Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
File:                     g-3hynyzX11h-NWctQNumT6kO3A.mft (raw, json)
Hash identifier:          7Hxwjtl1x5QdshuY4FfNz14JrqNJM+An26xe66VHc+s=
Subject key identifier:   60:2C:C5:5D:56:62:0F:4E:3D:D9:85:C2:16:EF:5A:15:86:CA:DF:3A
Authority key identifier: 83:ED:E1:CA:7C:B3:5F:5D:61:F8:D5:9C:B5:03:6E:99:3E:A4:3B:70
Certificate issuer:       /CN=83ede1ca7cb35f5d61f8d59cb5036e993ea43b70
Certificate serial:       0198D65FC6444A284225543E29803EAB547E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
Manifest number:          0E71
Signing time:             Sat 23 Aug 2025 10:00:57 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:57 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:57 +0000
Files and hashes:         1: g-3hynyzX11h-NWctQNumT6kO3A.crl (hash: sJzvBcH+IoJoVjLWuPnVH7cB7YWhfPK23aFyvesFf+E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:c6:44:4a:28:42:25:54:3e:29:80:3e:ab:54:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=83ede1ca7cb35f5d61f8d59cb5036e993ea43b70
        Validity
            Not Before: Aug 23 10:00:57 2025 GMT
            Not After : Aug 24 10:00:57 2025 GMT
        Subject: CN=602cc55d56620f4e3dd985c216ef5a1586cadf3a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:16:e3:fe:d2:0e:51:cf:33:15:fc:27:37:37:
                    6c:07:44:7d:5f:a6:1e:c2:d7:11:ad:b7:3e:19:bd:
                    b4:e9:89:83:c1:19:11:8b:f6:12:eb:8b:db:41:47:
                    4d:55:45:47:0f:2e:8c:25:87:28:2c:b2:9c:79:5e:
                    80:75:33:20:d7:c9:3f:8c:97:f7:43:17:00:d5:a4:
                    27:42:e8:d8:53:ea:07:26:92:05:73:93:b8:df:78:
                    a9:7f:2f:45:a5:3e:00:f4:1a:df:5d:d3:8f:0c:99:
                    74:b1:d9:bb:3b:6b:50:25:71:d0:49:8b:cf:8f:98:
                    31:28:b9:6d:9b:28:cd:53:7e:cf:dc:61:4e:d1:25:
                    2e:d5:f0:a5:f2:cf:b0:d6:02:64:fd:c2:7f:58:89:
                    86:38:d5:9f:5c:10:4b:fc:00:38:53:7f:ed:f1:50:
                    c8:a9:f2:71:2a:9c:b1:56:ca:6f:b6:cb:f2:04:09:
                    16:99:56:a0:ce:65:2a:6c:fb:b1:ce:3c:72:34:c5:
                    3d:d7:c3:90:b5:cf:20:3a:23:34:9d:29:0d:6c:2a:
                    8c:af:11:b8:63:e5:a0:a0:b6:e4:15:33:42:06:b8:
                    91:3f:91:b5:74:bb:17:87:24:40:85:b6:b1:2b:1c:
                    5c:51:1e:4b:51:20:68:87:db:3c:91:e8:0a:36:9b:
                    fe:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:2C:C5:5D:56:62:0F:4E:3D:D9:85:C2:16:EF:5A:15:86:CA:DF:3A
            X509v3 Authority Key Identifier:
                keyid:83:ED:E1:CA:7C:B3:5F:5D:61:F8:D5:9C:B5:03:6E:99:3E:A4:3B:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:05:23:65:cf:81:ec:ea:69:6a:a5:ee:94:3d:85:09:d8:bc:
         1e:ec:f9:42:66:bc:5d:61:3b:db:92:8f:7f:76:1e:5d:de:d8:
         6a:a5:59:9d:39:22:7d:6b:3b:af:df:f8:2e:91:cd:69:c0:a1:
         79:8e:b3:1f:77:ce:47:44:72:27:17:9c:6a:df:42:71:96:f8:
         ba:12:b3:1d:f4:3b:04:15:bf:ee:04:e9:88:f1:65:02:3d:75:
         e1:14:cf:ac:e9:6d:e1:aa:ce:d0:17:e0:85:22:38:cf:67:b8:
         88:3d:9f:b0:f7:e0:89:ae:05:6c:d7:36:aa:2b:6a:28:71:c5:
         04:0f:10:14:2c:01:cb:7a:9a:aa:8e:38:57:62:4e:26:b2:43:
         60:27:c4:52:d1:c5:96:63:ea:f3:c5:d2:42:e3:ce:30:84:24:
         c6:5a:e1:a8:b5:69:58:95:a9:ba:f6:8c:a9:af:60:04:60:55:
         2f:60:eb:05:4e:d4:03:d3:29:03:34:95:cb:49:28:af:a3:83:
         ca:c3:7b:7d:61:c4:96:96:1e:6f:3a:65:e0:53:e9:32:9b:f5:
         5a:6e:27:47:85:f4:67:be:29:44:f0:9e:07:f6:94:14:5d:29:
         c4:e0:ac:d8:75:99:b0:e5:55:8d:5f:cd:ee:94:a4:d4:f5:7b:
         9b:90:1a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----