Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft
File:                     egadopx7Yd3rzAUk_QjlTf80wWg.mft (raw, json)
Hash identifier:          0OHAyQ1CnfMjXD2HHftBz3G83fWrQufM0oJrvHAXKK0=
Subject key identifier:   77:67:A4:58:5A:FB:F7:AF:81:C0:14:F1:5B:40:4C:E0:CC:20:3F:6A
Authority key identifier: 7A:06:9D:A2:9C:7B:61:DD:EB:CC:05:24:FD:08:E5:4D:FF:34:C1:68
Certificate issuer:       /CN=7a069da29c7b61ddebcc0524fd08e54dff34c168
Certificate serial:       0198D660792A43325F2F9446379179883BEC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft
Manifest number:          1647
Signing time:             Sat 23 Aug 2025 10:01:43 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:43 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:43 +0000
Files and hashes:         1: egadopx7Yd3rzAUk_QjlTf80wWg.crl (hash: YlrHpwp3RJh9c6WXHRWcsqnY5O5RsuXNzsRrBCVVQ+E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:79:2a:43:32:5f:2f:94:46:37:91:79:88:3b:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7a069da29c7b61ddebcc0524fd08e54dff34c168
        Validity
            Not Before: Aug 23 10:01:43 2025 GMT
            Not After : Aug 24 10:01:43 2025 GMT
        Subject: CN=7767a4585afbf7af81c014f15b404ce0cc203f6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:8c:a9:96:65:33:84:d8:8d:ea:c3:c3:c6:bb:
                    1e:ff:50:33:92:01:9b:e6:39:1d:e5:92:c6:4a:a1:
                    48:e4:6e:c9:4c:00:76:4f:35:b8:f4:e5:31:bd:41:
                    e2:00:18:19:68:f9:bd:55:2c:1f:fb:83:6e:b2:0a:
                    84:f7:f9:a6:84:a6:7d:8f:f0:f6:26:a8:7a:38:7e:
                    16:d8:fb:b9:4d:58:94:f3:5c:fb:f0:ae:5a:54:fb:
                    b8:d8:4b:07:3a:38:ab:47:37:b1:b3:33:84:86:1e:
                    90:aa:5f:63:0b:8d:e4:a7:f9:d7:16:ad:a6:22:ff:
                    7a:7f:51:00:93:24:98:4f:03:16:9d:1d:92:2e:5d:
                    73:f4:35:cc:55:6c:76:07:94:4d:ce:89:17:d0:25:
                    20:76:68:37:39:7b:f6:ad:31:a7:69:d0:e4:37:78:
                    5a:a9:5b:e3:b4:46:f3:2e:b4:2a:c9:ed:8f:07:b9:
                    78:5d:9b:d4:b6:a0:da:30:c9:0e:aa:e4:3d:6a:cb:
                    31:6b:2c:44:72:a3:1e:2d:d2:a5:75:75:0c:76:58:
                    db:e0:89:00:37:4d:43:64:9a:7e:4b:bb:9e:d1:2a:
                    ed:15:d3:10:e1:ba:83:92:28:98:87:ad:61:50:15:
                    e7:2a:ec:55:3e:bc:42:b9:22:a1:f1:4a:a0:45:8f:
                    1d:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:67:A4:58:5A:FB:F7:AF:81:C0:14:F1:5B:40:4C:E0:CC:20:3F:6A
            X509v3 Authority Key Identifier:
                keyid:7A:06:9D:A2:9C:7B:61:DD:EB:CC:05:24:FD:08:E5:4D:FF:34:C1:68

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:9b:6a:97:e3:69:d1:e6:0d:dd:9f:87:d1:a4:07:54:b7:67:
         ab:de:0b:34:91:d8:30:5b:99:32:26:6f:18:b5:b4:4f:0d:3a:
         ac:32:4b:90:4f:8a:fb:90:d1:7b:02:69:fa:3b:2d:a6:64:7a:
         b9:ba:fc:c4:58:0b:a6:34:42:db:69:8f:0f:16:bd:6a:0f:54:
         39:e7:0c:aa:f0:ad:e7:cf:7c:f1:c4:b8:70:53:27:77:47:c0:
         f3:6f:22:50:66:a3:c9:ea:a2:a3:a6:f6:a9:5e:62:41:3a:78:
         e1:b3:80:dc:29:33:22:18:53:3e:46:20:b1:24:da:17:ca:d0:
         a2:70:2f:01:bb:e3:53:b4:ae:12:ee:a0:e1:b2:5f:17:cf:16:
         28:1d:d5:c0:16:b6:a9:11:32:3a:bb:39:e7:3b:d6:8c:2e:1c:
         86:c9:32:3b:35:a2:2d:69:1d:54:fa:33:2d:e5:ed:a6:b6:b1:
         b5:be:c7:b4:cb:39:67:97:1e:13:13:08:26:71:2e:7e:b2:1a:
         26:91:b4:77:58:6f:8c:32:5f:e7:b0:2c:6d:04:bb:bb:6d:7b:
         ab:68:81:12:4f:48:1e:26:33:49:9b:fb:0b:22:ce:4a:25:b5:
         0e:54:1b:10:d2:22:e5:ad:23:02:0f:04:5b:da:0c:b1:87:93:
         90:dd:ff:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----