Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
File:                     6gYhpKcsclr8dUFej4rPdTPUIH0.mft (raw, json)
Hash identifier:          3vnJMqr1BU6ZEDoQL4l+/HCfQ/puUCMp02wJ9Jjnz24=
Subject key identifier:   E4:B0:47:10:9C:47:51:0E:3E:8A:21:55:5E:AA:BA:9E:9A:A6:C9:E1
Authority key identifier: EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D
Certificate issuer:       /CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
Certificate serial:       019923A02777FB66D36818FD394F44E646C7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
Manifest number:          14BD
Signing time:             Sun 07 Sep 2025 10:02:02 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:02 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:02 +0000
Files and hashes:         1: 6gYhpKcsclr8dUFej4rPdTPUIH0.crl (hash: Ff8Nes66mLN3HNXCz2k0XhYduYEF3W4xAxqfD9HI5o4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:27:77:fb:66:d3:68:18:fd:39:4f:44:e6:46:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
        Validity
            Not Before: Sep  7 10:02:02 2025 GMT
            Not After : Sep  8 10:02:02 2025 GMT
        Subject: CN=e4b047109c47510e3e8a21555eaaba9e9aa6c9e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:aa:e6:80:1f:67:02:c6:12:c6:05:d0:f2:4a:
                    c2:43:f4:56:81:a1:a8:a6:cf:2e:ef:b6:1c:2c:6e:
                    c8:3a:90:11:fe:e8:9e:a8:d4:75:20:8c:96:6a:4b:
                    dd:cc:58:ab:fb:9e:8f:59:de:1c:1c:b5:1e:78:df:
                    9c:9a:3f:99:de:4e:4a:4f:b0:2a:64:9d:fe:13:fd:
                    08:a2:68:ab:07:b2:e5:a5:03:1f:76:aa:03:eb:c1:
                    ff:96:0d:e2:2c:ab:a3:c2:40:f0:da:4b:a0:9e:aa:
                    3c:95:bf:2d:1f:bb:66:a4:e3:5f:e1:21:17:93:3e:
                    4f:b9:2c:4c:67:69:66:e5:ed:2a:20:a2:01:17:3e:
                    24:ac:bf:40:12:10:c1:a3:3e:d1:70:15:74:64:7a:
                    ac:3d:07:df:21:5e:30:77:3c:a9:88:0f:13:23:d5:
                    a1:01:8b:f6:17:c3:61:ed:f4:71:91:48:73:c4:3e:
                    61:05:07:61:a9:3a:f5:42:ff:23:d3:41:b0:de:44:
                    3e:7c:42:bb:d4:4e:35:c2:0f:7a:6f:8f:7b:98:26:
                    be:55:c1:4f:c9:90:ba:1e:9a:7c:12:2d:a2:f2:2e:
                    2f:71:bd:c0:23:a9:66:46:46:94:7d:1a:0b:a0:67:
                    65:8c:e2:ec:0d:2e:33:a1:69:5a:55:17:40:5d:33:
                    cb:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:B0:47:10:9C:47:51:0E:3E:8A:21:55:5E:AA:BA:9E:9A:A6:C9:E1
            X509v3 Authority Key Identifier:
                keyid:EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:69:0e:05:24:dc:77:c0:35:a9:17:50:8d:fe:fe:07:e9:4f:
         45:88:9e:f8:5a:ef:e0:80:9d:ce:69:60:6e:a2:57:20:b5:7c:
         c3:13:ee:29:d9:c2:d6:ba:b1:1e:0f:c3:24:10:94:2b:73:4a:
         b7:3e:cf:98:07:d8:f9:64:01:8a:99:4f:a3:56:a0:bc:27:4e:
         68:7d:0b:d8:cf:48:09:77:ae:af:75:71:ac:3f:c6:34:26:e2:
         f7:39:16:87:67:46:a6:9a:e6:8e:5f:8e:11:02:08:12:55:20:
         7d:a6:1f:b6:28:8a:97:3b:fd:7a:2b:51:dc:45:56:16:9e:32:
         10:29:45:cc:22:cc:fd:1d:b0:0b:27:07:96:a2:ed:f7:f3:a2:
         ee:be:a2:00:85:54:df:ce:cf:5d:55:90:36:81:bb:c4:09:05:
         90:5a:6d:3e:e8:5a:62:a4:3e:66:f3:aa:34:a8:86:e6:14:65:
         5d:5e:6c:a6:62:6e:e3:36:44:0a:39:10:d4:0b:4f:a6:84:79:
         d3:50:98:a1:e8:ea:f3:98:d2:ef:74:8f:6f:6f:76:0f:d1:41:
         47:ca:b7:d0:56:b1:c6:27:9d:f5:4f:ec:d7:6f:e4:37:71:ab:
         8d:de:4c:81:8c:da:f6:ce:dd:98:1f:df:6b:96:93:50:91:36:
         1c:03:d8:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----