Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
File:                     ihz-evMMHHJdI25KL8Kv1wn65kQ.mft (raw, json)
Hash identifier:          4Srj8BmqjK1pRJQRqVm/jsdzTHxlCjqEFd3ZHvZHYMI=
Subject key identifier:   EA:D3:49:1B:E5:18:5D:CA:66:83:E8:44:71:F7:61:67:38:D4:5C:D2
Authority key identifier: 8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44
Certificate issuer:       /CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644
Certificate serial:       0198D84F44C9A2DE4D0AEF99DD2FA11EF1B4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
Manifest number:          0A09
Signing time:             Sat 23 Aug 2025 19:02:10 +0000
Manifest this update:     Sat 23 Aug 2025 19:02:10 +0000
Manifest next update:     Sun 24 Aug 2025 19:02:10 +0000
Files and hashes:         1: ihz-evMMHHJdI25KL8Kv1wn65kQ.crl (hash: Cm8pEo7qgUdQJhOg/oVesQ2gEXFn5trhVClr+fbLKFI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d8:4f:44:c9:a2:de:4d:0a:ef:99:dd:2f:a1:1e:f1:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644
        Validity
            Not Before: Aug 23 19:02:10 2025 GMT
            Not After : Aug 24 19:02:10 2025 GMT
        Subject: CN=ead3491be5185dca6683e84471f7616738d45cd2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:67:71:f0:2d:bd:a4:9a:4f:ab:75:fd:7a:b7:
                    75:85:6e:93:cd:7d:d5:3a:e8:57:c8:9e:09:74:e6:
                    88:73:4f:e8:60:3f:a9:f0:d0:d6:51:88:c8:67:49:
                    da:cc:e2:ad:78:e0:c3:ff:19:cf:98:b7:e6:98:94:
                    65:4f:17:57:67:34:b9:b3:ea:fa:13:88:18:39:f3:
                    42:9e:93:de:b7:ad:86:56:1d:44:5a:1f:0c:03:28:
                    fd:80:a0:b2:97:2a:bc:ce:60:7e:4a:f9:7f:75:c0:
                    08:7c:f6:45:38:e2:39:91:17:9e:24:86:f2:5e:29:
                    dc:3c:a7:ae:da:85:a7:f6:96:69:04:33:e8:4d:d5:
                    c9:54:dd:43:5a:f1:45:00:a0:52:f3:4b:66:e2:fe:
                    2a:b4:41:32:32:8f:14:e8:22:e0:8c:e8:b1:e8:fc:
                    74:a9:46:53:0d:78:c7:9b:48:b9:67:ea:6e:7d:ae:
                    9c:04:86:67:ef:5a:77:b1:d1:58:cc:90:5b:a6:95:
                    8c:c6:3a:e0:a1:46:e7:5a:56:16:ca:fc:5b:29:b8:
                    72:0a:6e:ce:b7:0d:e1:02:a0:d6:ad:38:a8:17:10:
                    41:f9:fb:72:77:65:8f:a0:d8:d0:2a:cf:19:a3:2a:
                    b2:cb:69:df:fb:ce:87:da:c5:cf:43:94:0d:89:a6:
                    6c:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:D3:49:1B:E5:18:5D:CA:66:83:E8:44:71:F7:61:67:38:D4:5C:D2
            X509v3 Authority Key Identifier:
                keyid:8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:7a:e2:33:33:1d:66:a0:b5:1d:b4:6d:71:4d:1a:4e:9e:30:
         17:15:35:a4:7b:d5:c1:a3:e8:fe:1d:d9:76:15:3b:5b:d3:3e:
         ec:bb:5a:9b:2e:b9:da:04:64:6e:79:c1:4b:3e:0b:16:cd:05:
         cd:60:6f:2a:95:ff:80:61:eb:dc:b6:56:36:da:0a:80:29:23:
         a1:04:f4:65:0b:e3:0c:b5:3a:93:e6:94:6a:23:25:39:d5:75:
         79:5b:87:1c:01:f3:d6:44:7f:7d:76:5e:33:09:c4:e4:1f:b3:
         fb:38:7f:0b:72:c9:12:72:45:41:82:a8:34:31:18:bf:98:54:
         9e:5c:28:83:d5:ea:63:5a:bf:de:67:54:55:01:d2:da:82:d3:
         0c:cb:0e:8c:e3:55:27:f6:89:4f:18:39:c5:fa:be:60:46:93:
         a8:3b:f7:59:95:4b:9f:54:80:a9:03:23:9e:f4:27:d1:b3:69:
         06:8b:b7:29:45:a1:87:5a:31:1f:e5:05:ce:05:e4:6e:c7:a7:
         e1:4a:8c:48:41:ac:51:ba:7f:2f:90:4b:58:68:3a:40:b0:b0:
         f0:02:70:40:c5:7b:67:15:b4:f8:5e:25:fd:8b:0c:5c:73:50:
         4e:64:8b:3e:ba:be:41:53:42:f7:a1:a8:c0:7e:06:44:8e:d1:
         c9:76:e1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----