Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
File:                     dCadQgSZl1rpNPNM45WTgRTJuns.mft (raw, json)
Hash identifier:          YYjK6P5Ikw2YQcI2A+SZ8MWAV9MCVOXo4tna8zV/O/U=
Subject key identifier:   06:3B:86:8A:E8:2F:50:06:9F:3B:60:AC:94:AB:0A:83:49:EA:BD:EF
Authority key identifier: 74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B
Certificate issuer:       /CN=74269d420499975ae934f34ce395938114c9ba7b
Certificate serial:       0198D65F8943FB3E73173E941C9B75ED8A02
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
Manifest number:          119E
Signing time:             Sat 23 Aug 2025 10:00:41 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:41 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:41 +0000
Files and hashes:         1: dCadQgSZl1rpNPNM45WTgRTJuns.crl (hash: AkGYJIv/Mt5+UTnypxTwKXzv0+J/DLf0rx+R7mOYZd0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:89:43:fb:3e:73:17:3e:94:1c:9b:75:ed:8a:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74269d420499975ae934f34ce395938114c9ba7b
        Validity
            Not Before: Aug 23 10:00:41 2025 GMT
            Not After : Aug 24 10:00:41 2025 GMT
        Subject: CN=063b868ae82f50069f3b60ac94ab0a8349eabdef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:fb:c2:e7:a6:53:5d:96:64:e1:1b:8b:50:e4:
                    f5:b6:3d:b8:35:bf:f2:bf:b5:07:d7:06:0a:10:d2:
                    78:20:fb:ca:f3:c5:f0:4a:77:8c:d6:b8:5c:7c:d6:
                    6d:60:a1:f7:8f:56:2f:86:ec:a4:11:6d:1d:da:1a:
                    a8:79:2c:d1:9c:8a:4e:63:f6:17:43:96:ab:b3:39:
                    fb:40:b1:ad:43:25:eb:e4:d0:14:07:c9:ce:e3:d9:
                    c3:b3:32:17:9a:40:a1:5c:6b:57:72:02:6e:1f:37:
                    4c:77:95:f2:4a:8f:f0:89:d6:d9:5a:bd:83:59:57:
                    0a:03:e1:1d:7a:39:7b:50:74:79:89:a5:73:6f:e2:
                    30:d5:ba:81:c2:68:2c:92:3e:62:32:60:fe:a0:20:
                    68:cc:e3:34:91:1f:a7:27:e5:59:4a:31:f0:f0:4f:
                    cd:e9:10:6d:6a:53:a7:92:53:60:1e:28:68:e1:b2:
                    bd:f8:9b:c5:de:d1:e1:c0:3b:b2:1b:9e:59:99:18:
                    fa:1a:54:13:b1:23:28:6a:7a:f9:2c:38:8d:05:28:
                    82:7f:4f:35:f8:dd:2a:c1:bd:5c:f2:15:59:9d:86:
                    1a:94:6b:b7:83:05:a6:0f:e2:a4:69:05:2e:54:3b:
                    55:b8:cc:1a:87:ab:43:b2:b2:e1:d2:71:c6:95:bc:
                    a1:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:3B:86:8A:E8:2F:50:06:9F:3B:60:AC:94:AB:0A:83:49:EA:BD:EF
            X509v3 Authority Key Identifier:
                keyid:74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:55:5b:fb:ba:e6:57:14:02:1a:ac:0b:8e:5a:22:7d:96:47:
         52:73:88:00:4e:f2:e7:94:1a:b1:71:a5:02:04:20:7c:97:4f:
         0e:1e:34:ab:79:68:0d:d2:6d:d0:04:12:37:49:82:58:75:8a:
         3e:01:d3:b8:48:48:43:69:c5:4f:00:b2:4c:b5:41:03:36:3c:
         cf:ec:7d:65:02:67:42:4c:a4:be:d6:4b:fe:f8:49:f0:1a:4a:
         dd:56:70:f6:83:50:87:d5:64:66:cb:ff:2b:6c:88:01:de:89:
         81:cd:9e:3e:9a:5f:c7:17:f3:51:9a:0d:7c:f2:74:a3:bb:41:
         40:a7:af:60:7e:12:b2:a4:f8:01:1d:c9:5b:78:60:4a:2f:d5:
         78:8e:a5:9a:aa:ed:e2:21:e4:5f:9f:38:80:ad:78:c0:4d:d6:
         2a:f1:4f:0b:fb:07:32:d0:a4:0b:e8:f2:ad:73:14:b4:e0:00:
         c2:0b:70:99:d3:9f:25:be:b1:20:c9:3b:17:6e:56:ea:49:ea:
         c9:54:2b:88:60:57:13:2d:8b:e6:f2:e1:43:0b:82:65:0f:2d:
         25:48:9f:fb:7a:89:4d:ad:b8:77:f2:06:57:8d:11:c3:0c:c6:
         d3:c3:8b:2f:d8:99:32:55:49:5c:72:d7:76:ad:eb:b8:20:18:
         c8:cb:bb:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----