Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
File:                     iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json)
Hash identifier:          Hvs/5+sCxMgI19h3Nqsc9hMEQBQbvh5q+vveJu4WCDo=
Subject key identifier:   46:47:C8:C2:68:2C:02:F1:78:66:2A:DE:54:0E:C5:AE:85:BF:B6:74
Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
Certificate issuer:       /CN=8b050e42c918de3c27366def433a61f13c3b16b2
Certificate serial:       019923A03E13AC8952C9F28076CDD4700D28
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
Manifest number:          166E
Signing time:             Sun 07 Sep 2025 10:02:08 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:08 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:08 +0000
Files and hashes:         1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: zja/ZagMy3Q/Q/hWQFa9BeHkb6oC009h0TNeZteROcE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:3e:13:ac:89:52:c9:f2:80:76:cd:d4:70:0d:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2
        Validity
            Not Before: Sep  7 10:02:08 2025 GMT
            Not After : Sep  8 10:02:08 2025 GMT
        Subject: CN=4647c8c2682c02f178662ade540ec5ae85bfb674
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:a5:f7:1f:74:59:02:69:e9:9e:30:14:ee:96:
                    cd:71:de:fe:13:3f:84:f0:af:9d:d2:5f:c5:57:d1:
                    f1:10:ce:b0:23:3c:3a:0c:a6:b5:a0:60:c7:28:10:
                    c7:bb:18:bc:cc:0d:52:1f:4a:d0:85:fa:a1:28:a7:
                    b1:36:ce:f1:f6:9b:5d:ad:d4:82:90:08:a2:67:fc:
                    c5:e7:e4:44:88:d3:ed:63:57:23:ae:27:5c:0b:6c:
                    2e:75:b4:68:a4:b1:6c:8b:a6:6d:74:01:a7:22:5f:
                    59:ad:25:9f:dc:21:f1:36:d5:59:48:1d:55:d0:15:
                    82:4e:46:39:c9:f3:da:12:4b:8f:9e:af:d1:66:1e:
                    9d:87:32:d0:2c:73:2c:bb:75:a9:d4:72:74:c2:2d:
                    04:fb:a6:11:d9:6b:77:6b:2c:b4:52:67:7a:85:02:
                    7d:ac:c4:b0:b0:eb:ae:35:0e:78:81:91:b4:59:5e:
                    27:ee:a5:0c:f9:f1:05:8d:78:8f:f0:7f:8a:fc:9c:
                    d1:6e:ba:36:61:f2:1f:04:e1:ca:c0:0a:af:b6:b0:
                    ea:c2:22:0c:48:be:c3:2f:18:96:15:fb:bc:6f:01:
                    dc:aa:e6:fd:25:a2:d5:36:e3:77:9a:a0:5e:a3:c0:
                    bd:9b:ca:00:a9:84:94:e0:28:5f:f8:22:28:cf:44:
                    00:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:47:C8:C2:68:2C:02:F1:78:66:2A:DE:54:0E:C5:AE:85:BF:B6:74
            X509v3 Authority Key Identifier:
                keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:6a:d7:90:8f:69:ec:45:b4:0d:d0:a7:1c:c1:ad:da:e7:0a:
         f3:03:a2:b3:1b:8b:a1:2e:9d:a4:12:ce:d8:39:be:93:66:90:
         15:c7:26:98:5b:7b:a9:4b:91:51:93:e1:aa:72:8d:3d:d4:71:
         d6:66:01:c4:6e:50:a6:69:19:c0:cd:98:71:30:02:79:f2:5e:
         00:45:be:94:50:a5:bc:61:89:e4:f7:ba:34:69:0e:04:b9:98:
         a5:4b:32:70:17:fb:80:7f:b1:2c:fc:17:52:70:17:14:c2:55:
         db:c3:1f:65:12:75:34:f0:fe:b2:25:90:3d:fd:6d:d6:9c:35:
         31:b4:60:90:f5:d5:35:f9:7b:60:8b:60:59:d5:c9:72:e1:f2:
         17:0c:45:4d:28:ae:03:d3:2d:82:3b:3b:14:75:20:d9:62:dc:
         7a:8e:f6:fc:14:b0:c4:9e:b4:68:f2:88:23:d9:82:e5:d9:a4:
         24:0f:a9:7c:5d:22:e1:6f:ec:0b:e2:d3:9c:0d:24:87:29:0c:
         cb:0b:f7:2c:18:e1:28:6f:cc:86:68:31:61:1a:e3:03:b0:63:
         3b:57:6d:f8:64:df:e0:eb:ff:f6:9d:14:27:31:c5:97:fc:e1:
         f9:39:e3:5e:6b:89:61:de:fd:05:9a:de:29:d3:29:f3:b4:f2:
         66:ab:18:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----