Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft
File:                     bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft (raw, json)
Hash identifier:          CWjcHiZMHgjDfCbUFTpaxFZqcO5Exp6PrDSaU0I91iA=
Subject key identifier:   F8:3E:C5:1D:4A:BA:77:86:7A:AE:F9:C2:27:76:56:EA:8C:15:6C:1B
Authority key identifier: 6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C
Certificate issuer:       /CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c
Certificate serial:       0198D473152B91B0819AD53E8E8495E241A6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft
Manifest number:          0468
Signing time:             Sat 23 Aug 2025 01:02:48 +0000
Manifest this update:     Sat 23 Aug 2025 01:02:48 +0000
Manifest next update:     Sun 24 Aug 2025 01:02:48 +0000
Files and hashes:         1: bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl (hash: VPyFTbBjFJJXbaxMzch74BoD6YeMBj5W4wjo1flrUd0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:02:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:15:2b:91:b0:81:9a:d5:3e:8e:84:95:e2:41:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c
        Validity
            Not Before: Aug 23 01:02:48 2025 GMT
            Not After : Aug 24 01:02:48 2025 GMT
        Subject: CN=f83ec51d4aba77867aaef9c2277656ea8c156c1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:ab:c5:51:97:2f:5c:33:a3:b2:a8:f2:21:cd:
                    74:aa:8c:3d:6c:1e:15:ad:67:7f:be:67:5f:0d:59:
                    e5:fb:1f:ee:9e:23:eb:fa:ca:c1:92:f0:ef:0b:21:
                    e9:1c:df:ee:61:e6:85:52:6b:91:e7:16:26:69:83:
                    de:8b:c1:76:20:6e:4d:b5:07:4d:2a:85:0e:3f:4f:
                    2d:4b:5c:6c:78:bb:53:64:4f:f9:30:1b:60:94:50:
                    6a:9b:d5:58:46:c5:13:93:5e:a4:7b:63:bc:9c:fc:
                    0c:bb:68:8a:67:ba:ff:88:2d:58:51:14:2d:3b:61:
                    ec:03:b7:7e:88:42:4f:dd:d3:a7:c3:7e:99:5a:1a:
                    b1:e7:35:44:ac:f0:54:a6:87:09:2d:ba:8a:86:3d:
                    b5:fa:ce:cc:1e:11:6d:06:b9:5e:7f:93:76:da:9b:
                    1f:6c:85:22:7b:2a:f1:67:39:66:a1:61:5b:af:38:
                    b2:fe:a3:21:bb:68:66:c4:b0:51:9c:01:58:48:4f:
                    59:d3:0c:d8:6a:0a:ce:0d:36:a8:1a:c2:dd:69:e9:
                    de:18:eb:5f:92:27:3c:d2:74:7b:d5:6f:cf:52:4b:
                    c3:a2:5d:24:b0:ca:9b:48:04:15:f7:32:b9:8e:11:
                    a0:28:a3:2d:43:69:22:27:03:97:76:0c:26:0b:4f:
                    af:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:3E:C5:1D:4A:BA:77:86:7A:AE:F9:C2:27:76:56:EA:8C:15:6C:1B
            X509v3 Authority Key Identifier:
                keyid:6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c4:87:ac:b3:f3:f9:81:30:9d:e7:78:2d:1d:ed:3d:55:e3:35:
         f7:ec:6c:2a:35:33:dc:b0:da:94:e8:6d:db:55:24:36:a5:3e:
         0e:02:9b:8e:3c:5e:48:2b:77:2f:7d:a0:b6:ce:ec:99:ba:13:
         76:6d:4f:98:e9:91:0b:14:27:34:7b:9d:36:89:72:fb:3e:82:
         86:1d:7d:aa:a5:6a:67:1c:f4:74:a0:8b:4c:bc:c2:f5:7b:23:
         b9:ed:10:e5:b6:a6:a4:06:8c:e6:e8:db:43:de:a6:88:69:e0:
         f8:a8:93:76:60:40:09:d0:0d:06:82:12:aa:fd:65:c2:f2:93:
         5c:6e:b4:c8:cc:fd:a3:e2:49:f3:6f:20:6b:a7:23:6c:41:e0:
         d8:eb:ec:b7:6f:e3:a0:b2:88:33:7f:31:f2:7a:cc:98:cb:9a:
         e3:99:ed:e6:32:47:d3:94:1a:bf:5d:8d:5f:40:2e:ce:08:e9:
         53:a6:f2:3a:84:40:14:fa:e3:aa:32:00:4f:cb:0c:f6:5c:95:
         32:47:f8:43:5d:80:e0:d0:7e:d8:53:4e:e7:29:58:2d:e5:26:
         81:32:1f:0a:49:22:4c:37:d9:59:8f:e7:61:37:5b:bf:d6:3e:
         be:85:4e:dd:70:b3:d2:43:59:a3:d4:c8:8a:3d:ea:f4:d5:0b:
         42:c6:82:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----