Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
File:                     Wy17v8Kblv03I3vOZ4bFO604D70.mft (raw, json)
Hash identifier:          OOqc9SUM6oK/tuaXkkjId3p0WNdlWVcldlp/7GmRpe0=
Subject key identifier:   62:D4:D8:A8:5B:EC:26:57:7F:8E:F6:D4:31:10:8D:A5:1B:15:91:13
Authority key identifier: 5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD
Certificate issuer:       /CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd
Certificate serial:       0198D54DECF07C8D83A43353677B5A107115
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
Manifest number:          021B
Signing time:             Sat 23 Aug 2025 05:01:50 +0000
Manifest this update:     Sat 23 Aug 2025 05:01:50 +0000
Manifest next update:     Sun 24 Aug 2025 05:01:50 +0000
Files and hashes:         1: Wy17v8Kblv03I3vOZ4bFO604D70.crl (hash: zE8pJGPl7vAX36niM86oZnOiT7ktgsiiFNo9VzpsSrw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4d:ec:f0:7c:8d:83:a4:33:53:67:7b:5a:10:71:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd
        Validity
            Not Before: Aug 23 05:01:50 2025 GMT
            Not After : Aug 24 05:01:50 2025 GMT
        Subject: CN=62d4d8a85bec26577f8ef6d431108da51b159113
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:12:38:c4:0f:9a:7c:cf:15:5f:16:7c:7e:45:
                    26:e2:54:31:39:d5:0b:04:7a:2f:3e:a3:0d:ae:92:
                    b4:10:ab:09:5c:f3:39:0e:9b:74:7c:52:01:af:61:
                    20:98:28:f2:d3:8c:74:23:e9:8c:f1:6b:cf:5f:40:
                    51:43:34:0b:08:c8:08:bd:cd:9b:81:7a:fc:06:58:
                    8c:fe:65:34:bd:36:b5:82:dd:ae:72:cd:95:13:d9:
                    2e:f3:5c:3b:35:de:6f:56:40:d9:6b:79:1b:4e:18:
                    83:f8:5b:56:94:c1:fb:2a:83:7d:d9:b2:1d:8b:a0:
                    a0:6e:a2:01:cc:f4:37:03:69:07:1d:bf:e5:6d:f7:
                    19:fc:45:1c:77:db:a8:89:8b:f7:f5:a7:80:bc:25:
                    32:6f:f3:c4:8a:02:7d:a6:38:ab:77:61:cb:47:51:
                    5b:34:01:ec:46:a6:89:99:9f:b6:f1:2b:f1:d8:b4:
                    1f:09:37:7b:5b:7f:6e:45:64:7c:b8:24:c4:1b:65:
                    2b:0a:5e:65:58:b8:cc:34:25:6f:f6:0d:2c:e6:d2:
                    aa:f4:14:6c:3d:62:9b:3f:dc:9f:2b:72:42:e8:ca:
                    2b:f5:19:51:34:91:a9:e8:45:5a:c5:cb:06:3a:f5:
                    54:32:11:9b:e1:6e:dc:aa:06:f3:ed:36:16:51:ee:
                    0b:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:D4:D8:A8:5B:EC:26:57:7F:8E:F6:D4:31:10:8D:A5:1B:15:91:13
            X509v3 Authority Key Identifier:
                keyid:5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:0e:8f:72:41:5c:45:7a:5c:e0:f0:dd:5d:20:2b:dd:fc:71:
         23:8b:b0:8a:89:41:45:d5:0b:e1:fa:45:a8:07:24:25:10:ad:
         c6:60:c5:2d:7a:5d:33:f7:11:de:e8:b3:29:49:30:bf:d6:79:
         8a:b6:33:a8:2b:e8:74:05:1a:8d:bf:65:f9:b0:a0:31:54:cc:
         f9:7b:fd:41:57:a2:6d:c4:00:7d:cf:dc:82:ba:c9:a6:02:3f:
         01:51:29:27:5c:50:58:87:30:a6:f2:1d:b1:37:ae:20:df:9e:
         52:51:8c:03:31:13:fb:14:77:31:0d:16:83:d7:fa:de:ad:d8:
         1f:3f:d0:db:c9:cf:10:b5:59:7f:06:96:c6:63:72:7f:d0:9a:
         f7:ba:8b:53:7a:70:fe:ca:b6:e8:03:da:30:3c:78:af:10:f5:
         76:2f:d3:68:ff:0e:30:86:2c:e2:b0:cd:fa:f7:19:00:cf:5e:
         67:ca:f0:50:57:06:25:95:5e:d6:32:e9:46:cb:52:97:e9:53:
         64:31:7d:7f:53:4f:dc:84:37:08:3f:29:75:62:1c:91:8b:8f:
         17:2a:4e:7c:d1:3b:8e:58:e8:ee:b1:2c:58:f9:a8:40:56:b3:
         ed:78:79:a7:98:1a:b8:12:5f:af:d1:b4:23:3b:92:6b:e7:af:
         87:90:ee:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----