Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft
File:                     zdCuQc2rVZhilkF4v-rjaElrB9c.mft (raw, json)
Hash identifier:          7acJ5SaFId20N69Tup8PRsCACGO4m3NvUl4XVU77Ty8=
Subject key identifier:   4E:2C:16:0F:30:99:94:A5:97:52:E2:D1:01:79:EC:F8:5F:C1:50:89
Authority key identifier: CD:D0:AE:41:CD:AB:55:98:62:96:41:78:BF:EA:E3:68:49:6B:07:D7
Certificate issuer:       /CN=cdd0ae41cdab559862964178bfeae368496b07d7
Certificate serial:       0198D7A92A69612A1ABCAB61F2693ABC16AA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zdCuQc2rVZhilkF4v-rjaElrB9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft
Manifest number:          0D2A
Signing time:             Sat 23 Aug 2025 16:00:44 +0000
Manifest this update:     Sat 23 Aug 2025 16:00:44 +0000
Manifest next update:     Sun 24 Aug 2025 16:00:44 +0000
Files and hashes:         1: zdCuQc2rVZhilkF4v-rjaElrB9c.crl (hash: AezMwT1xD3NFniOJLU2xZfKDLV945EYReH8e5Stjb7E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zdCuQc2rVZhilkF4v-rjaElrB9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:a9:2a:69:61:2a:1a:bc:ab:61:f2:69:3a:bc:16:aa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cdd0ae41cdab559862964178bfeae368496b07d7
        Validity
            Not Before: Aug 23 16:00:44 2025 GMT
            Not After : Aug 24 16:00:44 2025 GMT
        Subject: CN=4e2c160f309994a59752e2d10179ecf85fc15089
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:6c:38:45:4a:d9:4b:20:3e:77:6c:30:a3:e0:
                    40:49:c8:dd:cb:24:f6:e2:a1:67:52:89:d0:68:fa:
                    d0:e8:27:9a:55:5b:51:c5:42:65:d4:47:ac:8c:92:
                    05:64:31:26:dd:05:38:16:0e:52:ba:8a:95:df:3e:
                    72:ff:cd:e3:83:1c:fa:86:4b:fb:e3:c7:3b:2f:ee:
                    97:24:64:42:9e:31:b8:eb:95:59:39:6c:5c:9e:21:
                    c3:ed:07:76:5e:ef:b4:56:97:b2:cc:c4:45:59:ae:
                    a0:ac:e2:e6:66:e9:0c:08:3e:4f:40:66:3b:98:57:
                    df:ca:57:d2:29:be:1d:21:3b:03:ac:9a:72:db:49:
                    13:bc:92:27:03:01:ae:e1:d4:69:6c:5b:08:90:32:
                    30:64:db:75:a8:ec:08:b7:e2:a4:8c:41:57:42:74:
                    25:d1:ec:33:dd:6d:8b:fb:62:94:cc:fc:0b:6b:e5:
                    6e:0f:a9:8f:4a:dc:0c:66:42:60:9d:ac:a3:a1:4b:
                    e2:c9:aa:b1:e7:36:02:6f:7e:d5:0a:29:dd:72:2d:
                    18:37:da:d3:fa:0a:cc:a7:66:35:44:5b:79:df:ce:
                    de:33:69:76:fe:2f:cc:43:2b:c6:3d:c6:07:7a:32:
                    ba:dc:24:34:87:fb:24:00:c1:7c:9f:df:05:2a:ed:
                    0e:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:2C:16:0F:30:99:94:A5:97:52:E2:D1:01:79:EC:F8:5F:C1:50:89
            X509v3 Authority Key Identifier:
                keyid:CD:D0:AE:41:CD:AB:55:98:62:96:41:78:BF:EA:E3:68:49:6B:07:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdCuQc2rVZhilkF4v-rjaElrB9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:a6:b2:1b:66:75:0f:3f:cf:e3:0a:52:4f:68:d0:4e:27:71:
         59:92:c8:07:59:d5:3c:40:8f:29:dd:53:54:16:20:ce:32:a5:
         fc:9f:61:65:95:ee:18:a3:a2:97:cb:fd:15:5a:f9:48:d3:0e:
         7a:ba:15:30:eb:34:81:09:33:5c:fd:80:b5:78:d9:5e:b0:5a:
         a7:b9:22:9f:32:09:1a:07:57:0e:b4:4f:33:c0:85:05:c5:80:
         25:a1:0c:2d:2c:8b:c0:37:c4:0f:8d:b2:74:9f:c4:24:41:64:
         5d:0a:ca:41:80:e3:be:ca:bb:f6:eb:76:40:ae:0f:68:36:3d:
         5f:23:d7:71:f5:3f:c6:60:14:b1:a3:59:f1:26:76:7d:87:c2:
         c9:bb:db:06:c3:b1:ab:00:33:32:7e:89:f8:c7:a2:18:5f:e7:
         11:76:f0:2b:d0:c0:11:e8:96:68:5d:21:d5:5f:c7:be:bb:96:
         99:74:3c:65:64:d9:74:df:53:35:bb:d3:a3:bc:36:82:ab:dc:
         66:d5:78:15:d2:13:42:4d:95:84:9d:21:00:21:aa:96:f3:d8:
         3c:77:ae:b1:f6:20:d2:f7:d2:cf:a5:48:dc:e7:08:28:47:9f:
         a5:7f:75:93:8c:1e:72:4f:e6:3f:e6:d1:b3:3e:3a:77:66:d3:
         25:5d:c6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----