Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
File:                     zrxhguhz_3oDHIiV79xXw2hx3XI.mft (raw, json)
Hash identifier:          tc00m3yfIYQDR1npaNVKQU9H5jjhOsj1aYuOWfx9mbg=
Subject key identifier:   6C:4C:4D:68:6C:C4:94:4F:84:6A:84:F9:2E:04:31:DD:EA:7A:8A:90
Authority key identifier: CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
Certificate issuer:       /CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Certificate serial:       0198D65F1E5595F1BCD9D4BF1BADD93A22C9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
Manifest number:          01DE
Signing time:             Sat 23 Aug 2025 10:00:14 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:14 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:14 +0000
Files and hashes:         1: zrxhguhz_3oDHIiV79xXw2hx3XI.crl (hash: nikEQjlOGQL3SMe+vBs1pymNNRsALY2q84o/mvivH0k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:1e:55:95:f1:bc:d9:d4:bf:1b:ad:d9:3a:22:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cebc6182e873ff7a031c8895efdc57c36871dd72
        Validity
            Not Before: Aug 23 10:00:14 2025 GMT
            Not After : Aug 24 10:00:14 2025 GMT
        Subject: CN=6c4c4d686cc4944f846a84f92e0431ddea7a8a90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:a1:3b:c5:c6:13:88:47:91:4e:29:9a:67:05:
                    d3:2b:77:34:11:4f:44:22:5d:63:d9:d7:cd:10:65:
                    8c:93:26:37:25:ce:46:e3:59:01:6e:87:9c:27:b2:
                    c5:fd:67:1a:16:ed:1c:3d:aa:be:f0:f3:9b:1b:0d:
                    0e:81:3c:a3:e5:18:54:21:89:81:04:b2:07:bc:ac:
                    33:fa:11:10:c5:d5:80:61:dd:ea:30:4e:77:ae:1f:
                    7a:df:2a:7f:06:bf:c9:4f:9a:1a:c8:c1:cc:b6:1a:
                    ac:31:49:db:f8:68:53:0a:e8:d9:4d:5b:73:da:b7:
                    a6:e5:4e:6d:5f:33:3d:0b:eb:c4:c6:fb:3a:e0:23:
                    76:11:fb:a3:04:65:5a:d2:56:85:74:82:69:77:c1:
                    f2:e8:90:ee:6c:e9:fc:42:76:62:82:6b:8c:e3:7d:
                    23:16:08:c8:05:5c:9b:9d:20:0c:57:3d:85:4c:5a:
                    e4:61:67:fe:66:16:05:92:24:2c:9a:81:ca:30:83:
                    19:2c:7b:9a:d8:b4:fa:06:4d:57:5f:45:83:00:d2:
                    83:21:14:73:b1:ea:9a:f3:1f:8f:97:a5:c1:c0:e1:
                    ca:58:c0:f0:32:56:9b:3a:17:29:a8:7e:ba:b3:4f:
                    46:93:2e:01:7f:96:d0:16:a5:5e:c7:d8:96:91:2b:
                    93:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:4C:4D:68:6C:C4:94:4F:84:6A:84:F9:2E:04:31:DD:EA:7A:8A:90
            X509v3 Authority Key Identifier:
                keyid:CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:89:57:83:39:b2:df:80:f6:87:3a:06:68:cb:2c:a9:39:1d:
         c0:10:89:60:fe:40:ba:d7:bd:4c:bb:5a:e5:99:62:cd:1e:66:
         28:05:e6:15:b0:8e:c7:43:40:03:1b:d6:70:5a:07:e4:29:f3:
         cd:0f:7f:46:8f:94:b6:32:9f:7c:b8:c6:e2:cc:e2:ed:76:71:
         22:57:f1:15:66:63:f1:36:16:a6:6c:c4:f0:10:19:89:fc:1a:
         48:01:31:c9:78:20:c1:3b:f2:0f:de:c7:7e:62:4d:66:e1:a0:
         3e:03:73:73:3e:3a:d6:2f:73:fe:9b:e8:a1:ed:e4:fc:fe:99:
         5b:66:82:6c:8f:f9:e6:d4:46:f2:fc:31:6e:13:b7:97:c0:85:
         e4:55:35:a5:96:04:4b:e0:e5:23:d6:c4:43:b7:7a:ab:70:8f:
         be:d6:4e:39:8b:88:54:fa:64:35:ab:1c:9e:95:14:53:be:8a:
         99:cb:0c:fa:c5:6d:57:6f:62:8a:51:18:f7:ad:12:da:68:7e:
         ff:c3:b1:d6:0c:bc:25:44:d3:cd:d0:32:38:72:ed:96:e0:a1:
         74:2c:4d:e2:63:65:45:04:ce:82:3b:12:40:1a:a8:ae:6b:36:
         7f:a8:80:5c:50:3b:e6:67:1f:23:99:2b:ad:66:31:e5:68:bd:
         6b:86:a0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----