Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File:                     obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier:          HmmRKkwbPPSiiO31ghc2jduvct4zDxfv8AfFJN7f9bg=
Subject key identifier:   BC:59:2E:DE:1E:44:01:8F:3A:A5:B1:37:25:9E:AE:2D:36:4B:86:DB
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer:       /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial:       0198D54E4571EABD4DE38F154D9CA027D1BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number:          065E
Signing time:             Sat 23 Aug 2025 05:02:13 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:13 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:13 +0000
Files and hashes:         1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: MFpP4/NkHMqa6YhHZ4WRq9k27BDMzGyXS6JagO5IrqE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:45:71:ea:bd:4d:e3:8f:15:4d:9c:a0:27:d1:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
        Validity
            Not Before: Aug 23 05:02:13 2025 GMT
            Not After : Aug 24 05:02:13 2025 GMT
        Subject: CN=bc592ede1e44018f3aa5b137259eae2d364b86db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:77:b3:9e:26:ac:42:83:21:b3:9f:f8:10:0a:
                    1e:bc:43:b4:20:d4:f0:19:01:64:83:d0:59:56:da:
                    c9:9b:cc:56:12:70:ca:9b:8c:55:da:dd:ae:06:08:
                    07:a2:fe:aa:7b:74:85:16:03:61:fe:34:44:9b:7e:
                    1c:d2:13:28:ba:15:53:08:1a:a3:c7:a4:20:fd:99:
                    1a:ac:17:dd:94:2c:54:5b:06:35:54:9c:f9:37:71:
                    f2:43:d2:68:b0:25:35:88:14:fe:83:ee:a3:89:09:
                    72:d4:98:73:c0:38:bc:cb:b3:34:8f:16:59:ec:34:
                    fb:52:de:33:6f:c7:03:42:ce:df:e0:90:0d:2c:c3:
                    8e:28:c6:60:0e:93:f5:0e:b6:1d:37:83:3e:00:84:
                    de:ab:df:f5:67:29:7c:de:91:c9:67:03:70:a3:e8:
                    38:52:55:dd:e7:70:ff:07:6c:95:64:72:e6:5a:a3:
                    c5:2f:dc:73:43:1f:f6:1e:a5:9b:42:c9:5c:7d:e2:
                    61:0d:1f:ea:15:1f:8a:69:ba:d6:f3:9f:ee:80:25:
                    c4:4e:cf:4c:3a:55:da:c9:13:7f:dc:f4:4d:21:dc:
                    0c:35:44:59:6f:a8:b7:f9:7f:96:6c:1b:06:29:e9:
                    ee:bc:1d:bd:78:82:55:a0:57:c3:7a:be:43:c8:f6:
                    15:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:59:2E:DE:1E:44:01:8F:3A:A5:B1:37:25:9E:AE:2D:36:4B:86:DB
            X509v3 Authority Key Identifier:
                keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:50:ca:fb:3d:56:95:ad:7d:b4:0a:8b:9b:d6:c7:84:71:81:
         e0:5f:d2:9a:ed:e6:46:03:d6:6a:6b:86:c4:dc:cd:3f:e6:5b:
         eb:c4:50:df:fc:40:8e:99:0e:c8:60:ed:30:82:83:ff:a8:f2:
         f0:a6:45:1d:cc:bb:1a:d5:0f:3a:5c:92:5d:e2:a0:7e:32:6b:
         26:95:5d:3c:d7:4f:ca:f8:ce:50:cd:95:66:9b:80:97:93:bf:
         3e:e2:bf:b6:71:fd:2b:d2:f5:69:4f:7a:6f:23:9e:38:a2:13:
         cf:6a:80:2f:c6:59:05:3f:ee:81:f0:53:19:6b:6d:b0:78:de:
         20:6e:b5:fb:5b:5f:e5:87:90:0c:4a:27:94:39:52:ed:d1:16:
         d6:0d:25:16:12:48:ef:0b:c2:72:c3:56:51:19:28:12:07:eb:
         42:85:cf:2f:5f:cc:3e:49:97:af:fd:1e:19:8a:dd:43:05:92:
         80:59:0b:68:9a:f4:8f:a4:51:ed:06:bc:d4:45:39:5a:3c:fb:
         17:bc:e7:78:3b:ec:18:74:6b:e4:87:6d:29:02:79:e4:8d:af:
         34:67:45:df:64:35:f1:a1:17:8a:91:72:9a:07:9a:05:b7:d2:
         58:b3:4e:08:c0:31:4a:6c:46:83:f1:fe:33:82:73:21:4e:cb:
         dd:d2:8a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----