Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
File:                     aiElvfZalVLVuOF6s2FaoQuAWXY.mft (raw, json)
Hash identifier:          WKBvbgi+7onARYMTt6iI/978SKkIYZ0I+doERZDQigg=
Subject key identifier:   16:03:E6:A1:A2:F5:E3:6A:29:B8:55:05:51:69:59:F6:55:DF:39:E2
Authority key identifier: 6A:21:25:BD:F6:5A:95:52:D5:B8:E1:7A:B3:61:5A:A1:0B:80:59:76
Certificate issuer:       /CN=6a2125bdf65a9552d5b8e17ab3615aa10b805976
Certificate serial:       0198D5837986B5A53E4B524A451758176B8F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
Manifest number:          024B
Signing time:             Sat 23 Aug 2025 06:00:19 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:19 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:19 +0000
Files and hashes:         1: aiElvfZalVLVuOF6s2FaoQuAWXY.crl (hash: iCVL7CQBL1nBxyz1hVOwGJsfTNkBWFxGMvTULJQNwxo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:79:86:b5:a5:3e:4b:52:4a:45:17:58:17:6b:8f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a2125bdf65a9552d5b8e17ab3615aa10b805976
        Validity
            Not Before: Aug 23 06:00:19 2025 GMT
            Not After : Aug 24 06:00:19 2025 GMT
        Subject: CN=1603e6a1a2f5e36a29b85505516959f655df39e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:68:85:25:9d:a4:8b:ac:20:d6:e7:eb:87:5a:
                    c5:33:98:b1:05:91:be:26:00:d2:2c:2d:a7:6a:b0:
                    ee:10:55:e5:f2:3c:0e:d5:98:80:68:38:36:2b:a7:
                    2d:65:6e:ca:b9:4a:2e:b0:84:f8:aa:22:98:25:01:
                    0b:de:73:8f:93:f9:06:7d:c1:57:09:38:65:23:09:
                    71:6e:ef:02:95:f5:98:40:83:db:aa:e2:d4:0c:9c:
                    e9:c2:cb:68:36:57:7e:bb:d6:ce:3c:ea:c9:20:80:
                    39:fe:99:78:bc:24:07:c5:53:91:d9:c9:63:db:ca:
                    74:b7:d6:dd:ea:0e:2d:e0:ec:32:40:ed:55:4d:1f:
                    e9:60:77:06:24:21:25:78:89:25:8f:8d:b2:3b:0b:
                    1d:f3:e5:07:32:5d:9f:ef:a0:bc:51:fc:ca:19:df:
                    62:e2:87:ef:09:b6:f6:e3:15:d4:86:13:f6:79:22:
                    3b:19:63:da:1b:11:d5:1b:19:34:b7:16:a0:44:c8:
                    10:c2:3f:a3:65:b5:1e:48:40:30:87:c3:18:2e:86:
                    e6:69:f4:9f:bb:9b:b6:91:00:61:65:cf:88:ad:ef:
                    18:3d:1d:93:72:fa:c6:e6:06:1f:76:75:43:be:48:
                    cb:b5:18:16:89:79:b3:00:34:d0:c0:6e:13:20:ce:
                    ca:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:03:E6:A1:A2:F5:E3:6A:29:B8:55:05:51:69:59:F6:55:DF:39:E2
            X509v3 Authority Key Identifier:
                keyid:6A:21:25:BD:F6:5A:95:52:D5:B8:E1:7A:B3:61:5A:A1:0B:80:59:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:a7:10:ca:09:3e:e4:26:21:d6:b5:80:92:62:9e:0c:16:63:
         e0:34:c4:18:65:45:b0:71:00:9f:5c:12:31:09:bd:d5:fb:39:
         21:b8:37:14:77:bd:79:7a:b8:32:56:ef:2f:a4:a3:1e:89:41:
         a7:be:26:9d:66:6a:e0:ed:53:5a:8b:81:1a:24:91:6f:7f:23:
         6b:25:7c:8f:1b:2f:33:12:99:bc:ec:64:2e:87:7b:ba:7c:dd:
         c0:16:c2:99:18:52:02:3f:1f:5f:61:18:84:98:ce:d9:82:68:
         50:55:58:6d:87:15:19:72:a8:a3:72:8c:e9:d4:a7:86:e5:90:
         4b:1d:d8:cd:99:dd:1c:8d:c3:62:17:37:ec:30:b2:ec:0f:35:
         e0:0c:6d:ea:d7:7b:af:e5:44:2b:61:94:1b:6b:e3:28:ec:60:
         64:f9:d2:9a:24:4e:05:c6:46:74:23:9d:d8:84:60:32:fc:e2:
         12:3b:56:ee:53:bb:f9:b8:d3:e0:1a:fe:6e:c1:77:90:6b:e7:
         03:b4:73:e2:5b:24:96:26:71:99:3e:57:92:03:cf:75:3b:7b:
         e8:de:48:de:9f:d1:91:0f:8e:08:87:6c:37:bc:8a:ec:2b:bf:
         bf:ea:2e:31:ab:69:2c:ee:ac:68:7f:c3:46:3b:73:1a:06:77:
         cf:0d:42:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----