Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
File:                     Mya5UKRaLGusFQX80E2UDMCWj5Y.mft (raw, json)
Hash identifier:          MNJigvpJsZmZSTvfEymNTPOsdfLrV62elIPa22LoO14=
Subject key identifier:   AD:16:3C:14:DB:A1:52:37:33:24:DE:AF:CC:02:AF:76:07:47:38:48
Authority key identifier: 33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96
Certificate issuer:       /CN=3326b950a45a2c6bac1505fcd04d940cc0968f96
Certificate serial:       0199221F2CBD51CFDDBD3A31FF95E8AEE04A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
Manifest number:          055A
Signing time:             Sun 07 Sep 2025 03:01:32 +0000
Manifest this update:     Sun 07 Sep 2025 03:01:32 +0000
Manifest next update:     Mon 08 Sep 2025 03:01:32 +0000
Files and hashes:         1: Mya5UKRaLGusFQX80E2UDMCWj5Y.crl (hash: xkCNS4Ryxn9w2DK1K609m33U16NCCeVsp+83s85w05U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 03:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:1f:2c:bd:51:cf:dd:bd:3a:31:ff:95:e8:ae:e0:4a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3326b950a45a2c6bac1505fcd04d940cc0968f96
        Validity
            Not Before: Sep  7 03:01:32 2025 GMT
            Not After : Sep  8 03:01:32 2025 GMT
        Subject: CN=ad163c14dba152373324deafcc02af7607473848
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:9f:5a:16:65:5a:a3:6a:8e:f7:fa:a4:71:88:
                    d7:56:9d:72:7f:b0:10:2e:5d:83:27:af:bf:24:2d:
                    09:fc:72:2e:ab:ff:fc:c3:82:01:92:f0:dd:36:2f:
                    84:2c:a1:43:70:11:99:01:92:f0:cc:54:dc:e5:93:
                    30:3b:43:e9:44:9d:51:8b:3e:7c:4a:0d:ac:57:ac:
                    18:24:31:63:08:61:17:b7:72:16:12:1b:44:ff:fd:
                    d1:c2:51:df:35:4f:78:f1:72:2d:58:c7:8d:ca:d8:
                    e3:2d:50:7b:e5:f9:d5:26:d1:ed:f9:d2:02:e9:f3:
                    0f:04:b0:c3:ce:03:f1:ad:3f:cf:a5:f5:38:75:35:
                    c1:19:6d:75:78:98:c1:8c:6e:11:7d:79:05:71:57:
                    d0:02:93:20:31:9b:14:45:0f:07:c8:fc:0f:f0:1c:
                    36:83:25:8d:bc:60:89:8c:5f:59:3c:94:17:35:31:
                    00:65:f3:3c:54:f1:2d:e5:9b:7e:31:ad:31:7f:75:
                    09:df:f1:39:d3:1c:bd:3a:68:47:b6:1c:0a:e1:cf:
                    78:36:01:fe:55:86:71:a5:ea:73:75:8c:aa:57:a5:
                    77:83:74:96:85:db:de:50:1d:0c:15:52:a6:ea:a3:
                    d7:87:c2:66:0c:05:59:d0:e8:0b:42:17:d0:e9:2c:
                    75:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:16:3C:14:DB:A1:52:37:33:24:DE:AF:CC:02:AF:76:07:47:38:48
            X509v3 Authority Key Identifier:
                keyid:33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:f1:72:89:d5:da:c4:7a:c2:2a:42:74:50:45:02:be:a3:2b:
         0f:61:7b:da:97:c1:69:b9:d8:6f:57:70:cd:d8:37:16:7b:67:
         75:d6:d1:8e:7c:17:c6:00:42:78:c0:4f:8c:f5:33:85:f2:cd:
         4c:65:40:4b:e0:4f:43:94:bd:79:5f:f0:a8:99:7b:9b:08:cd:
         2c:ae:34:c9:1a:2f:6d:40:0b:d5:19:79:4b:91:51:a1:57:e1:
         4c:bf:86:c6:9e:74:0e:83:4c:31:a0:4e:c0:e1:b4:3e:d2:84:
         46:76:6a:5d:25:04:16:52:07:ad:af:52:61:72:51:11:e2:35:
         3c:1a:56:3d:ad:b7:39:00:b8:2f:39:24:bb:98:25:ad:88:c4:
         e3:b6:08:db:c4:70:4a:6f:4d:24:39:d5:24:df:c5:65:e7:8d:
         39:a3:ad:c4:0d:35:25:6d:e5:c8:9d:bc:2d:eb:16:84:92:81:
         d3:75:d2:f3:fe:7a:3e:27:ab:85:1d:bf:1f:5a:90:47:b0:2a:
         4c:fe:fe:ae:5a:e4:ab:2b:1c:9f:82:02:b7:8c:8a:a3:27:31:
         a4:ea:b2:69:aa:b6:83:f9:28:c6:10:60:52:d9:a8:0a:e9:15:
         5b:db:e9:78:38:91:f3:98:d0:86:8b:d0:d0:58:fb:fd:dc:9b:
         e5:77:ce:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----