Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft
File:                     uXhT3Vdz8qawcYefW567Dm9Ofao.mft (raw, json)
Hash identifier:          iU13y527VE+Xvd9B6/us86T3Q+jO1Fp3R5k4EoBaa+k=
Subject key identifier:   03:D5:EB:D6:B1:87:97:07:A0:C4:C4:C8:43:27:D6:23:20:3C:2E:1F
Authority key identifier: B9:78:53:DD:57:73:F2:A6:B0:71:87:9F:5B:9E:BB:0E:6F:4E:7D:AA
Certificate issuer:       /CN=b97853dd5773f2a6b071879f5b9ebb0e6f4e7daa
Certificate serial:       0198D6CCDF94022CA5A2AF082C04F39A162A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uXhT3Vdz8qawcYefW567Dm9Ofao.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft
Manifest number:          15DC
Signing time:             Sat 23 Aug 2025 12:00:07 +0000
Manifest this update:     Sat 23 Aug 2025 12:00:07 +0000
Manifest next update:     Sun 24 Aug 2025 12:00:07 +0000
Files and hashes:         1: uXhT3Vdz8qawcYefW567Dm9Ofao.crl (hash: mo9qaYte5BngVvb06/ZXaeCXB2ecVAJL0ntBiF9q0Uo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uXhT3Vdz8qawcYefW567Dm9Ofao.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:00:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:cc:df:94:02:2c:a5:a2:af:08:2c:04:f3:9a:16:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b97853dd5773f2a6b071879f5b9ebb0e6f4e7daa
        Validity
            Not Before: Aug 23 12:00:07 2025 GMT
            Not After : Aug 24 12:00:07 2025 GMT
        Subject: CN=03d5ebd6b1879707a0c4c4c84327d623203c2e1f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:f8:b5:0f:3c:31:26:53:b3:22:e4:5f:65:ae:
                    e9:b1:a2:05:6d:6b:97:9d:13:89:bb:3c:a7:b4:44:
                    18:25:e8:65:5e:1d:64:c6:cf:ba:f2:99:2c:f6:9b:
                    fa:26:cf:47:c7:15:1f:b3:d0:92:39:a2:8c:72:88:
                    a5:82:fd:e7:1d:09:fe:e2:ff:ab:58:be:8a:3e:78:
                    82:54:2d:71:e5:2c:3d:16:cd:02:25:5f:fd:07:da:
                    0c:b4:b5:2e:48:b3:e6:32:f6:48:ef:75:ee:40:c3:
                    b8:c4:f0:26:28:f8:42:b3:36:0c:30:28:11:42:a1:
                    7f:5a:59:99:84:63:1a:59:41:2c:07:43:02:6e:8f:
                    87:88:53:16:70:49:50:c2:a1:01:d0:bb:a6:9c:1c:
                    c5:59:0f:ba:2c:85:74:79:58:01:06:7b:75:97:d2:
                    78:68:e1:74:e6:b9:4e:e3:91:1f:ce:4f:26:7d:eb:
                    f7:b8:9d:0d:16:f7:91:e4:02:75:89:5c:95:49:a0:
                    b5:4e:b1:71:5a:fc:55:3a:89:e3:75:19:fe:66:07:
                    fe:ed:ac:62:85:ef:ce:6c:d4:18:61:e2:00:3e:50:
                    79:22:5b:a4:95:12:29:9c:4e:87:9e:a2:78:02:a5:
                    b5:d2:18:8b:02:3f:69:56:e0:01:92:69:1e:01:a7:
                    70:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:D5:EB:D6:B1:87:97:07:A0:C4:C4:C8:43:27:D6:23:20:3C:2E:1F
            X509v3 Authority Key Identifier:
                keyid:B9:78:53:DD:57:73:F2:A6:B0:71:87:9F:5B:9E:BB:0E:6F:4E:7D:AA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXhT3Vdz8qawcYefW567Dm9Ofao.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:c9:72:9a:2b:ac:93:37:90:a8:3e:41:89:cc:01:16:c2:aa:
         e8:c5:1f:5e:a7:57:24:95:e4:6a:92:53:34:4f:d7:fb:74:af:
         2d:92:04:fe:81:f1:63:bd:ae:82:10:f4:e0:d3:97:23:c6:95:
         3e:2a:29:48:5f:08:47:f6:65:77:69:80:14:bd:ce:fe:a2:40:
         04:c7:31:4a:46:73:68:a4:94:fc:35:fe:17:c1:df:87:3c:99:
         bd:eb:82:0c:2a:1c:85:26:48:f5:3d:f1:75:55:79:5c:20:62:
         91:dd:36:78:c6:b1:a0:e7:9d:d0:54:d8:af:53:14:88:cc:27:
         1d:cd:9b:e4:cf:8e:58:23:18:d4:cd:99:37:cb:d4:54:fe:82:
         1f:8d:f2:45:1b:bc:99:54:02:43:9f:2c:e7:01:7b:86:39:ed:
         f8:d4:84:d9:07:02:ce:0f:3e:a9:f6:84:fb:e8:72:9a:2c:7d:
         45:92:45:d2:8d:38:1e:9e:07:f0:a1:1e:9b:08:00:52:af:f2:
         d7:11:5d:1f:9d:56:d0:3e:2d:c1:7a:12:dd:03:33:a4:05:c0:
         94:73:16:9b:c8:33:0f:05:c5:54:3e:64:7b:e3:48:fe:a8:78:
         18:68:e9:6f:dc:13:70:45:83:0d:2e:dc:ee:bf:ea:00:f1:0a:
         8d:19:21:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----