Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft
File:                     u-Sqx31jiC90NiBwTCTb7bGIDXo.mft (raw, json)
Hash identifier:          iuzq/pHIUb4DECH6NSUAlq2+W3x8hxA969szjMrioxE=
Subject key identifier:   38:2A:BF:FA:EF:C6:43:CE:78:98:71:89:D2:39:0F:9A:FA:E9:09:54
Authority key identifier: BB:E4:AA:C7:7D:63:88:2F:74:36:20:70:4C:24:DB:ED:B1:88:0D:7A
Certificate issuer:       /CN=bbe4aac77d63882f743620704c24dbedb1880d7a
Certificate serial:       01991809845B2095CF4A2B6A4F77DD92D26C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft
Manifest number:          05C6
Signing time:             Fri 05 Sep 2025 04:01:40 +0000
Manifest this update:     Fri 05 Sep 2025 04:01:40 +0000
Manifest next update:     Sat 06 Sep 2025 04:01:40 +0000
Files and hashes:         1: u-Sqx31jiC90NiBwTCTb7bGIDXo.crl (hash: 2OCJBAXAbCV3DzWx89Rf0fH1xU3i8hpqHTDA5Oq60Z0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:18:09:84:5b:20:95:cf:4a:2b:6a:4f:77:dd:92:d2:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bbe4aac77d63882f743620704c24dbedb1880d7a
        Validity
            Not Before: Sep  5 04:01:40 2025 GMT
            Not After : Sep  6 04:01:40 2025 GMT
        Subject: CN=382abffaefc643ce78987189d2390f9afae90954
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:e8:95:8f:e3:cd:7e:d5:92:a0:cf:e7:79:2e:
                    f1:7d:04:c0:68:3d:76:3a:a6:80:64:40:cb:61:c1:
                    67:21:19:5c:e2:c7:6c:27:20:0a:23:b6:f8:4f:a9:
                    19:c0:db:e6:75:18:0c:3e:46:1e:3f:25:93:67:b0:
                    10:d0:06:9c:18:c8:ca:1e:be:03:05:62:78:82:f8:
                    ee:33:5d:20:44:7e:03:89:43:4a:33:29:76:5c:8d:
                    9f:8a:1f:bd:98:e5:32:61:8f:68:be:54:b2:fa:f8:
                    94:29:4a:fb:eb:16:d0:17:b7:e2:b1:8b:82:9b:de:
                    87:d1:8a:93:55:c5:0f:e3:a0:36:f9:0d:de:fd:64:
                    3f:c9:b1:7d:5b:d0:78:80:a7:3e:b4:94:88:9e:92:
                    90:27:d4:42:f2:bd:e4:ef:18:14:cb:d1:7d:07:2b:
                    d1:86:13:7f:e3:b3:6a:70:c0:53:e4:d6:8a:7d:8a:
                    f8:fd:e2:59:b2:5c:da:be:d4:a9:9d:95:9a:fd:36:
                    c8:ed:cc:55:42:28:d6:7f:b4:b9:87:07:33:b6:14:
                    49:64:90:42:d8:9d:62:4b:3f:53:7a:bb:28:35:c2:
                    ac:73:21:9e:ab:4c:ee:42:f7:d5:73:48:bf:71:f7:
                    eb:aa:6c:95:76:a4:7e:8f:99:d0:80:46:63:50:9a:
                    52:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:2A:BF:FA:EF:C6:43:CE:78:98:71:89:D2:39:0F:9A:FA:E9:09:54
            X509v3 Authority Key Identifier:
                keyid:BB:E4:AA:C7:7D:63:88:2F:74:36:20:70:4C:24:DB:ED:B1:88:0D:7A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:62:e7:43:9b:1c:77:5c:2c:14:5f:ab:11:68:9d:39:95:82:
         38:14:4b:cd:d6:fb:ee:a1:54:cc:82:76:09:c5:e7:46:c9:92:
         24:35:3e:28:85:7e:7a:f5:23:3e:63:3c:7d:6d:d3:e8:7f:8b:
         31:a8:7d:37:cf:7c:fd:88:7a:58:32:d4:eb:ab:52:3b:ef:11:
         bb:9b:8a:9f:82:c7:74:de:bb:01:ab:02:8b:f3:74:d1:e1:46:
         84:e8:f5:98:dc:3e:9d:a2:05:3f:7a:e8:da:b5:7b:e2:6c:c5:
         3c:be:e3:24:d0:28:73:d5:d5:d5:4f:08:f0:d1:68:32:a3:52:
         48:ed:99:a2:51:dd:ee:9e:fb:86:c8:e1:ba:70:37:30:1a:42:
         99:d8:63:c6:06:77:c0:b0:e0:92:68:d1:eb:ab:95:59:37:06:
         fc:8d:4c:6f:a3:77:93:9b:01:48:21:ef:43:46:e3:72:26:2d:
         53:93:d3:1b:f4:a8:da:7f:3b:fb:f1:8e:f9:f2:58:0d:de:0b:
         34:84:62:50:cb:2a:d4:a8:0e:40:47:9a:17:1e:13:1e:81:6f:
         7f:ab:e2:e9:7d:cb:07:6f:a9:31:40:f3:e9:71:f6:e4:bb:6d:
         da:e0:ad:b5:bc:a6:f4:bf:ae:21:45:95:6c:5d:1e:9e:61:b0:
         f4:66:26:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----