Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
File:                     83MAhqFPMbJWQMFC7f0XvJMyDFo.mft (raw, json)
Hash identifier:          Mka5W/U0qgEythdRqgMmuGf30e9AENzQARECKep8LYg=
Subject key identifier:   59:29:72:9A:74:8E:AB:F3:E2:8B:88:99:A1:50:6E:FC:DE:BC:EF:59
Authority key identifier: F3:73:00:86:A1:4F:31:B2:56:40:C1:42:ED:FD:17:BC:93:32:0C:5A
Certificate issuer:       /CN=f3730086a14f31b25640c142edfd17bc93320c5a
Certificate serial:       0198D73BA50694897320F55C30A9FDFC3EA7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
Manifest number:          0EF1
Signing time:             Sat 23 Aug 2025 14:01:06 +0000
Manifest this update:     Sat 23 Aug 2025 14:01:06 +0000
Manifest next update:     Sun 24 Aug 2025 14:01:06 +0000
Files and hashes:         1: 83MAhqFPMbJWQMFC7f0XvJMyDFo.crl (hash: YkYnLO4Gs4/UuafIBrg4mII28PdSWEG5asZglAzVUgs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:3b:a5:06:94:89:73:20:f5:5c:30:a9:fd:fc:3e:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f3730086a14f31b25640c142edfd17bc93320c5a
        Validity
            Not Before: Aug 23 14:01:06 2025 GMT
            Not After : Aug 24 14:01:06 2025 GMT
        Subject: CN=5929729a748eabf3e28b8899a1506efcdebcef59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:c9:7c:6c:fd:54:2b:b3:a6:d5:e8:5c:eb:54:
                    70:fd:53:52:ab:b9:f9:93:ad:db:a9:e9:f6:5b:00:
                    43:33:d4:cf:28:38:3e:71:62:6f:c6:e1:5c:bb:da:
                    a6:9f:a8:db:2c:3e:41:b5:e2:dc:f6:0a:4b:66:c0:
                    b1:0b:b1:48:a9:57:5c:00:6f:4c:75:f8:3d:38:48:
                    80:17:4d:a7:01:18:86:d2:ce:d7:72:3e:3f:f9:a4:
                    a9:49:b1:84:51:42:d1:67:b6:4b:09:cb:01:8f:ce:
                    34:bd:ab:c1:bf:91:b8:87:0a:c4:ca:47:01:ad:1d:
                    62:cd:4d:da:aa:bc:e0:92:eb:64:7b:c9:3e:c1:79:
                    bd:26:af:39:ca:6d:a3:83:2f:a1:15:70:6e:83:fb:
                    52:43:78:1a:93:9a:44:00:08:e1:15:2f:38:75:f3:
                    af:01:fa:96:5e:06:f2:95:29:ce:25:55:b5:1d:21:
                    0e:c5:37:24:17:e7:b1:c9:cc:5e:b8:0f:06:cb:20:
                    9d:59:bf:65:93:da:01:b2:18:6b:0c:17:fb:7d:fa:
                    aa:e1:45:f9:06:d0:eb:86:4e:19:19:e5:39:21:bb:
                    53:a5:13:28:9d:ea:97:24:6e:00:69:03:b1:41:fb:
                    51:af:6d:1a:3d:2f:9a:b8:8e:5a:6a:51:a5:5a:cc:
                    ca:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:29:72:9A:74:8E:AB:F3:E2:8B:88:99:A1:50:6E:FC:DE:BC:EF:59
            X509v3 Authority Key Identifier:
                keyid:F3:73:00:86:A1:4F:31:B2:56:40:C1:42:ED:FD:17:BC:93:32:0C:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:81:2c:96:55:6d:d3:61:84:87:1e:45:2b:c2:47:54:62:e7:
         f8:58:45:4d:cf:36:16:eb:10:a7:54:1b:26:41:17:64:5c:09:
         db:4b:f7:ff:cb:14:51:33:f0:b1:56:18:0f:b0:6f:e8:0f:cc:
         6d:f0:30:0a:6c:41:3f:2e:fc:97:d3:1b:25:46:f4:e6:a9:0a:
         52:b9:d5:7e:f0:51:72:80:18:97:56:a2:80:49:3d:39:bc:12:
         a6:07:cf:a6:b3:fd:54:25:e6:96:e0:5d:35:0e:e2:8b:20:09:
         9f:57:b6:23:1b:e8:d0:8d:3f:6e:5d:87:8a:37:4c:3c:4f:f7:
         f8:4c:7d:ca:b9:24:5c:b9:fa:07:21:8e:e1:19:aa:fc:a1:95:
         76:69:83:98:ed:90:20:27:70:0b:9f:e9:3c:58:44:f3:ae:48:
         bc:47:d1:44:2b:7b:da:09:af:db:55:9b:cd:25:8b:f3:4b:0e:
         bc:87:23:c0:79:c4:85:73:6d:1c:cc:e0:de:cf:ac:80:6e:d5:
         46:dc:13:52:a2:b8:ee:91:f4:7b:4b:7c:e8:1c:29:cf:be:66:
         ab:90:b8:d6:c9:73:41:c3:88:45:59:66:cc:11:ba:17:dd:cb:
         27:44:e4:0c:6d:84:8e:73:69:24:f0:92:d3:4f:07:83:64:b9:
         7d:b2:21:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----