Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
File:                     cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft (raw, json)
Hash identifier:          EnIXWJ79L6Cs5cQGegORJgclEUrlo6s5OXh3Kj3Ziwg=
Subject key identifier:   68:7C:EF:15:F2:0B:9A:75:15:6F:77:DE:CD:98:54:18:61:4A:B8:A7
Authority key identifier: 73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2
Certificate issuer:       /CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
Certificate serial:       0198D54E58AF6E7681B8DAB053A08FB4A118
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
Manifest number:          02E4
Signing time:             Sat 23 Aug 2025 05:02:18 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:18 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:18 +0000
Files and hashes:         1: cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl (hash: NQUAO/FHQaR7vq1ItAwLeJwJoMU47LIXbDh4ODJtoRk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:58:af:6e:76:81:b8:da:b0:53:a0:8f:b4:a1:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
        Validity
            Not Before: Aug 23 05:02:18 2025 GMT
            Not After : Aug 24 05:02:18 2025 GMT
        Subject: CN=687cef15f20b9a75156f77decd985418614ab8a7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:32:e6:f1:81:ae:a4:74:0e:da:ee:8a:43:9d:
                    86:63:d6:88:df:cf:9f:c1:99:2c:23:8b:44:77:9d:
                    70:3a:bd:26:76:c3:fc:8c:f1:2b:ff:73:4a:02:ed:
                    11:85:6c:c0:f4:a9:8f:55:62:0e:b3:6f:93:92:9f:
                    bd:dc:2b:57:66:77:f0:66:23:c6:d4:1f:6a:1f:69:
                    87:c1:ab:0a:87:1a:4c:0d:c3:64:46:ea:45:68:02:
                    2e:a2:b3:95:b5:02:26:c5:0b:4d:10:38:71:6c:23:
                    f3:48:17:df:56:7c:c5:92:98:29:e8:53:69:8b:7b:
                    e6:c1:4e:df:0b:de:8b:3f:0d:d3:78:2f:b9:c7:c9:
                    f2:e8:0f:98:c6:bf:fe:e9:17:84:ca:81:b4:07:7c:
                    35:56:80:54:e2:bc:a3:2d:21:26:c6:bc:fc:f8:0c:
                    1b:37:f9:50:be:4a:63:06:a8:36:51:53:92:ee:89:
                    94:77:d1:b0:b6:99:4b:92:f4:e2:e9:10:3d:bc:42:
                    9e:dd:9b:5d:de:91:26:b7:35:77:92:c8:40:74:5a:
                    5c:fe:bb:03:aa:19:79:83:92:de:1c:e1:0a:ef:67:
                    45:5c:d8:a4:c7:a5:50:39:0b:95:fb:ff:8e:fc:8d:
                    27:31:df:90:13:2a:55:3c:ff:d8:c6:69:8a:8a:9c:
                    fa:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:7C:EF:15:F2:0B:9A:75:15:6F:77:DE:CD:98:54:18:61:4A:B8:A7
            X509v3 Authority Key Identifier:
                keyid:73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:a3:42:9d:c4:84:43:18:b9:41:82:3a:27:63:8d:d5:d4:bd:
         31:3f:46:6c:4c:a2:6c:c3:59:34:ff:32:e5:3f:4b:f3:ca:a5:
         01:36:22:a7:a5:19:d1:b4:5e:c7:e0:3c:b2:87:8b:3b:e4:64:
         ad:be:45:0f:a1:89:1d:02:d5:04:22:f1:1d:fe:d6:d0:34:d3:
         3b:6b:6e:96:d9:30:c0:d0:d7:be:e4:6c:58:ef:76:e7:24:80:
         f3:b7:a3:97:67:3c:e4:09:ef:3e:2c:ec:6c:48:47:6c:fc:78:
         d8:c2:7d:35:59:be:67:d5:85:3e:39:be:5c:6c:0c:20:7d:96:
         92:25:3f:e7:dc:68:53:78:72:83:0f:ad:f5:5b:bd:b1:ea:9a:
         b9:bd:cc:f3:3c:dd:d2:5d:08:3a:93:df:fc:b0:4c:c9:1d:02:
         24:71:97:8f:54:47:75:6c:6f:aa:a2:e2:83:ff:ad:bb:a3:20:
         5c:b7:80:eb:35:b0:f5:1e:74:7d:f6:fb:db:16:84:a4:24:2a:
         ff:5e:2c:53:cc:d3:0e:5f:77:5c:4a:40:1f:7e:27:20:fc:7b:
         f3:a7:d1:60:f5:d2:69:b5:b1:13:36:fb:f5:34:69:74:34:b6:
         b3:61:20:21:1a:94:99:2d:7a:d2:c7:30:b8:58:91:aa:16:00:
         42:91:1e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----