Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
File:                     oMWM0HH3gLesNAwBROsE-1DMu_E.mft (raw, json)
Hash identifier:          0GNfcZ7jrTgVRSo7JrlhwYJpKQ6eOuuMOzL5Wtae+PA=
Subject key identifier:   1F:52:A6:23:9B:00:A1:E0:60:B2:53:24:BF:DF:92:06:42:54:DE:03
Authority key identifier: A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1
Certificate issuer:       /CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
Certificate serial:       0198D54E71B4884201BDC4DBA1F2A9565CD6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
Manifest number:          163A
Signing time:             Sat 23 Aug 2025 05:02:24 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:24 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:24 +0000
Files and hashes:         1: oMWM0HH3gLesNAwBROsE-1DMu_E.crl (hash: iQEIddmuO1nSiu01+RHceuneLdRcnnsy6U6CY8xi6LQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:71:b4:88:42:01:bd:c4:db:a1:f2:a9:56:5c:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
        Validity
            Not Before: Aug 23 05:02:24 2025 GMT
            Not After : Aug 24 05:02:24 2025 GMT
        Subject: CN=1f52a6239b00a1e060b25324bfdf92064254de03
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:13:20:5b:a5:96:40:9f:7f:1e:54:c7:56:17:
                    fe:b0:49:f2:fb:ab:ae:4b:2b:d1:8c:f6:63:30:1f:
                    31:3c:40:1b:3b:75:4f:06:66:dc:63:cb:15:e1:65:
                    8f:f6:e0:1c:bb:dc:cf:4b:1d:1b:9a:58:93:3e:a5:
                    3f:45:14:57:47:de:03:cb:29:af:78:32:b3:56:ad:
                    34:b2:4f:49:18:32:25:47:ac:57:f0:b3:ff:5e:e1:
                    0c:fa:d3:1b:fd:b2:6c:d9:a8:2d:52:65:61:56:e9:
                    19:20:65:76:24:8e:56:7e:f1:a3:42:75:9a:5a:f0:
                    6f:c5:d3:25:69:31:cc:26:2c:10:3e:c9:77:2b:5e:
                    f0:d1:f5:9d:02:12:d5:41:63:2e:56:81:10:cb:ca:
                    bc:6d:09:ec:1b:e3:68:21:48:63:cd:aa:1b:29:c6:
                    e6:56:0e:da:53:2d:66:9a:61:d1:bb:fa:0a:e4:85:
                    c9:b2:8b:1a:25:1c:f7:35:2e:40:8f:5b:2f:45:db:
                    ca:09:44:a4:32:43:1c:ed:65:5a:ba:71:7f:07:ab:
                    24:94:fc:51:a7:54:d5:b4:46:fd:6a:82:9f:91:71:
                    2e:b8:66:14:e0:da:15:31:b9:1b:00:b1:67:c7:d4:
                    b0:63:50:9f:e0:f8:df:63:16:6f:41:5b:a2:22:eb:
                    63:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:52:A6:23:9B:00:A1:E0:60:B2:53:24:BF:DF:92:06:42:54:DE:03
            X509v3 Authority Key Identifier:
                keyid:A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:98:a6:5e:12:e2:33:a1:5e:52:6e:03:45:05:a1:ac:8c:4f:
         42:9f:3b:98:55:d8:f2:ed:e2:82:f6:76:73:01:c0:75:d7:55:
         90:6c:02:61:fd:71:40:c5:0c:97:c9:66:c6:de:b4:4c:9d:30:
         7e:b2:3e:9c:1b:af:d1:5d:67:c6:c4:94:89:60:59:93:64:ee:
         27:58:f7:23:3f:47:fd:25:1e:bd:38:de:fc:ff:cc:1f:6f:1b:
         99:f9:90:b4:a9:75:90:e7:99:58:17:bf:de:ae:7c:c3:d7:fb:
         0e:ad:b1:01:c2:b6:f7:2f:9e:e0:9e:03:40:a6:f3:2a:dd:8c:
         6d:ee:d9:6b:ad:ae:0e:29:b8:76:e2:24:68:c0:07:25:ce:b1:
         90:6c:1f:e7:0e:31:99:aa:02:5e:59:7a:07:65:49:db:7a:bf:
         35:52:c1:11:12:1b:c0:be:9e:1a:1d:95:78:50:78:43:ac:d9:
         13:86:31:b7:f2:de:32:c8:bf:11:8c:fb:01:45:af:ef:31:1f:
         c5:56:8c:d7:c4:23:32:67:a6:34:74:23:07:1f:ad:9e:57:44:
         bc:5b:90:b6:f1:2b:6b:fe:3a:51:57:ea:58:01:30:7c:9a:9b:
         e2:17:d6:f0:aa:8b:ff:f4:63:18:29:73:fd:a1:6a:2a:e0:0b:
         8b:68:0f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----