Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
File:                     8cgdjkJn0tRetlJQoqSCULX7Uls.mft (raw, json)
Hash identifier:          J5t41fjtV7t/LtiqW2VYKZgC9V/l95SzIeda4c0kBXg=
Subject key identifier:   84:31:AC:17:88:13:FD:83:85:76:11:87:E7:FE:83:AE:94:DC:55:CC
Authority key identifier: F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B
Certificate issuer:       /CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
Certificate serial:       0198D474A5DC651B08A49B18A66FF5D35386
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
Manifest number:          0A6D
Signing time:             Sat 23 Aug 2025 01:04:31 +0000
Manifest this update:     Sat 23 Aug 2025 01:04:31 +0000
Manifest next update:     Sun 24 Aug 2025 01:04:31 +0000
Files and hashes:         1: 8cgdjkJn0tRetlJQoqSCULX7Uls.crl (hash: xaruf6QXYNix4i0xlXvtUsTGX3jXv1ekkV9dNmtwk1w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:04:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:74:a5:dc:65:1b:08:a4:9b:18:a6:6f:f5:d3:53:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
        Validity
            Not Before: Aug 23 01:04:31 2025 GMT
            Not After : Aug 24 01:04:31 2025 GMT
        Subject: CN=8431ac178813fd8385761187e7fe83ae94dc55cc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:70:fe:1e:07:a6:92:78:8e:4d:40:54:ad:f5:
                    48:5c:89:4d:3d:87:29:e9:24:4a:2d:a5:80:1c:64:
                    10:e6:e4:f7:03:5f:a9:9d:4f:74:9b:22:cf:23:98:
                    c7:24:a0:ad:71:79:29:eb:5d:50:b1:33:d5:14:00:
                    bc:b8:57:a8:e6:8a:a9:51:79:97:c3:31:ea:ae:f3:
                    ea:93:e8:b3:01:64:d3:e3:8d:b2:33:04:6d:5c:93:
                    c9:6e:3e:71:09:7f:95:00:7b:ec:4a:eb:90:47:15:
                    30:a7:e9:60:44:5b:d0:35:35:d0:7f:54:aa:7e:bc:
                    be:e5:ab:08:0c:97:55:87:d9:e7:93:c9:42:12:ea:
                    83:6c:99:66:14:e3:e0:68:c4:86:fb:91:e3:a0:5c:
                    c0:23:9b:4a:6e:a1:ea:19:a9:90:70:76:e4:a9:57:
                    14:72:6a:1c:f3:17:ff:14:44:d4:66:71:e5:7e:c5:
                    9e:65:b3:2d:14:36:52:ae:4b:ed:14:49:40:17:e0:
                    b7:3e:2f:b5:1a:cd:52:79:55:d3:12:1b:55:4d:3b:
                    ac:dd:41:9e:b5:2c:53:01:ef:67:2e:a6:9b:25:e8:
                    20:85:8b:55:09:bf:91:b6:13:79:67:a9:c8:72:14:
                    fb:dd:fa:18:94:7f:cf:ac:71:2f:6b:bb:52:4f:49:
                    4a:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:31:AC:17:88:13:FD:83:85:76:11:87:E7:FE:83:AE:94:DC:55:CC
            X509v3 Authority Key Identifier:
                keyid:F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:4a:02:2d:fa:81:2c:f6:a6:a2:e3:a1:96:b5:0b:4d:bf:b1:
         c7:10:c4:93:fa:77:e0:fa:09:d8:2c:70:85:4f:2a:ac:16:be:
         61:39:f1:55:15:4f:ed:51:8e:17:bb:90:21:1e:bb:df:98:6c:
         ac:77:55:b7:d0:9a:19:01:bf:c0:04:91:0b:bf:8e:96:50:1c:
         6e:f4:1e:37:cb:25:cb:b4:11:11:f7:43:32:9d:12:63:5d:84:
         d8:4b:ff:29:6b:50:55:47:24:bb:bc:39:9e:88:67:ab:9d:d1:
         9b:57:a8:62:47:01:1a:ad:65:b8:23:02:1d:68:60:4e:b7:21:
         c9:56:56:13:49:09:8f:82:7e:88:c5:43:06:67:77:33:e7:01:
         bc:5d:c8:2d:87:b8:e7:0e:e9:8a:a6:d1:01:7d:50:a4:25:36:
         18:a9:03:b8:e1:01:87:f4:2c:01:93:31:ed:36:bb:10:0c:e9:
         f5:d9:97:bd:98:3d:82:0f:0f:e1:31:ba:23:b4:0b:b2:b2:45:
         fd:5f:80:6b:5c:9a:34:d1:07:86:ee:22:64:02:3a:bd:9d:fd:
         ba:03:cd:49:66:b6:33:c6:e3:23:95:11:f0:80:fa:29:b2:da:
         16:ba:32:58:22:0f:92:24:4f:2a:ff:fc:6f:67:22:0d:b6:ea:
         ea:2d:ba:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----