:0b:8b:0e:9f:c2:93:3d:a2:9b:44:51:78:
         87:3a:a3:08:2a:24:98:90:b7:89:28:27:0f:44:19:da:a4:b0:
         ec:14:d3:ca:a5:42:81:f1:53:80:73:53:c6:cd:b4:6f:d0:75:
         64:de:c2:a7:82:a7:57:92:9f:b6:f4:c7:54:88:f8:2a:9e:e7:
         41:08:b2:69:f4:bb:2d:e6:82:7b:28:15:6d:43:f0:3f:95:3e:
         68:ee:bd:03:5f:8c:5c:8a:9f:df:cb:4f:a0:9e:d6:a8:d4:5d:
         4e:f4:a5:95:aa:04:31:d6:9e:db:8d:09:57:7e:e1:c7:d4:1a:
         dd:36:a9:d5:ab:ab:90:c0:31:b6:37:41:10:5b:a2:38:dc:ee:
         0f:c2:d1:1c:ae:1a:19:4b:4b:8c:b2:cf:fe:f6:33:23:14:bf:
         20:dd:94:bc:75:3b:50:9c:72:43:c6:2e:9b:e6:29:ef:69:b6:
         b0:35:16:a4:92:6c:a4:e0:74:be:c4:7d:7a:01:75:66:8c:ef:
         1b:aa:88:3c:2c:bc:49:60:39:a4:61:f6:5c:c0:f8:58:57:69:
         05:a3:ad:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----