Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
File:                     9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft (raw, json)
Hash identifier:          IKcdzqw6Wo/6I9zRsBVVSWRRutJPUN/AiddD0PSZF/A=
Subject key identifier:   2D:D0:AE:BF:16:71:3C:0F:D3:4C:77:0A:35:3B:09:B6:CE:B8:3B:DA
Authority key identifier: F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84
Certificate issuer:       /CN=f70592c90b4cb245e54718d7c5799b47d419a684
Certificate serial:       0198D5BB863C250E9FC69298BCE7CE77720A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
Manifest number:          1647
Signing time:             Sat 23 Aug 2025 07:01:33 +0000
Manifest this update:     Sat 23 Aug 2025 07:01:33 +0000
Manifest next update:     Sun 24 Aug 2025 07:01:33 +0000
Files and hashes:         1: 9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl (hash: Jsmg598zufMGGde7StzIbagSeN98TfoTZ9ye4xeqSWg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 07:01:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:bb:86:3c:25:0e:9f:c6:92:98:bc:e7:ce:77:72:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f70592c90b4cb245e54718d7c5799b47d419a684
        Validity
            Not Before: Aug 23 07:01:33 2025 GMT
            Not After : Aug 24 07:01:33 2025 GMT
        Subject: CN=2dd0aebf16713c0fd34c770a353b09b6ceb83bda
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:22:46:d0:a0:9e:5c:33:2e:f9:ac:78:b4:5e:
                    9b:ce:33:77:45:ef:3d:10:0b:05:53:e0:11:3f:cb:
                    c6:85:f0:b6:5d:f5:de:b5:38:9b:05:a5:43:b4:fc:
                    ec:6b:54:e0:6c:fc:17:c4:73:3a:2b:2d:8a:f3:12:
                    ba:46:97:4d:ba:ea:d3:3d:a1:34:16:ce:fd:18:cf:
                    98:13:c5:5d:e0:2e:76:34:52:82:67:59:1b:d2:f8:
                    44:6a:a6:58:f0:f3:e4:f2:c7:fc:63:48:1d:41:66:
                    f7:b4:97:8f:06:29:31:c8:a4:87:f4:09:e4:79:17:
                    f1:9b:e4:6a:68:81:1c:e7:63:d1:86:49:e1:22:c9:
                    82:fd:1f:c5:d8:ca:fe:f5:53:44:9a:b6:6f:ef:4f:
                    bd:24:27:a7:08:9b:be:ea:ea:60:87:40:19:d7:13:
                    72:4b:f6:f5:9b:62:d6:72:63:a6:9d:84:90:40:60:
                    a4:52:35:a1:b7:55:1f:aa:42:3c:3e:71:5d:ad:c4:
                    e8:6e:3f:c1:6e:18:5f:e8:d8:b1:46:93:30:f7:d1:
                    3d:32:a0:f8:82:0b:e3:a5:43:e3:a1:99:2d:e2:bf:
                    ad:16:40:dd:dd:12:c1:3f:ce:ed:d4:d8:d4:6f:5c:
                    75:df:39:ef:88:6b:fc:32:23:51:67:a4:e0:19:ac:
                    5d:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:D0:AE:BF:16:71:3C:0F:D3:4C:77:0A:35:3B:09:B6:CE:B8:3B:DA
            X509v3 Authority Key Identifier:
                keyid:F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:8c:42:99:22:e2:af:45:4b:7d:19:58:ca:1d:c2:4b:90:ac:
         e8:35:53:a3:00:e5:49:de:b0:10:01:df:6a:c9:d9:fa:75:ea:
         36:e4:6a:cb:62:85:c6:cd:4a:c3:ae:c9:d2:c3:aa:68:d7:5a:
         20:67:8e:5f:15:15:3e:70:32:ef:36:33:b7:f7:78:e3:79:ef:
         97:a5:96:b8:fa:dc:50:d8:88:b2:ce:ac:ed:24:a8:72:dc:00:
         00:63:c0:c0:02:bd:f5:5b:bb:e0:6f:21:19:e4:33:9e:4d:ba:
         a5:98:c1:eb:8d:a2:6d:1e:58:cd:60:d4:21:d0:65:f7:9c:a5:
         9e:31:97:44:68:88:4d:00:78:9c:ec:59:af:33:7e:56:4d:56:
         e4:a4:03:0b:7f:47:6f:d1:ad:f8:e7:9a:2a:42:5b:22:88:29:
         66:8a:59:a2:8d:b0:8f:24:14:73:86:1e:8a:03:18:80:21:06:
         0b:36:ed:4c:44:62:ca:82:a1:cc:9f:da:d8:94:40:ef:ef:9c:
         58:d1:74:41:17:85:f7:40:b2:c3:47:eb:51:50:01:9b:6e:7c:
         34:3c:b1:4a:1f:4b:d1:f8:7b:de:25:2f:32:d6:1a:90:ab:90:
         bd:96:c8:df:5b:a4:85:a5:3c:10:0d:f5:79:b0:aa:06:f2:e8:
         07:4a:62:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----