Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft
File:                     SwGEomKzUJ4aumGpC-yrMrACVUw.mft (raw, json)
Hash identifier:          LxVgJni+HjGxPrGQHbkfsW0bIoX9gYxCaa2+yszKE+o=
Subject key identifier:   F0:9C:BC:84:43:CE:D3:05:7D:3F:83:E0:22:B1:D1:32:5F:62:11:3D
Authority key identifier: 4B:01:84:A2:62:B3:50:9E:1A:BA:61:A9:0B:EC:AB:32:B0:02:55:4C
Certificate issuer:       /CN=4b0184a262b3509e1aba61a90becab32b002554c
Certificate serial:       01984B552E1D2E06FBF37B28E9B0341B5B73
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SwGEomKzUJ4aumGpC-yrMrACVUw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft
Manifest number:          1591
Signing time:             Sun 27 Jul 2025 10:02:10 +0000
Manifest this update:     Sun 27 Jul 2025 10:02:10 +0000
Manifest next update:     Mon 28 Jul 2025 10:02:10 +0000
Files and hashes:         1: SwGEomKzUJ4aumGpC-yrMrACVUw.crl (hash: b5peQggIVjqfuGChf63wqkcOI6LgRuj79R8jzB45uCk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SwGEomKzUJ4aumGpC-yrMrACVUw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 05:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:4b:55:2e:1d:2e:06:fb:f3:7b:28:e9:b0:34:1b:5b:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b0184a262b3509e1aba61a90becab32b002554c
        Validity
            Not Before: Jul 27 10:02:10 2025 GMT
            Not After : Jul 28 10:02:10 2025 GMT
        Subject: CN=f09cbc8443ced3057d3f83e022b1d1325f62113d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ea:8f:0c:0f:18:6a:ca:c1:12:fa:7e:b7:82:
                    48:5b:4f:0f:8b:bf:a7:41:8c:d3:e2:bd:9d:c8:f8:
                    6a:d7:ff:70:68:d8:09:6e:44:3b:48:a8:6e:d3:e1:
                    ae:98:8d:e0:26:af:4a:8b:cd:6e:2d:5c:92:54:60:
                    60:5a:6c:63:bc:a2:74:be:90:32:f8:42:e9:3e:7d:
                    89:35:be:f6:e6:9c:14:2d:52:ae:55:10:a1:06:21:
                    0e:e2:fc:ae:5f:f4:a4:d1:ce:6a:22:67:23:d9:da:
                    cd:e8:20:44:7f:2b:c5:b7:10:91:d5:27:d2:a8:b7:
                    65:d1:43:f7:2a:cd:78:1a:8a:fe:1d:b7:2b:e0:b9:
                    b7:57:85:c0:a8:f5:3d:3b:ad:3a:c3:63:e9:18:f6:
                    f2:b7:be:87:90:5f:a5:59:13:1f:e2:f9:e5:b4:c9:
                    17:8d:39:33:01:33:fd:1f:84:7c:ff:b2:ad:67:68:
                    1e:9e:89:64:40:72:ac:9b:01:d8:07:7b:c8:e6:21:
                    7e:d8:a0:67:58:03:92:7b:47:20:75:4a:d6:d6:07:
                    c0:dd:75:a4:15:f8:73:72:59:1d:5e:50:61:7f:3c:
                    cb:ef:e0:8d:1c:1a:0f:dc:95:b0:85:81:a6:48:9c:
                    0b:68:15:53:a9:fc:d3:7f:25:aa:45:3a:bb:da:8b:
                    23:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:9C:BC:84:43:CE:D3:05:7D:3F:83:E0:22:B1:D1:32:5F:62:11:3D
            X509v3 Authority Key Identifier:
                keyid:4B:01:84:A2:62:B3:50:9E:1A:BA:61:A9:0B:EC:AB:32:B0:02:55:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SwGEomKzUJ4aumGpC-yrMrACVUw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:2a:f7:a2:34:23:4b:11:46:6a:2c:68:db:81:ee:49:08:7a:
         78:ba:cd:f9:86:52:71:a1:06:99:df:45:f0:42:60:26:48:1b:
         18:5f:9a:c3:18:d3:44:11:75:27:6c:2e:ac:63:fe:2e:4c:39:
         3d:03:36:e6:85:4a:53:57:92:ac:fa:59:f8:1b:ce:d4:89:47:
         da:33:1b:39:7a:88:4c:d2:11:b2:5b:b1:68:58:32:9f:95:a8:
         b3:ae:2f:e1:03:d3:9d:e0:88:a3:2f:c4:75:9f:2d:db:b8:eb:
         29:04:94:af:19:75:fa:0f:50:84:dd:10:b0:80:93:96:f4:fe:
         7e:2b:45:78:47:66:36:b1:98:ac:eb:23:ee:9d:79:fb:48:b5:
         e9:5d:d2:58:df:59:14:f9:79:38:f9:00:02:0f:a7:35:b1:1e:
         6e:98:81:25:90:d2:68:45:b4:5c:f7:df:d7:d4:10:cb:3b:03:
         1c:f1:7b:6b:e5:09:8d:b7:9b:b2:b7:4b:8a:74:1c:1c:4d:9c:
         c4:41:c2:55:8b:95:1f:b7:cb:46:23:96:28:64:c8:ef:8c:bd:
         33:20:d3:8e:50:51:4d:2c:2c:63:4c:2b:7f:4d:34:83:9c:20:
         98:fe:0c:62:a3:06:b1:0a:6d:bf:96:dd:d3:9d:8e:68:4c:0d:
         ec:73:b6:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----