Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
File:                     eXqQW0595YVil_bgOmViXeIsQvM.mft (raw, json)
Hash identifier:          vmPQ162Ryet11Y9nZdWhHkaAMl2G9soI+xdC0RXtpGw=
Subject key identifier:   C9:7C:F7:88:F3:F8:27:68:19:26:6A:9D:2A:E3:6E:14:4D:63:FD:F2
Authority key identifier: 79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3
Certificate issuer:       /CN=797a905b4e7de5856297f6e03a65625de22c42f3
Certificate serial:       0198D65FD152ED69597C11620D12BD3AA8D8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
Manifest number:          0E15
Signing time:             Sat 23 Aug 2025 10:01:00 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:00 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:00 +0000
Files and hashes:         1: eXqQW0595YVil_bgOmViXeIsQvM.crl (hash: CuGy8lo1OEfb8UV0JAKq41VaWiuZ67MnnbjZ23wzxh4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:d1:52:ed:69:59:7c:11:62:0d:12:bd:3a:a8:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=797a905b4e7de5856297f6e03a65625de22c42f3
        Validity
            Not Before: Aug 23 10:01:00 2025 GMT
            Not After : Aug 24 10:01:00 2025 GMT
        Subject: CN=c97cf788f3f8276819266a9d2ae36e144d63fdf2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:39:1d:55:d0:3c:62:04:f9:dd:75:c8:13:0a:
                    fc:71:d4:db:21:92:da:fd:f5:3c:56:49:7b:a8:15:
                    bb:54:88:c2:97:40:a2:bf:9f:81:a2:7e:1f:bb:34:
                    1a:0b:3e:3c:91:39:39:53:09:f3:15:32:84:09:e3:
                    75:75:ed:0e:38:f1:05:5a:36:25:0a:04:c0:5a:85:
                    bb:d5:cc:0c:a3:c6:a4:30:1b:1c:43:69:f0:8f:eb:
                    2e:76:2e:85:9f:54:c7:18:c1:f5:b9:b3:38:3f:f2:
                    51:f9:62:54:27:e1:04:d5:1f:77:e8:54:d1:c9:fc:
                    d1:ac:5f:83:c5:25:1d:28:a9:3f:01:07:94:2c:a0:
                    a8:60:c4:0b:e8:96:eb:d4:17:37:ad:fd:d7:91:08:
                    fd:cd:33:32:1a:83:33:dc:57:12:2d:a0:d7:7f:cd:
                    cf:5a:36:58:07:b3:a0:57:74:92:b7:73:70:b4:c5:
                    4d:de:9d:b3:8c:2d:e5:f1:5e:b8:57:26:66:c5:de:
                    4c:5e:4a:9d:90:90:12:98:b9:a4:c7:09:4a:9a:2c:
                    f6:55:37:a2:93:0e:eb:d5:26:24:be:c8:92:7b:4d:
                    08:53:26:3f:bf:9b:af:ad:6d:20:59:61:2d:6d:28:
                    d3:6f:28:4b:fe:87:b3:6d:d3:4d:21:14:73:8a:aa:
                    0a:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:7C:F7:88:F3:F8:27:68:19:26:6A:9D:2A:E3:6E:14:4D:63:FD:F2
            X509v3 Authority Key Identifier:
                keyid:79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:77:92:45:c0:48:78:86:e5:cb:e5:e3:5c:4d:43:5f:1a:6a:
         05:14:8f:6b:b3:1c:be:5f:03:e3:ec:0a:02:27:bc:7a:8d:11:
         c3:a8:b7:6a:fb:e2:aa:a6:f6:71:22:f9:6d:75:fd:7f:eb:c3:
         d5:22:fd:ac:af:99:ab:91:14:49:9a:73:fa:98:b6:d9:10:a9:
         94:39:34:88:a6:16:52:f7:23:87:06:55:3d:d0:d1:90:3e:b2:
         3e:f2:de:d4:f6:51:11:2e:1f:8b:f1:a6:46:7b:50:06:69:8d:
         9f:a7:d2:b6:ec:c9:73:6d:2d:41:e5:65:9e:f3:c9:62:5a:76:
         14:2e:64:fc:63:46:12:be:f4:20:fd:9c:17:86:59:3f:37:ec:
         be:25:92:11:f4:06:f5:b0:d1:66:76:bd:ad:db:ef:d9:59:8d:
         25:55:9d:68:af:25:19:e6:7e:dd:fa:1f:e5:5a:3b:6c:70:b0:
         9b:fe:9f:fc:e1:84:82:d7:a8:98:04:d4:33:85:c8:71:e2:9a:
         06:91:64:ce:7b:fe:4a:95:de:c7:a2:1c:b5:b5:72:ca:de:3d:
         19:b0:ae:68:39:78:1b:60:74:55:73:5b:da:74:bf:fe:0d:dc:
         74:02:9f:9e:91:bf:33:52:e5:77:45:5d:b0:1e:d3:2f:a4:3c:
         82:80:26:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----