Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft
File:                     UGG999pVZ22XGIK-7pAhvF-zFy0.mft (raw, json)
Hash identifier:          CMdJ2WoDquA4oyyi2WlACdTzM2At43JrUK2UY9mO2qs=
Subject key identifier:   78:68:0B:1C:16:21:8E:F3:34:7E:2E:D9:20:B7:50:E5:02:19:EB:9B
Authority key identifier: 50:61:BD:F7:DA:55:67:6D:97:18:82:BE:EE:90:21:BC:5F:B3:17:2D
Certificate issuer:       /CN=5061bdf7da55676d971882beee9021bc5fb3172d
Certificate serial:       0198D54EC70DEA9998D20E2E4FB97A83E92A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft
Manifest number:          0900
Signing time:             Sat 23 Aug 2025 05:02:46 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:46 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:46 +0000
Files and hashes:         1: UGG999pVZ22XGIK-7pAhvF-zFy0.crl (hash: 0EeuGBXf4pY5NmJ4ehzlYz4WGmeN2H5lVOvpvq+N6+Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:c7:0d:ea:99:98:d2:0e:2e:4f:b9:7a:83:e9:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5061bdf7da55676d971882beee9021bc5fb3172d
        Validity
            Not Before: Aug 23 05:02:46 2025 GMT
            Not After : Aug 24 05:02:46 2025 GMT
        Subject: CN=78680b1c16218ef3347e2ed920b750e50219eb9b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:09:04:43:cd:bc:61:d6:91:fe:89:2e:19:4c:
                    c6:b1:af:3b:6e:44:4a:76:56:8d:0a:81:24:b5:e1:
                    84:c8:1d:40:1c:19:f2:a1:af:f8:34:5f:a4:87:22:
                    f7:55:3e:db:e2:0b:6e:78:8f:db:cd:d4:78:13:78:
                    93:d2:d8:f8:b2:26:68:aa:3a:98:7a:96:57:86:c0:
                    9d:15:69:07:a3:67:32:67:61:37:a1:33:b8:20:2c:
                    8b:0e:83:50:c9:bd:dd:ee:4e:d4:0e:26:b3:8b:59:
                    6d:a7:7d:f9:e2:38:79:c5:0b:5a:b5:13:a3:06:ca:
                    73:02:ee:a5:d4:a6:bf:1e:31:1c:ae:b8:24:e2:7c:
                    bf:fb:fa:33:13:ce:5d:5a:95:b0:66:98:b7:24:e7:
                    0b:9a:2b:9c:3b:c0:97:5f:38:bf:16:23:65:6b:50:
                    51:93:94:60:9c:3a:83:4c:8d:e0:c3:27:c0:20:96:
                    71:26:5e:68:68:88:50:57:34:d0:28:7b:77:40:5d:
                    75:9a:1c:09:90:18:98:18:5a:78:3f:57:b3:95:5b:
                    ef:db:bc:84:b3:66:84:73:30:d9:04:c5:ac:f7:f1:
                    0c:43:03:d4:35:76:78:4e:3e:be:94:28:d7:e1:66:
                    3e:d9:47:be:2f:16:8f:c8:15:34:ae:e8:dd:63:f2:
                    7e:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:68:0B:1C:16:21:8E:F3:34:7E:2E:D9:20:B7:50:E5:02:19:EB:9B
            X509v3 Authority Key Identifier:
                keyid:50:61:BD:F7:DA:55:67:6D:97:18:82:BE:EE:90:21:BC:5F:B3:17:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:99:4b:e9:51:01:3e:2c:dc:39:18:4e:e8:4a:63:e9:e5:c7:
         18:60:91:65:57:35:b6:52:35:9d:bb:5a:0a:ef:cb:5c:e3:93:
         64:e9:ba:79:a3:b8:cc:ef:73:79:4c:4a:77:54:f1:63:84:00:
         50:b1:22:7d:65:9a:82:5f:10:61:95:0b:7f:3b:c8:fc:dc:b8:
         a6:8c:e2:43:f3:ff:3b:41:e2:76:d5:e5:55:ed:ad:c1:bc:51:
         5f:a9:44:cf:d1:b2:58:17:aa:18:a7:67:e1:90:8a:12:1a:97:
         91:9e:1b:b6:b4:d1:21:e4:e2:7b:22:3d:88:25:0f:b7:97:2e:
         13:6f:f1:f7:83:ee:6f:81:35:3c:b7:a9:c5:91:da:89:3a:f3:
         51:d1:9b:06:47:b8:6f:6e:09:78:23:1c:6a:f2:55:57:bb:b1:
         8e:65:22:d6:a2:22:fc:8e:d6:d4:eb:24:bf:ba:fa:b3:51:a5:
         08:b2:83:09:fc:48:90:ba:a7:ab:13:f5:79:3d:d9:30:28:bc:
         c1:b1:4c:36:36:e4:08:cf:fd:df:4d:8a:17:ca:58:81:41:77:
         92:29:30:c0:57:80:cc:66:b4:d6:c9:6a:a7:d1:c3:46:78:cf:
         3d:23:93:d7:df:ee:2c:79:7e:dd:f4:1c:2c:4d:d9:22:f1:52:
         65:80:0e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----