Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
File:                     TORqOpla2FRclax7aSMcpiT8iJM.mft (raw, json)
Hash identifier:          AhHkQJf78VcbvXrWzk8nZAjILrs0Gy8oKB8KLUm0G6A=
Subject key identifier:   64:56:B9:8A:A7:36:C0:3C:18:3C:80:FF:02:53:49:60:07:B8:79:D7
Authority key identifier: 4C:E4:6A:3A:99:5A:D8:54:5C:95:AC:7B:69:23:1C:A6:24:FC:88:93
Certificate issuer:       /CN=4ce46a3a995ad8545c95ac7b69231ca624fc8893
Certificate serial:       0198D472DBCA5ACF1F9C912563D5D793500D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
Manifest number:          112E
Signing time:             Sat 23 Aug 2025 01:02:33 +0000
Manifest this update:     Sat 23 Aug 2025 01:02:33 +0000
Manifest next update:     Sun 24 Aug 2025 01:02:33 +0000
Files and hashes:         1: TORqOpla2FRclax7aSMcpiT8iJM.crl (hash: N2+LK+95GRIwW24eATqyKlsPaf+7KdctLW/7/XUUu/I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:72:db:ca:5a:cf:1f:9c:91:25:63:d5:d7:93:50:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ce46a3a995ad8545c95ac7b69231ca624fc8893
        Validity
            Not Before: Aug 23 01:02:33 2025 GMT
            Not After : Aug 24 01:02:33 2025 GMT
        Subject: CN=6456b98aa736c03c183c80ff0253496007b879d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:57:29:ab:37:99:43:e9:49:da:ff:1b:06:c0:
                    73:80:83:d8:40:e0:35:3e:4f:7e:0a:94:8b:71:64:
                    92:0a:86:a6:8a:0d:7e:0e:c8:e5:db:89:2e:d0:10:
                    9a:d0:ec:23:f7:3c:41:cd:c8:45:20:94:2d:11:42:
                    bf:d5:c5:a6:50:d3:fa:78:c5:ab:a0:89:f7:8a:d9:
                    f3:83:cd:7c:d7:74:1c:73:fd:d8:a3:1a:cf:d7:4f:
                    6c:7e:8a:d0:2c:53:91:ad:8b:9e:5b:e8:03:cc:5a:
                    35:90:14:d4:c1:08:1a:67:96:2d:2c:9e:be:33:d5:
                    ea:a1:c4:af:00:7f:0f:43:0b:13:87:b1:7f:db:96:
                    02:0b:b8:fe:df:68:29:aa:9a:4d:7c:a7:61:dc:0a:
                    5b:a2:16:cb:af:e5:7b:1d:47:41:e6:de:57:50:00:
                    7c:4e:03:03:84:27:ca:21:58:90:c1:60:00:69:81:
                    90:66:49:7c:65:f6:ae:52:f8:b3:f3:60:ec:1c:05:
                    b2:2d:4c:08:f3:79:a1:10:05:31:c3:cd:12:eb:51:
                    e8:5d:53:36:90:f6:c7:ca:f0:77:a3:c8:93:43:44:
                    aa:e6:4f:65:32:76:55:c8:b3:27:5b:51:75:e4:f9:
                    21:ee:2f:fe:c6:63:d6:f7:13:d6:74:ba:d4:f3:d3:
                    4e:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:56:B9:8A:A7:36:C0:3C:18:3C:80:FF:02:53:49:60:07:B8:79:D7
            X509v3 Authority Key Identifier:
                keyid:4C:E4:6A:3A:99:5A:D8:54:5C:95:AC:7B:69:23:1C:A6:24:FC:88:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:3f:3e:2f:df:f0:2d:3c:a0:86:f1:15:c0:28:4c:ab:d0:8a:
         b7:c9:e2:aa:3b:51:51:44:8b:08:5b:87:57:53:f4:ea:b1:fc:
         c9:52:63:7b:ad:a9:51:f1:e3:be:68:aa:b7:13:54:45:e2:bf:
         e5:be:69:67:b9:82:87:d1:3d:66:7e:ad:43:02:1a:92:82:18:
         ea:34:24:d6:14:93:1b:a2:e6:93:3e:12:77:7a:a6:84:da:7f:
         31:2d:dd:65:f1:81:ff:31:54:6a:a6:77:28:17:9d:e5:95:9f:
         2b:8b:45:46:34:db:d2:bb:0a:5b:fb:94:a2:ec:eb:cb:f7:8c:
         0b:24:d5:8d:3c:da:40:84:65:0a:c8:1c:b1:54:a2:82:bd:7a:
         21:c2:1e:0d:3a:b5:a7:ee:87:4f:d5:37:82:65:4e:0b:f9:69:
         cc:84:29:7a:1c:f7:79:26:36:a4:07:d1:80:34:4b:9e:8f:3c:
         3f:60:6d:f5:bc:6b:48:12:8c:fa:4b:39:5d:05:59:c9:db:56:
         e4:73:9c:6b:73:e0:06:40:52:e9:6c:5c:19:ee:62:d7:eb:31:
         3b:ce:5d:68:55:c8:17:c9:12:a7:3d:89:98:a4:53:78:aa:59:
         79:75:45:82:8d:ee:45:6f:79:28:9e:46:19:5a:11:42:da:2f:
         8e:e3:83:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----