Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
File:                     uvzQImt58j3kemr95RRLGynii1w.mft (raw, json)
Hash identifier:          eIHRArwJNb9iJPm/Kc8Gv3TjqSjvzdCvkoI2anApzlE=
Subject key identifier:   61:13:A6:D6:80:64:D6:83:93:B0:38:4F:2D:32:01:35:55:3A:F0:FC
Authority key identifier: BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C
Certificate issuer:       /CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
Certificate serial:       0197CE71A7A9C42F71D9B9AAFD98FD6FF8F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
Manifest number:          0798
Signing time:             Thu 03 Jul 2025 04:00:44 +0000
Manifest this update:     Thu 03 Jul 2025 04:00:44 +0000
Manifest next update:     Fri 04 Jul 2025 04:00:44 +0000
Files and hashes:         1: uvzQImt58j3kemr95RRLGynii1w.crl (hash: 7eTprcwMoIzKo6rqNcZqPRR2GBn+V1d0aM99o2C9b9M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 04 Jul 2025 04:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:ce:71:a7:a9:c4:2f:71:d9:b9:aa:fd:98:fd:6f:f8:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
        Validity
            Not Before: Jul  3 04:00:44 2025 GMT
            Not After : Jul  4 04:00:44 2025 GMT
        Subject: CN=6113a6d68064d68393b0384f2d320135553af0fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:48:b2:b1:f6:28:6f:ec:e8:51:10:67:7a:5f:
                    48:05:76:7c:4e:6f:5f:16:80:30:b7:b4:58:83:81:
                    75:b9:29:3d:7f:64:66:79:2b:ea:80:01:87:21:7c:
                    0d:07:82:78:bb:4a:3e:96:e0:d4:44:4d:b2:cc:2c:
                    0b:36:c3:2a:24:3c:dd:76:09:e8:8f:1e:3c:c1:9c:
                    d3:1d:27:9e:04:40:a5:76:ef:6e:e9:d5:1d:f4:7f:
                    fb:66:2f:38:ec:a1:35:a4:f8:b7:10:0c:1a:d9:8c:
                    56:7c:4b:ef:4d:d9:c3:4e:cd:a7:55:cf:2d:67:17:
                    f2:f0:6e:22:12:43:ee:32:0f:63:72:7f:35:22:fa:
                    76:9e:79:e3:27:70:e5:70:94:47:84:0d:17:ef:1c:
                    05:1a:b7:66:fd:a1:a9:02:cc:eb:14:7a:85:d3:ea:
                    ac:56:fa:eb:ed:ce:94:c8:4d:db:4a:c1:a7:53:55:
                    21:9c:58:0c:43:e6:fd:c1:da:f3:c0:ba:30:e4:6b:
                    40:2a:1c:34:8e:9a:1c:84:26:90:99:42:9f:d7:70:
                    95:f2:02:0c:ff:39:7b:75:c9:81:00:0a:48:e8:13:
                    af:09:dc:4c:30:00:72:df:63:29:84:55:d2:2e:3d:
                    d8:8c:4e:90:3d:23:61:bb:b0:3c:2f:7f:5b:c5:11:
                    bf:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:13:A6:D6:80:64:D6:83:93:B0:38:4F:2D:32:01:35:55:3A:F0:FC
            X509v3 Authority Key Identifier:
                keyid:BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:fb:98:37:fc:b2:db:be:c7:d1:78:73:d3:a9:38:16:66:78:
         7b:ef:21:58:43:34:d4:d0:f2:43:17:78:29:f6:c3:0f:ca:90:
         d5:9f:3f:66:41:82:72:9d:a2:6e:5e:e3:98:1d:9f:e7:61:b8:
         a4:fe:67:b8:7d:27:20:23:90:4f:76:eb:a3:11:df:e2:d2:c0:
         2d:37:f8:e1:5a:d7:77:05:44:e7:8e:cb:fd:57:0e:4f:27:63:
         de:9b:ff:9f:e3:e4:1f:29:3a:82:6b:4b:d9:f1:eb:a5:8f:bb:
         94:e3:4a:c5:d9:7d:d8:4d:df:54:49:c4:26:74:b0:cf:3d:8c:
         e6:e4:cd:49:6c:d2:eb:84:67:b2:d2:95:df:5e:b3:66:54:a1:
         ae:ea:b8:c3:22:ec:51:db:87:24:08:b7:47:80:92:22:af:24:
         b8:3f:eb:e5:0f:9e:ea:c0:65:44:c7:e6:ab:b3:23:00:3b:ad:
         e4:34:b6:43:57:4f:47:02:0e:3a:e0:b1:8a:83:16:41:23:99:
         ec:4d:3f:8f:4b:da:2b:42:b1:f4:10:45:c8:40:0b:e2:eb:44:
         c8:28:25:dd:82:a8:24:75:f8:dc:ef:2e:2c:d0:a7:33:04:0c:
         9e:d1:42:73:ea:4d:ee:e6:3d:fa:0c:ba:4d:4d:68:ee:55:2d:
         5d:ef:9e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----