Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft
File:                     FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft (raw, json)
Hash identifier:          T3GgnHBk7ASJ7SrpvvMJeU123p1Bb6gtc8u/Lww08IQ=
Subject key identifier:   47:D5:15:81:13:2E:AB:40:46:9C:B0:E2:61:9D:73:12:9D:47:C2:2B
Authority key identifier: 14:BB:6F:AC:69:19:D9:00:A2:FE:BB:78:1D:19:7F:4D:81:34:E0:5B
Certificate issuer:       /CN=14bb6fac6919d900a2febb781d197f4d8134e05b
Certificate serial:       0198D7A8DA68A2AC1A79758DBB2DB2A65F8E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft
Manifest number:          1261
Signing time:             Sat 23 Aug 2025 16:00:24 +0000
Manifest this update:     Sat 23 Aug 2025 16:00:24 +0000
Manifest next update:     Sun 24 Aug 2025 16:00:24 +0000
Files and hashes:         1: FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl (hash: Tv2ZZ2HeyIK6FhmBoAOoJPVLQKMPyQsyXpWntJ0GWrg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:a8:da:68:a2:ac:1a:79:75:8d:bb:2d:b2:a6:5f:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14bb6fac6919d900a2febb781d197f4d8134e05b
        Validity
            Not Before: Aug 23 16:00:24 2025 GMT
            Not After : Aug 24 16:00:24 2025 GMT
        Subject: CN=47d51581132eab40469cb0e2619d73129d47c22b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:08:f3:83:db:87:86:10:6f:3a:68:fa:3a:86:
                    99:50:f0:5d:12:1b:38:87:d8:44:ad:f8:96:70:a5:
                    ac:7a:4c:eb:81:a8:8e:ee:e6:07:49:9e:df:a9:17:
                    ec:e7:83:c9:85:e9:d3:57:16:9e:81:2e:97:b0:49:
                    35:4b:42:f1:72:be:2e:57:84:94:5b:77:ff:d9:7c:
                    02:59:77:81:a0:99:be:a7:70:83:ab:0b:59:c9:0e:
                    12:56:ee:eb:b5:04:e7:07:45:58:4b:88:61:2b:2e:
                    fc:12:5b:2d:2d:2f:5e:eb:aa:81:86:ad:49:96:2e:
                    1e:b0:51:5b:c6:65:89:37:e3:04:21:81:2d:fd:3b:
                    29:c4:7e:6d:ba:2a:b4:28:18:82:22:cb:bb:60:52:
                    24:a7:77:c9:28:0a:7c:fe:75:ca:fa:94:08:0e:3f:
                    3d:86:bb:04:b7:61:31:c2:34:35:ff:73:20:80:dc:
                    2b:70:bd:9c:5d:dc:20:f8:83:01:9d:0c:f5:4c:c7:
                    ae:da:ec:ea:f0:6b:53:82:d6:6a:71:52:78:e3:d3:
                    94:3b:d3:3f:e4:35:46:7a:96:2b:73:27:26:7d:d6:
                    b0:52:06:2d:89:d4:d6:c1:1f:5a:1d:7b:1e:67:ca:
                    b2:d6:26:8a:30:77:12:68:65:f0:4f:ed:a7:36:cd:
                    f0:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:D5:15:81:13:2E:AB:40:46:9C:B0:E2:61:9D:73:12:9D:47:C2:2B
            X509v3 Authority Key Identifier:
                keyid:14:BB:6F:AC:69:19:D9:00:A2:FE:BB:78:1D:19:7F:4D:81:34:E0:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4f4e5f-2549-4ff8-b3f7-2e859575e1ea/1/FLtvrGkZ2QCi_rt4HRl_TYE04Fs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:eb:14:74:76:02:29:a1:f0:b1:ba:55:df:c8:d7:11:31:c0:
         ed:33:8e:9e:c0:e3:d7:93:ab:a7:84:b1:d5:0f:c2:85:75:f8:
         f0:0d:36:ca:0b:38:13:4d:ba:8f:67:74:a6:cf:b8:02:78:84:
         69:ee:b8:cc:99:ac:ed:be:28:e4:ee:1f:7c:63:75:72:84:47:
         0a:f5:67:6d:16:e4:3c:52:f5:08:a1:44:77:d7:16:95:de:23:
         2f:ac:02:90:08:03:f4:3b:93:33:ad:4d:28:64:ec:60:f0:f8:
         53:51:a0:99:95:10:54:1f:85:2e:b8:7c:74:15:99:42:0d:2f:
         e3:2c:9e:d8:f8:d3:3d:80:27:d0:62:02:a6:dd:34:d9:3f:9d:
         c9:27:67:3b:15:8a:b1:02:f6:f3:56:55:20:78:ec:1b:d9:dd:
         0f:c1:14:a0:1c:8d:5c:f2:1e:43:cb:f9:36:b6:67:16:be:95:
         55:b0:13:eb:7e:8b:36:9d:78:c0:c8:f9:60:7f:8a:29:d0:d0:
         d5:0c:1a:1e:38:b8:6b:44:36:9a:8d:08:c1:99:1c:3b:af:19:
         73:9f:dd:de:21:89:4a:0c:8c:1e:92:ef:ae:1a:f7:e8:e1:a4:
         c8:6e:24:6a:f3:31:b6:05:22:c7:21:b5:33:39:97:00:67:ab:
         ad:89:b8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----