Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
File:                     tRm7YH6Ot267nMsgIsxkbDzOC2A.mft (raw, json)
Hash identifier:          9Z1YUrxO2loQZ1/8vqQ+sVu4d9c6eRqzbowBWmbZvbA=
Subject key identifier:   ED:9B:26:D6:74:B8:C5:63:52:4C:55:40:37:80:36:50:2A:FA:7C:4C
Authority key identifier: B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
Certificate issuer:       /CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Certificate serial:       0198D66090D76A92787715E6D15CAEB0CD5E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
Manifest number:          1646
Signing time:             Sat 23 Aug 2025 10:01:49 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:49 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:49 +0000
Files and hashes:         1: tRm7YH6Ot267nMsgIsxkbDzOC2A.crl (hash: uMOlLHwydV84vmirigD9IFzI5lkO6iS0nWUEwU3cak0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:90:d7:6a:92:78:77:15:e6:d1:5c:ae:b0:cd:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
        Validity
            Not Before: Aug 23 10:01:49 2025 GMT
            Not After : Aug 24 10:01:49 2025 GMT
        Subject: CN=ed9b26d674b8c563524c5540378036502afa7c4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:05:a9:08:d4:1a:c8:94:f9:01:5b:31:83:fb:
                    ae:91:8a:4a:2e:6b:6c:ad:b9:9d:42:e7:78:40:f0:
                    bf:0c:8f:c3:b2:af:dd:eb:23:24:cb:e8:5d:6f:40:
                    47:95:30:4c:d4:a3:61:58:27:d0:7e:17:3c:37:d8:
                    cc:26:65:e3:8b:f5:e6:19:a9:f7:04:89:97:f0:f5:
                    6e:ed:ad:40:1b:ac:c2:ca:83:10:d4:dd:d6:83:67:
                    32:ff:73:a2:d7:6f:89:40:3f:e5:25:8c:1a:51:ea:
                    09:81:48:c6:d5:32:b6:f3:f4:44:e9:d2:c0:31:c9:
                    9f:df:1e:b3:fa:d2:51:bd:a0:2e:71:be:2e:40:cf:
                    d3:d8:71:83:f4:79:ed:ef:90:d8:f0:bc:f4:3b:2a:
                    3a:64:c1:a7:0a:46:e0:4a:c9:f4:f8:69:c3:2c:2d:
                    9d:46:53:2d:8e:df:2f:a2:1d:f1:19:b5:7a:3b:6d:
                    23:44:84:a2:5b:7a:dc:ce:46:fd:fb:05:57:a9:ca:
                    cf:bd:65:a5:bf:ad:f7:4c:64:0f:56:ba:31:d6:58:
                    ba:f5:5c:bc:96:8e:9d:91:90:d9:67:c1:a5:b0:59:
                    ab:6a:4b:94:e2:10:ae:db:64:2c:58:af:ae:47:ee:
                    e3:03:38:72:57:85:b4:4c:fd:af:3a:75:41:39:a9:
                    0c:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:9B:26:D6:74:B8:C5:63:52:4C:55:40:37:80:36:50:2A:FA:7C:4C
            X509v3 Authority Key Identifier:
                keyid:B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:9c:17:92:38:8e:1f:76:34:2c:08:12:4d:b2:24:f1:5f:91:
         dd:b2:21:11:ce:34:ad:0b:8b:39:96:26:62:b2:f9:87:24:78:
         74:81:1b:57:66:f4:28:50:32:ed:1a:c3:f1:45:f1:fe:80:70:
         c0:b8:7c:6c:59:2e:f7:ab:32:d4:e5:14:0e:67:ca:7f:f8:55:
         ef:c1:7f:c6:44:b5:24:ec:72:1c:c1:fc:91:ba:96:31:e0:88:
         cc:8c:3d:56:b6:b2:db:62:53:a8:49:15:85:65:52:b0:38:f7:
         3f:9c:ee:c2:f1:0b:0f:56:36:2f:0c:b1:f3:c6:35:b2:cb:a5:
         bd:d8:09:dd:de:b4:7c:10:58:13:82:49:1d:8a:06:71:93:87:
         29:5f:2c:45:5b:44:50:6b:d1:89:e4:5e:36:bd:62:f6:0d:5a:
         b3:6c:33:9b:98:8a:a4:63:e8:89:1e:24:99:a5:9b:24:be:49:
         e9:b7:2e:63:72:34:0a:5f:54:f1:da:9a:0b:66:02:3d:45:6b:
         0a:50:16:a1:f6:76:cd:17:08:92:72:06:25:c4:b2:80:ba:5c:
         12:80:d2:79:c6:2e:43:0d:8c:c0:4c:a1:70:57:26:75:75:27:
         50:dc:db:f9:d7:ea:71:9c:8f:e0:3f:c1:9d:42:6c:17:e2:5c:
         4e:f3:ac:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----