Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
File:                     3EviU3WUInayZECX3D1ah1r7ivE.mft (raw, json)
Hash identifier:          FDIRTrfaefr1LSvxlIn+cWW8Oe2ihpt1J3qMsUdJYjc=
Subject key identifier:   E2:5E:5A:F1:0F:0E:E5:AF:AB:A4:56:7B:4C:D1:E0:D0:22:0F:FC:72
Authority key identifier: DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1
Certificate issuer:       /CN=dc4be25375942276b2644097dc3d5a875afb8af1
Certificate serial:       0198D472C06C01F02C3E15603973E9B6026E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
Manifest number:          08FD
Signing time:             Sat 23 Aug 2025 01:02:26 +0000
Manifest this update:     Sat 23 Aug 2025 01:02:26 +0000
Manifest next update:     Sun 24 Aug 2025 01:02:26 +0000
Files and hashes:         1: 3EviU3WUInayZECX3D1ah1r7ivE.crl (hash: j4R0wtZJWR05DfvyYNjTxiLYryO+SidrOyEeRBvpa2Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:72:c0:6c:01:f0:2c:3e:15:60:39:73:e9:b6:02:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc4be25375942276b2644097dc3d5a875afb8af1
        Validity
            Not Before: Aug 23 01:02:26 2025 GMT
            Not After : Aug 24 01:02:26 2025 GMT
        Subject: CN=e25e5af10f0ee5afaba4567b4cd1e0d0220ffc72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:f6:c4:bb:95:aa:67:4f:c6:93:ea:95:bf:17:
                    f6:62:49:39:5f:43:8d:0a:2e:4e:95:3a:a5:f5:27:
                    72:70:5d:86:3c:ef:0a:69:24:24:11:0b:a7:85:a5:
                    82:28:dc:4b:24:19:de:01:1c:52:76:ff:62:cd:65:
                    26:e7:4f:3f:c6:bb:9f:e1:3c:b3:7f:31:f0:20:4a:
                    e3:24:83:70:42:fb:18:36:91:b8:9b:3e:12:55:b7:
                    14:b1:58:19:61:1b:22:e3:17:86:57:59:6a:eb:f0:
                    63:c0:73:52:d5:4d:e8:a7:ef:67:1e:0a:cc:12:09:
                    17:ab:ca:f7:6b:42:6d:f5:c2:4a:91:dc:12:57:46:
                    86:d1:31:d9:b2:10:f4:f2:87:35:57:23:27:9e:b5:
                    05:f9:42:e4:94:2f:6a:5e:b2:67:48:fc:e1:7f:c4:
                    e4:1c:88:72:77:4a:60:cd:49:bd:8b:11:70:ed:c7:
                    56:e6:4e:cb:d6:b0:e1:a3:82:16:f0:30:cb:2e:74:
                    5e:9e:9b:17:aa:93:60:6c:f1:60:0c:39:98:df:16:
                    55:fe:51:fb:63:d7:b4:d2:61:da:63:4a:8a:33:06:
                    0f:91:5c:ef:93:77:aa:d2:d1:b7:b6:d8:cd:39:a0:
                    05:6e:14:39:f0:10:2d:ed:93:93:0e:0c:7f:d7:8a:
                    f9:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:5E:5A:F1:0F:0E:E5:AF:AB:A4:56:7B:4C:D1:E0:D0:22:0F:FC:72
            X509v3 Authority Key Identifier:
                keyid:DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:1c:f8:fe:1d:ec:fa:17:9d:47:a9:c5:a1:1a:c2:e9:96:43:
         ba:1f:9b:c8:c3:26:24:25:2b:ce:23:c6:16:39:e4:8e:40:85:
         92:33:10:bd:a0:57:d6:a8:f8:ee:ab:42:11:3f:82:25:95:01:
         a3:e1:43:76:92:4d:ec:35:33:f4:02:dd:30:95:1f:5d:bc:7b:
         ae:c0:f0:0a:52:2c:3c:7b:94:fa:54:71:13:40:8a:38:48:ac:
         3d:e6:d3:f6:d6:6d:f4:b8:8c:4b:98:e0:26:15:87:d3:a4:3d:
         fa:55:6b:56:1e:8e:4e:67:20:c9:58:ae:53:b7:d2:54:32:7f:
         94:26:ba:2d:8d:aa:ae:76:fa:dd:75:bc:1c:1b:f4:59:84:ba:
         52:22:65:e2:c3:17:91:e7:1b:3e:12:f0:7e:da:73:60:48:6f:
         2d:03:3b:d2:5c:77:e5:b6:a8:b2:bc:94:85:c6:7f:b9:44:23:
         ff:26:5a:f7:54:d7:72:45:30:51:2e:08:93:ad:ee:b5:5e:cc:
         23:42:11:ed:6d:f4:f3:64:f1:00:f5:38:5a:f7:35:99:88:e7:
         47:0a:91:af:5e:95:1a:5d:5d:b7:ed:4c:40:46:30:f8:d3:02:
         ab:43:13:eb:fe:82:bd:82:f6:01:fc:ca:7c:c6:7d:01:66:c6:
         82:10:54:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----