Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
File:                     PpeXKwFXszTha_kfKifuDi3BOag.mft (raw, json)
Hash identifier:          0Ze+TxJOgCXjHHNAgGKeLOG8smQrTYyQCpJPxjAm79M=
Subject key identifier:   89:7A:C1:59:E3:D9:15:BD:DE:E2:8A:62:0A:98:54:20:56:3A:F4:6B
Authority key identifier: 3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8
Certificate issuer:       /CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8
Certificate serial:       0198D583EBBD442879E398010611CD546233
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
Manifest number:          02B7
Signing time:             Sat 23 Aug 2025 06:00:49 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:49 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:49 +0000
Files and hashes:         1: PpeXKwFXszTha_kfKifuDi3BOag.crl (hash: EztEyjYzgIBv35IsiSIBK0ZTieVv65r3l+X1yXhuWPM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:eb:bd:44:28:79:e3:98:01:06:11:cd:54:62:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8
        Validity
            Not Before: Aug 23 06:00:49 2025 GMT
            Not After : Aug 24 06:00:49 2025 GMT
        Subject: CN=897ac159e3d915bddee28a620a985420563af46b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:80:01:89:29:10:cc:99:7d:b2:ae:e2:78:66:
                    99:6c:f0:04:ca:8a:86:cb:81:4a:96:1f:46:c5:da:
                    91:8d:b1:a0:63:3e:84:6d:37:c7:52:9d:c1:ae:ed:
                    d6:ee:81:ac:e3:42:46:e4:2f:0b:d2:1a:09:10:2b:
                    be:12:da:d2:d5:2b:c1:db:b5:46:a0:a0:c9:28:a7:
                    01:1f:85:6b:24:3e:f8:a0:c2:60:2f:92:a6:b3:d3:
                    17:60:87:63:20:b4:d2:7b:28:44:b5:3f:50:10:d1:
                    ad:18:79:d3:1e:3d:03:e7:77:7e:30:d6:95:42:ae:
                    a8:a8:43:50:c2:4b:26:09:f8:85:8a:cb:aa:a1:45:
                    fb:17:b1:5f:01:0a:47:8f:d8:e8:3b:2e:99:1c:7f:
                    78:94:b9:f3:56:2f:57:f2:5a:6f:70:12:66:80:ac:
                    8e:92:d4:63:48:01:e9:ad:8a:8f:65:1d:ea:a5:d5:
                    65:2c:fb:f7:a5:aa:4f:35:aa:7e:9e:09:7e:22:de:
                    1c:72:13:fb:97:e4:bd:13:f4:a7:35:ad:41:fc:f2:
                    4e:23:11:12:88:bb:7e:11:65:f0:05:9f:18:ae:52:
                    2e:af:c2:5b:54:25:6f:0f:dc:c5:8c:7e:a8:58:d9:
                    ea:6b:81:0d:de:e5:25:26:44:b3:0b:cd:1a:b7:08:
                    d3:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:7A:C1:59:E3:D9:15:BD:DE:E2:8A:62:0A:98:54:20:56:3A:F4:6B
            X509v3 Authority Key Identifier:
                keyid:3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:45:36:3f:1c:d4:fa:75:fc:18:ad:b0:81:4a:b5:58:41:b7:
         8e:76:27:57:59:a9:41:9d:b9:c9:4b:95:b6:a2:83:c6:9f:51:
         0d:3f:3f:f6:72:67:1e:16:99:5e:fd:53:42:a2:e8:6d:d9:ae:
         bb:7c:d7:04:5a:f4:3b:9c:4d:1f:72:8c:62:77:ef:f2:0a:c0:
         b8:79:4b:b4:51:76:94:a5:c3:8b:ce:fd:92:5f:90:86:b8:30:
         4a:d6:f5:10:b2:e4:03:30:bc:7c:b9:20:9c:bf:92:7b:72:99:
         ab:73:4a:2e:11:16:a4:38:84:7c:b3:75:5e:e1:3e:aa:c6:00:
         5f:ba:1a:48:11:c4:1a:84:cb:79:8d:d3:51:ae:a6:dd:bf:ad:
         5d:95:1c:c7:e5:64:a5:29:47:6d:fd:e1:07:f4:66:28:21:a8:
         4f:8d:4e:0d:83:48:9a:c3:69:0f:e8:8e:77:85:41:8a:c7:ac:
         cc:50:c1:3c:5a:f8:6c:19:f7:75:a9:94:67:58:3f:03:8b:7d:
         19:79:ef:8c:e7:3f:60:64:dd:a2:85:75:18:57:5f:4f:9b:79:
         a3:c7:9b:7b:66:9d:88:f1:99:a7:ec:04:5d:84:92:84:cb:50:
         a3:81:92:3d:14:9d:28:ca:fb:a0:78:d6:6d:7b:9c:be:80:fe:
         fc:c7:9f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----