Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
File:                     0mKOBpte2LRVk0O1tn9atPkiUf4.mft (raw, json)
Hash identifier:          OvXQAx2zidhvKK/1bYvFA8iYsElqxF7NjNfpDMJRZfg=
Subject key identifier:   45:65:9F:05:CC:C8:D8:E2:48:30:7C:E7:4A:62:85:D3:97:82:B9:FA
Authority key identifier: D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
Certificate issuer:       /CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Certificate serial:       0198D8F29804FCA51B85CB603C3FBF80ECF3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
Manifest number:          0196
Signing time:             Sat 23 Aug 2025 22:00:33 +0000
Manifest this update:     Sat 23 Aug 2025 22:00:33 +0000
Manifest next update:     Sun 24 Aug 2025 22:00:33 +0000
Files and hashes:         1: 0mKOBpte2LRVk0O1tn9atPkiUf4.crl (hash: c3SxlnUANmFwwkpOslI1pLUQfy7qXpLEVTLovVQ/5cM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 22:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d8:f2:98:04:fc:a5:1b:85:cb:60:3c:3f:bf:80:ec:f3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
        Validity
            Not Before: Aug 23 22:00:33 2025 GMT
            Not After : Aug 24 22:00:33 2025 GMT
        Subject: CN=45659f05ccc8d8e248307ce74a6285d39782b9fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:b2:88:7e:a5:38:77:62:cd:17:45:aa:0f:76:
                    13:3c:c8:2a:2c:c3:f8:13:9a:95:2e:eb:57:6c:c7:
                    46:e3:a6:6f:ac:55:70:2b:b4:60:6f:5a:ec:09:44:
                    af:51:ce:76:61:81:75:b9:f8:0d:3a:ba:11:47:d4:
                    95:c2:44:2c:b1:c1:33:2b:81:3c:01:cc:01:e4:35:
                    d6:da:66:07:f1:71:28:b5:bd:d9:62:7f:ce:6b:7b:
                    c1:e8:a8:54:d2:13:c0:8e:c1:73:21:62:79:16:40:
                    d6:d7:44:c4:09:22:7e:ff:9e:c8:8e:f2:0f:7d:c5:
                    53:2d:dd:99:fd:bd:da:0f:1d:90:a9:28:8c:99:8a:
                    94:6d:8c:0d:23:74:65:73:ec:6d:de:f0:c8:4a:ac:
                    72:ff:28:79:7c:6d:5d:3f:81:69:f1:e9:81:73:ca:
                    f9:f8:bb:52:d8:a7:60:9d:69:3b:f5:e8:dc:3e:63:
                    7e:87:a8:7d:45:11:08:78:c5:42:d1:d0:52:0e:27:
                    2c:82:1c:9c:75:82:15:28:3c:ed:ae:9b:b8:b0:c0:
                    de:4c:fe:3d:a7:d6:a5:dc:e4:35:10:40:da:22:4c:
                    ca:8f:7e:37:fb:01:42:e1:60:07:13:9a:2e:cb:16:
                    08:b8:d5:f4:15:34:64:82:e4:23:c8:b3:1c:55:16:
                    a6:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:65:9F:05:CC:C8:D8:E2:48:30:7C:E7:4A:62:85:D3:97:82:B9:FA
            X509v3 Authority Key Identifier:
                keyid:D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:d6:b7:5e:24:0f:ab:86:d5:b3:b2:70:8f:29:9c:72:21:07:
         4c:32:6b:af:8d:10:af:0e:81:11:17:9c:2f:7c:fd:f3:62:1e:
         c9:0a:11:5b:d0:3d:bd:91:2e:d0:26:35:28:e1:e2:ce:ab:74:
         b3:17:6d:3d:0d:a7:6c:50:d5:d4:f0:df:09:2a:e9:85:3e:9d:
         4c:83:94:50:55:3c:83:10:19:a3:11:25:41:fb:2a:84:75:11:
         94:aa:c7:51:37:28:17:d3:5f:e6:1d:27:7a:31:22:c3:b5:65:
         55:af:14:50:2c:78:16:4d:a3:08:bc:e4:c4:a7:17:5b:53:2d:
         27:b8:e9:4e:a3:2f:0a:d8:4d:c2:6c:f4:4a:1d:b7:42:ba:aa:
         4b:a5:11:8e:22:f9:87:2f:3d:c1:54:03:31:4c:7d:7a:63:45:
         b4:5c:5b:d4:e7:14:ef:c5:82:db:c2:e4:c3:dd:e6:b9:73:4a:
         5b:79:6d:17:9f:56:84:7b:53:db:92:f5:f9:e7:2c:76:60:0a:
         6e:aa:3b:ad:65:2e:66:54:fe:61:8e:3c:a0:db:cf:0e:83:29:
         18:26:a4:fa:54:26:35:f4:2a:ba:8f:05:97:a2:f7:71:6f:91:
         94:02:a5:d8:4f:b3:98:8f:b5:d2:1d:9e:72:1c:fd:e0:3e:43:
         83:ff:94:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----