Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft
File:                     bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft (raw, json)
Hash identifier:          mfOw9Yh/DAAt8D+IzXlcziOueOolCDXFNxt7ZK1yTw8=
Subject key identifier:   9C:E4:79:83:E8:FA:E1:9E:D4:A8:95:BD:FB:08:17:CD:77:5F:42:BF
Authority key identifier: 6C:0D:27:F0:D1:30:FE:E6:7D:82:D5:98:2F:7C:93:4F:87:91:CD:F0
Certificate issuer:       /CN=6c0d27f0d130fee67d82d5982f7c934f8791cdf0
Certificate serial:       0198D5F162A8FDB49BF14B237F1C81C9ED2D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft
Manifest number:          6C
Signing time:             Sat 23 Aug 2025 08:00:23 +0000
Manifest this update:     Sat 23 Aug 2025 08:00:23 +0000
Manifest next update:     Sun 24 Aug 2025 08:00:23 +0000
Files and hashes:         1: bA0n8NEw_uZ9gtWYL3yTT4eRzfA.crl (hash: zkAzGiyNRPn8/HxZ4Xw0PgQu1p8C1MgtLpIs+yLa8UM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:f1:62:a8:fd:b4:9b:f1:4b:23:7f:1c:81:c9:ed:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6c0d27f0d130fee67d82d5982f7c934f8791cdf0
        Validity
            Not Before: Aug 23 08:00:23 2025 GMT
            Not After : Aug 24 08:00:23 2025 GMT
        Subject: CN=9ce47983e8fae19ed4a895bdfb0817cd775f42bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:89:c0:84:da:20:e7:74:bb:b5:0c:bc:2e:4b:
                    bb:d7:ef:0c:24:01:14:9d:9a:ad:68:7b:af:be:1f:
                    59:a5:35:2c:ae:94:9f:57:ce:3d:0f:30:7b:ad:31:
                    c5:f8:f2:ca:e2:14:cd:e1:57:2d:32:ed:df:d6:ea:
                    43:23:cc:47:7c:de:5d:38:04:71:ef:07:c3:d2:bc:
                    63:22:72:de:70:b8:a3:f8:f6:54:88:ea:22:9b:a0:
                    92:b5:d6:af:0f:3b:71:3e:89:3d:6a:ec:42:6c:d6:
                    b7:21:ea:79:af:5f:b9:63:fe:71:11:eb:fd:34:9e:
                    c0:b3:25:ea:74:29:60:35:e0:75:7a:3e:7e:37:fc:
                    5b:0f:63:d9:b7:f8:f0:e2:4e:62:19:a7:7b:e3:8c:
                    eb:fb:cf:a7:b8:56:f2:7c:ca:e0:e3:8e:03:fb:bc:
                    d3:e4:8f:1f:ce:d6:a7:d0:13:57:5f:d2:66:62:95:
                    f8:e0:43:48:1d:fe:07:58:b3:d5:38:a4:45:df:b0:
                    b0:e1:ef:d1:b0:bd:d1:ab:14:29:fa:2c:2f:ac:1d:
                    43:a3:93:05:74:66:d5:6b:c6:19:09:58:09:b7:ac:
                    37:85:70:8b:3e:7d:cc:f5:7d:6c:48:d5:1b:4a:dd:
                    0a:f1:39:bc:a6:c7:8b:00:bc:f3:cc:00:12:f0:a3:
                    b0:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:E4:79:83:E8:FA:E1:9E:D4:A8:95:BD:FB:08:17:CD:77:5F:42:BF
            X509v3 Authority Key Identifier:
                keyid:6C:0D:27:F0:D1:30:FE:E6:7D:82:D5:98:2F:7C:93:4F:87:91:CD:F0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9292c9-24ab-4dbf-bebe-8963d5271f9c/1/bA0n8NEw_uZ9gtWYL3yTT4eRzfA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:72:4c:61:d5:5a:62:7b:98:b9:ab:6d:20:50:bf:46:dc:e2:
         4c:f8:c5:9c:49:e7:6e:71:da:20:02:f0:4d:93:a4:db:70:3e:
         00:06:9a:20:88:fe:85:19:3d:80:40:cf:c1:e6:3f:e0:e3:8e:
         eb:cb:05:b3:79:e3:7f:20:6f:f6:42:cd:9b:1c:a5:45:73:af:
         0a:f5:74:d1:19:7a:18:05:a7:33:f3:89:93:a1:1d:c9:d6:b1:
         ec:02:b3:48:d7:10:8a:14:ae:2f:33:5d:91:e9:73:47:c0:a5:
         5b:19:9c:7d:c2:6f:4f:fa:b8:e6:80:c0:a8:c7:3e:f7:e5:7e:
         ac:d5:25:cc:c1:ad:79:b9:fa:14:f0:b2:78:a2:23:20:be:0d:
         f5:58:7e:85:74:2b:a6:13:ee:0a:cf:73:ba:83:52:76:4d:91:
         79:d2:eb:e8:e2:76:0e:07:f9:11:23:8a:b5:5e:b7:19:66:16:
         75:dd:f5:b7:8e:68:fc:10:bd:40:c5:23:a8:cb:b8:23:93:12:
         86:3a:ef:87:a3:4a:75:eb:1c:1e:93:7f:a4:ef:50:8a:1f:be:
         be:82:d8:65:58:e2:83:e6:57:fb:5d:d3:cf:1a:39:37:d3:1d:
         9a:59:7d:b6:d6:ed:b6:72:50:83:0b:a0:72:6b:0d:33:64:8e:
         94:1e:62:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----