Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft
File:                     qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft (raw, json)
Hash identifier:          vTEzLd4fX5wPwRrl+RW7O/HbjYEYzysZHDlqraXx0Ww=
Subject key identifier:   05:B1:7D:88:67:AE:2C:8D:BE:F0:FC:6D:E6:B1:7C:E1:D2:AD:58:39
Authority key identifier: A9:48:D0:11:ED:B8:CD:33:E6:67:67:88:0C:A4:AB:30:61:D9:C5:23
Certificate issuer:       /CN=a948d011edb8cd33e66767880ca4ab3061d9c523
Certificate serial:       019922C3214CA2C7219E98FFCC60028F6331
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qUjQEe24zTPmZ2eIDKSrMGHZxSM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft
Manifest number:          0389
Signing time:             Sun 07 Sep 2025 06:00:37 +0000
Manifest this update:     Sun 07 Sep 2025 06:00:37 +0000
Manifest next update:     Mon 08 Sep 2025 06:00:37 +0000
Files and hashes:         1: qUjQEe24zTPmZ2eIDKSrMGHZxSM.crl (hash: KUlY2z7sZTTMK6nYAGSDp0QC6kuOWmOIOvv3sjq9K/o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qUjQEe24zTPmZ2eIDKSrMGHZxSM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:c3:21:4c:a2:c7:21:9e:98:ff:cc:60:02:8f:63:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a948d011edb8cd33e66767880ca4ab3061d9c523
        Validity
            Not Before: Sep  7 06:00:37 2025 GMT
            Not After : Sep  8 06:00:37 2025 GMT
        Subject: CN=05b17d8867ae2c8dbef0fc6de6b17ce1d2ad5839
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:d5:8f:13:b2:c1:38:7e:b5:7c:a7:1f:29:4a:
                    3c:37:4f:7d:4e:a1:8b:9d:09:f7:96:9c:c0:7c:65:
                    be:7f:d2:7b:a8:fc:3e:45:12:0b:ed:29:fa:92:d1:
                    74:7d:32:57:2b:c0:a2:2e:4b:cd:4e:e6:02:eb:fe:
                    98:7e:84:40:b6:8b:a1:cd:4a:07:64:e2:af:42:f3:
                    ee:9c:bc:21:d8:ac:e3:56:4c:42:c0:5c:2c:02:f5:
                    e4:ea:21:f0:46:f1:49:3f:16:9c:2b:c2:be:53:29:
                    09:a2:9b:2d:a3:9f:65:42:07:45:fb:6b:06:e6:c6:
                    73:42:f3:ff:85:00:77:e6:07:eb:78:02:c8:f1:f9:
                    5e:fa:70:15:69:9b:7d:8c:ad:e4:f0:a9:dc:63:bf:
                    a5:53:ec:bd:06:07:b3:62:f6:c7:d2:d1:bd:5d:f3:
                    33:3d:cc:cd:67:08:53:a1:52:76:b8:44:81:f0:03:
                    d2:2b:51:26:b7:21:f3:c7:15:57:2c:84:7c:3d:97:
                    67:16:d6:d6:50:c1:03:39:5f:1e:c2:41:c1:b9:d5:
                    2f:df:f9:57:f7:e0:27:ab:79:d5:54:9d:22:d6:b7:
                    1c:c2:2c:13:1d:3a:af:2d:9a:63:57:0f:0a:34:39:
                    c0:af:14:7a:43:6d:72:6a:d1:80:79:40:80:6d:c4:
                    f6:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:B1:7D:88:67:AE:2C:8D:BE:F0:FC:6D:E6:B1:7C:E1:D2:AD:58:39
            X509v3 Authority Key Identifier:
                keyid:A9:48:D0:11:ED:B8:CD:33:E6:67:67:88:0C:A4:AB:30:61:D9:C5:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUjQEe24zTPmZ2eIDKSrMGHZxSM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9eb3eb-5109-4798-8828-3d549fbb837f/1/qUjQEe24zTPmZ2eIDKSrMGHZxSM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d3:4d:6e:40:64:4e:d9:72:85:70:e6:44:37:9c:3d:c8:20:f8:
         8f:5f:3b:4e:4d:4b:48:ea:a2:a7:88:82:fe:7f:c5:83:b6:fd:
         0e:18:37:40:32:08:54:a7:07:7d:84:84:52:ce:2d:9c:9f:bb:
         52:99:2c:97:ef:0a:2d:56:5b:8d:a7:45:e1:4c:56:93:19:0f:
         66:ce:0d:34:f0:12:4b:5a:21:19:a3:13:7f:73:cf:44:a1:12:
         f0:8d:13:59:ab:4c:06:ed:d0:7b:0f:4f:90:e7:96:2c:f8:83:
         d0:91:25:50:c0:5b:39:7d:4e:c0:93:da:07:5b:a0:53:33:bd:
         be:00:86:03:60:90:0a:58:2f:6d:0a:af:70:69:01:4c:95:48:
         0c:aa:dc:26:e6:9f:05:56:a1:c9:20:30:2e:f5:f5:2a:0f:0f:
         2f:cb:6b:ca:86:52:e6:e8:01:55:fd:64:ca:11:5e:59:94:6a:
         32:b0:35:5d:ac:b8:ff:75:97:2b:ce:b6:55:36:16:c9:73:91:
         2f:d8:ca:9d:9e:e8:fc:01:a3:4b:0e:15:22:ff:7e:02:4e:38:
         91:e5:f1:f6:43:86:18:c9:89:f8:74:95:b6:e6:4c:50:a6:4a:
         cb:2d:96:dc:01:f4:9f:b1:18:2f:5f:d9:89:5e:47:bc:91:89:
         6d:e8:07:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----