Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
File:                     uVZnsVy6fKp0FSdIRHOE--A7iTo.mft (raw, json)
Hash identifier:          tE+OHvdVgiUmqX5TL/CMXsMi1ILsvBQFeZ35oEpIMBI=
Subject key identifier:   26:B6:CD:22:DE:1A:AD:06:BE:44:8C:74:34:BD:D1:1B:11:B3:1F:3B
Authority key identifier: B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A
Certificate issuer:       /CN=b95667b15cba7caa74152748447384fbe03b893a
Certificate serial:       0198D65F940F03D5B8B1D22C0E88A2854E36
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
Manifest number:          08FB
Signing time:             Sat 23 Aug 2025 10:00:44 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:44 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:44 +0000
Files and hashes:         1: uVZnsVy6fKp0FSdIRHOE--A7iTo.crl (hash: l+SVQl4/QeXgDqjZtHDtRNxXeMlpaY7g4ly4SWH2X2I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:94:0f:03:d5:b8:b1:d2:2c:0e:88:a2:85:4e:36
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b95667b15cba7caa74152748447384fbe03b893a
        Validity
            Not Before: Aug 23 10:00:44 2025 GMT
            Not After : Aug 24 10:00:44 2025 GMT
        Subject: CN=26b6cd22de1aad06be448c7434bdd11b11b31f3b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:4c:38:91:f2:fa:21:7d:fd:9a:ee:3e:69:5a:
                    a9:81:33:55:8a:74:30:9d:b1:2b:3e:4f:51:ce:77:
                    ec:fe:af:2d:cd:ba:00:38:c3:9f:18:f9:09:d4:f3:
                    a9:d2:93:ef:e0:85:23:f4:11:c6:fe:ee:3c:ce:4d:
                    1b:ff:1b:69:5b:c3:b5:9c:d2:19:f3:4e:c0:54:9b:
                    08:98:19:ba:82:c9:32:30:9f:a8:f0:b9:f1:52:2e:
                    6b:55:d8:b7:55:db:b5:ff:85:79:53:9c:a3:45:5e:
                    21:39:0d:13:46:c2:e1:ca:ac:2e:c6:53:c9:9b:2a:
                    de:68:72:f0:d5:4e:44:8e:14:a8:28:00:d5:59:3c:
                    9a:02:38:2d:fb:fd:42:60:01:0d:43:dc:e5:6e:72:
                    ef:a5:9f:32:ad:a7:ac:49:9b:b1:ec:a5:33:06:f1:
                    c7:6a:d5:b5:ef:b3:85:f0:c9:5f:a2:c9:f9:65:99:
                    ad:e1:ec:6c:81:18:05:12:b4:7e:b7:e9:3a:39:25:
                    f8:13:ba:2d:85:7e:df:e7:24:3d:f1:f1:d1:f1:49:
                    f3:3b:2c:9d:a1:86:7a:20:eb:1d:83:ed:f2:c6:96:
                    38:21:b6:5c:8c:93:1a:d8:d1:4c:55:45:9a:25:fc:
                    69:1c:4c:d8:6f:a2:71:1e:08:02:60:32:03:7a:fc:
                    e6:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:B6:CD:22:DE:1A:AD:06:BE:44:8C:74:34:BD:D1:1B:11:B3:1F:3B
            X509v3 Authority Key Identifier:
                keyid:B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:1b:39:d6:87:ef:1b:56:06:ce:d1:40:6c:d8:55:b1:70:cc:
         71:ef:d9:dd:54:81:13:35:41:d2:c5:ea:18:e2:7f:06:46:0e:
         5e:1c:2b:cc:2c:26:7a:9f:73:0c:5d:0e:92:30:3c:10:13:41:
         63:48:31:86:ac:bc:e5:10:6b:b3:6c:ef:eb:79:a2:c4:e4:51:
         db:ba:eb:b3:d5:50:bf:6d:78:3f:bd:01:ce:03:8b:77:93:3a:
         11:4c:e2:ef:7b:e5:8a:72:2a:72:f8:c6:b2:9e:15:95:70:a9:
         b3:71:2b:3b:1a:0b:9c:e9:a9:8f:47:0c:c0:5a:83:92:ec:86:
         98:e3:4e:1c:87:9e:8e:4a:fc:d7:cc:fd:5c:45:f6:5d:37:b1:
         1b:9a:80:0c:79:15:b4:99:b1:ca:ca:f1:0d:75:9d:95:7b:d5:
         40:cc:4a:fc:5a:ee:e6:bb:3e:f8:06:97:a7:d3:4c:9f:a6:ca:
         32:8b:57:35:15:b3:9e:97:75:92:8b:e5:0e:4a:10:5b:75:1c:
         d3:83:dc:f2:9c:b3:bf:a6:44:b9:10:07:3e:ca:c5:75:c9:48:
         da:c5:56:00:44:fb:a8:3a:20:96:ac:3d:b2:e2:3a:56:60:0f:
         3c:9d:76:ff:f2:f5:02:10:73:46:0b:c4:ad:07:52:07:4b:92:
         ba:af:4b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----