Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
File:                     kUS2KYi--9kYP26_brLRlMso5uM.mft (raw, json)
Hash identifier:          ///7AYDB30X9rXvuyUYmxUi9898w9A98cPIXRmzVV2A=
Subject key identifier:   36:6E:A1:CD:F3:FA:B3:F5:04:06:5B:29:A0:C4:91:10:48:ED:D6:C9
Authority key identifier: 91:44:B6:29:88:BE:FB:D9:18:3F:6E:BF:6E:B2:D1:94:CB:28:E6:E3
Certificate issuer:       /CN=9144b62988befbd9183f6ebf6eb2d194cb28e6e3
Certificate serial:       0198D66054CAFE28BFFF79E47111B76BC0AB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
Manifest number:          080A
Signing time:             Sat 23 Aug 2025 10:01:33 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:33 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:33 +0000
Files and hashes:         1: kUS2KYi--9kYP26_brLRlMso5uM.crl (hash: R9rQW4JPb1MWPG1qswZ9jJkxFwTJ/K+dXe1bZ666QVg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:54:ca:fe:28:bf:ff:79:e4:71:11:b7:6b:c0:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9144b62988befbd9183f6ebf6eb2d194cb28e6e3
        Validity
            Not Before: Aug 23 10:01:33 2025 GMT
            Not After : Aug 24 10:01:33 2025 GMT
        Subject: CN=366ea1cdf3fab3f504065b29a0c4911048edd6c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:51:d7:78:65:d1:a8:54:57:7e:02:87:7e:3b:
                    d8:a7:bc:63:79:19:bb:c0:5f:f8:9f:39:45:f6:ff:
                    bc:e4:9a:d4:73:91:17:b4:15:5a:ae:d1:e2:e0:96:
                    f1:fc:77:15:8e:c9:c5:9f:97:36:3d:98:3c:a8:65:
                    4a:90:1a:a3:52:ed:a0:ff:31:45:7b:15:86:e3:6e:
                    b3:6b:24:e1:8d:81:1d:fe:39:8c:f7:15:01:82:8e:
                    f4:25:fb:9a:70:f2:19:15:e1:43:9c:f2:8c:e1:e7:
                    67:c2:ba:c3:10:90:97:ba:0f:23:d5:d7:08:81:b2:
                    22:b4:9c:25:dd:98:3f:36:4d:da:e6:43:86:94:8b:
                    31:cb:69:3c:49:aa:49:3e:dc:84:3f:ba:8d:52:7c:
                    17:b1:01:92:91:6b:ea:d6:b3:e1:4d:85:64:99:c4:
                    58:38:b3:b2:e5:3d:d7:ea:60:50:dc:96:b6:db:06:
                    ea:ec:90:d2:79:93:bf:7f:02:d7:f4:2a:b3:3d:a0:
                    1c:7f:d7:7f:aa:fb:ea:cf:b2:05:86:6f:c8:cb:ab:
                    b0:5f:3e:3b:4e:ed:a3:15:bd:58:f6:4b:57:b1:54:
                    02:5e:ac:6f:83:43:3a:e9:42:d9:ee:02:3b:be:3e:
                    b9:2a:c6:aa:09:3c:ec:18:d2:eb:e6:4f:1e:a1:b9:
                    20:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:6E:A1:CD:F3:FA:B3:F5:04:06:5B:29:A0:C4:91:10:48:ED:D6:C9
            X509v3 Authority Key Identifier:
                keyid:91:44:B6:29:88:BE:FB:D9:18:3F:6E:BF:6E:B2:D1:94:CB:28:E6:E3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:05:4c:3e:29:bd:8b:c9:07:ef:5e:fa:43:f2:0f:07:24:15:
         2c:d6:71:f4:3d:51:4f:47:3d:8a:79:fb:63:fc:e5:c0:6f:77:
         0e:6a:4b:5f:c7:3d:23:42:e7:66:55:2e:5c:80:44:ee:1d:34:
         93:79:84:8d:0e:17:17:43:40:98:23:1a:75:9d:6a:79:2b:2e:
         94:7b:77:98:be:ef:f4:83:d1:c2:dc:78:87:b5:fe:c0:69:09:
         86:a7:ed:2d:ed:5c:3a:a6:2a:4c:82:bd:75:4b:31:ce:e0:0d:
         9e:c4:1c:84:11:fe:90:91:34:36:99:46:e2:96:f0:89:c7:36:
         c2:4d:6a:fe:f2:08:be:f8:3c:a4:d8:59:aa:b8:e5:33:12:d7:
         ba:74:52:7b:cd:ac:dd:92:97:ed:01:4d:10:97:0c:cd:f3:41:
         bc:1c:5c:82:05:7c:3c:8a:21:2b:65:3d:9e:a1:be:2d:0a:40:
         0c:f3:f3:46:59:6b:50:23:d5:6f:76:a1:ac:47:80:be:62:df:
         d3:9d:a6:47:4f:b1:be:ba:f8:15:5a:e1:0f:f3:a8:de:df:db:
         28:64:48:0c:76:86:e0:e5:89:08:38:a6:5f:18:1b:6e:58:1e:
         71:68:4c:36:c3:ba:1b:d8:fe:0c:34:e7:c1:66:86:b2:35:3c:
         61:98:5a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----