Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
File:                     TStBlpVqQxU0D4J9mSoPeikoTD4.mft (raw, json)
Hash identifier:          Cf/+uMjgT2uCnxBSbP9k7f6iueW6+l5bJjegVj+f/FU=
Subject key identifier:   9E:5F:EF:5A:E0:CF:85:D5:09:AC:A8:BA:D0:3C:87:3A:8E:C9:B2:C7
Authority key identifier: 4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
Certificate issuer:       /CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Certificate serial:       019922FA7AF95E2671370EFD0E58D5B2A088
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
Manifest number:          1301
Signing time:             Sun 07 Sep 2025 07:01:04 +0000
Manifest this update:     Sun 07 Sep 2025 07:01:04 +0000
Manifest next update:     Mon 08 Sep 2025 07:01:04 +0000
Files and hashes:         1: TStBlpVqQxU0D4J9mSoPeikoTD4.crl (hash: o75wryeiSRQ2WxX2WW+DE/Wuk6Ux+Coxi4RT1ty6cR8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:7a:f9:5e:26:71:37:0e:fd:0e:58:d5:b2:a0:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4d2b4196956a4315340f827d992a0f7a29284c3e
        Validity
            Not Before: Sep  7 07:01:04 2025 GMT
            Not After : Sep  8 07:01:04 2025 GMT
        Subject: CN=9e5fef5ae0cf85d509aca8bad03c873a8ec9b2c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:02:61:0f:d8:82:51:ed:fc:ef:aa:b4:34:9d:
                    1d:86:fa:c1:58:41:58:c8:ab:31:a3:cd:a1:64:dd:
                    21:1b:d2:78:d0:33:ce:37:af:06:25:4f:98:7d:ee:
                    5f:3c:47:8f:2a:14:fc:c5:29:2c:b0:99:b6:2b:e0:
                    16:5b:5e:ab:ff:5e:0f:34:7b:6d:8a:b7:e1:79:a7:
                    b1:58:a3:28:5f:29:eb:ac:23:13:c7:8e:4d:41:c0:
                    b4:d6:58:df:6e:13:c0:c9:06:15:7f:dd:2f:dd:4d:
                    f0:07:41:ec:1d:5e:12:d1:5b:78:9d:c1:2e:9c:23:
                    43:2c:ab:33:dc:ca:8a:21:ff:7b:d2:80:33:b9:12:
                    71:98:92:40:94:16:94:e1:e7:67:f7:77:36:8e:fd:
                    0f:b3:49:7f:33:84:67:32:d7:6d:1e:33:e4:b8:5e:
                    aa:a1:f4:df:e9:cc:f0:e7:be:d0:fe:89:3b:a7:d5:
                    66:2e:cd:0a:e4:bf:92:b6:4b:a2:4f:1f:ab:b1:b3:
                    cb:6d:68:92:89:77:91:3e:ce:bb:6b:b6:c9:15:6e:
                    23:aa:ee:0d:75:62:ff:c1:99:20:3b:db:41:69:7c:
                    d2:3d:ec:2d:81:d7:9f:63:08:1e:ff:eb:11:97:74:
                    ee:af:c4:be:f1:70:c4:5b:64:b0:2b:f1:35:10:51:
                    e4:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:5F:EF:5A:E0:CF:85:D5:09:AC:A8:BA:D0:3C:87:3A:8E:C9:B2:C7
            X509v3 Authority Key Identifier:
                keyid:4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:d2:0d:09:1b:68:0b:e4:1b:4a:64:32:a1:b8:66:3f:29:84:
         92:02:4a:57:62:9c:d1:f1:b9:f0:e2:b3:5f:72:8b:a7:63:81:
         a2:36:22:0a:fe:98:9e:65:93:32:81:86:75:4a:55:35:b0:b1:
         df:aa:01:bd:ea:fa:52:83:39:41:56:5d:8a:61:65:c3:71:6d:
         69:2d:f0:52:be:27:f7:ce:a2:6c:70:17:b7:00:7c:47:8f:05:
         45:bc:83:a9:80:c3:35:18:ca:aa:c0:41:51:96:75:07:40:f1:
         d6:01:27:a3:5f:60:5f:12:c1:3b:29:f7:68:01:b5:c2:2f:e8:
         10:bc:76:43:e8:39:72:08:32:ef:89:32:57:c0:d0:33:93:61:
         00:13:ca:c0:a6:bf:85:c0:2c:ca:4c:6e:8b:a2:03:d9:a0:11:
         4d:53:80:30:f1:9e:ca:f5:ba:0e:91:2a:0f:78:a5:8f:2d:8c:
         68:40:07:cd:ec:89:f2:a2:18:53:b7:ef:5b:63:aa:bd:dd:50:
         39:5e:2d:a1:c0:8a:42:b2:d4:21:67:e1:2e:1e:98:04:85:a8:
         59:fc:c4:be:e2:ce:b6:43:ff:94:26:62:5b:d4:e0:0e:92:45:
         73:90:67:f7:9d:c7:2c:b6:02:2b:fe:b2:f0:2e:65:fa:14:fc:
         96:2d:10:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----