Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/S4UouKy8h0J2SlgajZeaGEKVZj4.mft
File:                     S4UouKy8h0J2SlgajZeaGEKVZj4.mft (raw, json)
Hash identifier:          7i6BVjOz86s5FwD1yDIVAXGntCUxtpQG7WMse2vs5iw=
Subject key identifier:   85:80:07:6F:E5:40:8B:34:48:93:80:D5:23:D8:CC:2E:BC:3E:9D:58
Authority key identifier: 4B:85:28:B8:AC:BC:87:42:76:4A:58:1A:8D:97:9A:18:42:95:66:3E
Certificate issuer:       /CN=4b8528b8acbc8742764a581a8d979a184295663e
Certificate serial:       0198D4A7D78413A4F3A6C1AFE5DAC14C4FB7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/S4UouKy8h0J2SlgajZeaGEKVZj4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/S4UouKy8h0J2SlgajZeaGEKVZj4.mft
Manifest number:          03F8
Signing time:             Sat 23 Aug 2025 02:00:26 +0000
Manifest this update:     Sat 23 Aug 2025 02:00:26 +0000
Manifest next update:     Sun 24 Aug 2025 02:00:26 +0000
Files and hashes:         1: S4UouKy8h0J2SlgajZeaGEKVZj4.crl (hash: vZR5Y6RksBCrgH8f+j+xsSWJ1mAWJ4IF+3iUS2SSbl0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/S4UouKy8h0J2SlgajZeaGEKVZj4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/S4UouKy8h0J2SlgajZeaGEKVZj4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/S4UouKy8h0J2SlgajZeaGEKVZj4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:a7:d7:84:13:a4:f3:a6:c1:af:e5:da:c1:4c:4f:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b8528b8acbc8742764a581a8d979a184295663e
        Validity
            Not Before: Aug 23 02:00:26 2025 GMT
            Not After : Aug 24 02:00:26 2025 GMT
        Subject: CN=8580076fe5408b34489380d523d8cc2ebc3e9d58
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:8e:89:29:5e:54:b6:ef:3e:60:8d:75:7c:e2:
                    39:8e:0d:e5:ed:4c:1f:23:d5:52:48:e0:d7:d6:ce:
                    ed:d6:99:ce:00:f8:8a:84:19:3a:0b:45:1e:1b:1d:
                    84:a3:e6:00:05:6b:21:ed:2a:00:b2:77:4c:07:9e:
                    63:79:24:ba:ee:86:b7:3d:49:b6:53:f9:c1:69:c0:
                    34:37:e0:38:bb:5d:6c:db:69:27:ea:10:c8:c8:b4:
                    1a:38:8f:81:9e:ea:5d:b6:66:52:3b:89:67:ca:9a:
                    4e:be:e2:7f:b9:7a:b4:bd:8d:ac:45:a3:14:5d:67:
                    33:09:67:5f:3b:dd:34:b4:a9:11:3b:69:d3:fa:79:
                    13:3d:bb:f1:28:d5:48:e6:c7:aa:d2:a2:e6:df:c8:
                    63:9c:db:61:95:2e:f7:1e:2e:9e:0a:d9:04:17:65:
                    f7:5e:aa:f1:09:7e:33:7a:d0:2b:27:ff:c1:a4:03:
                    62:80:18:ca:30:30:47:28:31:a9:37:9c:e1:7b:f4:
                    f3:6b:cb:66:9c:d3:26:ef:4b:b0:9c:ad:08:66:59:
                    78:df:72:cc:4a:0a:d9:da:45:d3:5d:ec:60:4e:37:
                    cf:fa:f9:18:5e:ad:f8:e4:f4:0d:7a:87:39:75:cb:
                    db:c5:6b:de:46:f6:81:71:0a:48:a8:e3:02:e9:08:
                    03:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:80:07:6F:E5:40:8B:34:48:93:80:D5:23:D8:CC:2E:BC:3E:9D:58
            X509v3 Authority Key Identifier:
                keyid:4B:85:28:B8:AC:BC:87:42:76:4A:58:1A:8D:97:9A:18:42:95:66:3E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S4UouKy8h0J2SlgajZeaGEKVZj4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/S4UouKy8h0J2SlgajZeaGEKVZj4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/S4UouKy8h0J2SlgajZeaGEKVZj4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:36:40:db:29:30:62:6d:56:98:16:50:5c:39:68:8b:31:34:
         da:79:01:77:7c:65:2f:e3:fd:0f:bf:8c:1b:46:c9:b2:4d:bd:
         52:5b:d7:35:f2:05:1c:81:69:4d:f3:f9:b2:2b:d9:cb:5b:7a:
         ba:aa:3c:d5:63:dd:ab:f0:5e:d9:5d:2d:1d:cd:e2:a4:67:2c:
         fe:d0:24:47:87:3b:9d:c4:dd:cd:ce:96:6f:5b:04:8e:12:49:
         36:1c:23:a7:3c:67:e5:eb:af:b8:b9:ba:6f:ae:75:a4:1b:75:
         94:e7:64:b1:60:59:b4:c3:31:b3:f2:a5:e3:d3:4b:f2:f7:1c:
         05:5f:d1:4f:f8:47:f7:4f:ff:4a:e3:3f:11:e0:d8:48:2b:81:
         75:ff:97:fa:d3:10:90:e7:d7:46:5c:02:2c:0c:17:0c:04:ff:
         29:0e:bf:3b:07:82:5b:3c:94:78:e5:0b:01:f4:34:05:8e:b3:
         63:9e:4f:4d:c2:92:b2:da:ab:be:d0:00:0d:89:e4:e0:31:65:
         83:6a:f4:65:bb:95:ca:a2:b7:b7:4e:8c:88:c0:72:62:bd:2f:
         e7:d8:65:55:ef:35:2e:45:a4:e0:09:ed:17:73:09:1c:60:f7:
         09:97:5f:ad:bd:ce:06:6d:ee:42:4a:6a:97:b0:23:a5:12:4a:
         a0:bb:d4:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----