Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
File:                     zfDoJMYqWSimUCFO8z6Md-fB_40.mft (raw, json)
Hash identifier:          nTcecwJIggwGsdeXWQZq37NAfdUX2cvq6TwKe1hwQbo=
Subject key identifier:   A1:76:F1:7F:B2:B6:6C:42:D9:5B:C1:42:D4:7E:CC:D8:B0:07:E8:72
Authority key identifier: CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D
Certificate issuer:       /CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
Certificate serial:       0198D65FE04BD683C5B73C8BC5FC8BC0BA4A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
Manifest number:          0FEB
Signing time:             Sat 23 Aug 2025 10:01:04 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:04 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:04 +0000
Files and hashes:         1: zfDoJMYqWSimUCFO8z6Md-fB_40.crl (hash: ggeM1sSYHzDkiUEkDGD+y1VnfXXoVSvDF4QJGwH5MlA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:e0:4b:d6:83:c5:b7:3c:8b:c5:fc:8b:c0:ba:4a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
        Validity
            Not Before: Aug 23 10:01:04 2025 GMT
            Not After : Aug 24 10:01:04 2025 GMT
        Subject: CN=a176f17fb2b66c42d95bc142d47eccd8b007e872
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:2d:ef:e8:67:02:e7:c2:fb:01:19:0a:54:46:
                    b4:9c:2c:7c:54:8e:f5:d5:3a:80:73:7c:77:a5:16:
                    cb:50:3a:3f:20:30:09:d7:9d:b3:6b:15:56:e0:ff:
                    17:91:cd:dc:9b:90:3c:e0:cf:bb:1e:2f:cd:a3:8f:
                    69:42:37:11:26:68:b1:69:f9:ec:7d:7e:f1:23:eb:
                    b0:3e:b9:5e:51:a8:6d:e7:2d:27:71:bb:5e:1f:21:
                    bf:2f:e2:d4:e4:7e:21:d8:f8:df:a7:57:9c:9d:1c:
                    d4:be:20:ac:59:3d:cc:aa:68:96:ba:63:de:33:29:
                    ee:75:c3:2a:77:76:ec:c2:fc:24:6c:10:74:6f:4c:
                    6f:07:10:95:a2:cb:5a:d7:fd:50:62:06:f0:80:b1:
                    f2:8a:4a:a6:c3:fc:72:f5:95:ed:33:b3:8f:e0:ad:
                    65:5f:df:88:85:f9:f3:53:a2:4c:3d:a5:7d:05:1e:
                    8c:ef:50:3a:3c:a1:98:41:80:61:dc:f5:0a:fa:4d:
                    62:70:24:e2:4e:f8:54:65:8c:eb:7b:5d:e8:b0:f3:
                    56:9b:93:b3:2a:4e:d8:55:26:8c:c4:c4:b1:03:ec:
                    53:b9:72:1e:df:4b:b2:f7:4d:94:5a:e6:41:3e:01:
                    16:82:ad:0c:9b:86:b0:66:1b:98:82:19:8d:77:75:
                    37:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A1:76:F1:7F:B2:B6:6C:42:D9:5B:C1:42:D4:7E:CC:D8:B0:07:E8:72
            X509v3 Authority Key Identifier:
                keyid:CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:80:50:89:13:ff:ae:be:5c:8b:96:47:36:c1:61:94:4f:df:
         d7:bf:d7:62:1d:97:ab:93:8c:f7:e7:c3:7b:c2:18:a1:b7:8d:
         57:f3:18:d6:0e:7c:89:68:bd:0c:cd:21:71:f6:de:03:eb:f1:
         51:88:7b:bb:25:9c:f4:a1:9e:0b:dd:72:fe:2c:c4:74:eb:d5:
         da:11:52:f6:6e:12:37:fa:7b:51:3e:a9:86:e5:5f:5f:89:61:
         8a:d3:e8:d3:41:52:83:2e:ac:f1:77:5f:43:04:5c:1e:9a:29:
         c5:ec:d6:70:80:70:3c:f7:3d:b2:58:1e:e0:75:05:12:d9:bb:
         95:39:91:77:9b:03:e8:3f:c5:3c:84:2e:0b:d2:9f:8f:60:29:
         f5:33:8d:85:e6:5a:f7:41:2c:1e:5b:8c:07:ed:d2:ea:02:63:
         9d:20:a0:a3:42:c2:1e:70:b9:21:9b:3c:4a:5e:ee:e0:de:6d:
         16:d5:42:f5:15:4f:75:82:67:b8:97:30:7a:22:f9:fd:5c:7f:
         49:5f:2a:14:d6:18:70:b9:1a:d6:e1:58:cb:0e:67:69:f2:7e:
         2a:fc:51:e0:cf:40:65:ba:ac:92:d6:ac:2c:d6:2a:1d:a0:8c:
         81:99:e2:b5:67:8a:30:7a:e7:a9:db:3f:ea:e7:15:72:be:ec:
         86:75:4a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----