Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
File:                     q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json)
Hash identifier:          aem2dKWwIkJbCpZLUM0RuwSxbX4H9xXFZ8qhkXKx1mI=
Subject key identifier:   83:55:2E:93:78:57:A2:6B:22:24:E3:BB:1F:B5:66:60:D4:1F:8A:AC
Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC
Certificate issuer:       /CN=aba374394fe1080d64a219d7d35a49462e8e99ac
Certificate serial:       019A706E414125FF42DAA57A1C6AF16C1287
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
Manifest number:          082B
Signing time:             Tue 11 Nov 2025 01:01:05 +0000
Manifest this update:     Tue 11 Nov 2025 01:01:05 +0000
Manifest next update:     Wed 12 Nov 2025 01:01:05 +0000
Files and hashes:         1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: KWdVKRaS0fNZJRS9upeaCZ23/HQsanQDA8YJBzCxYho=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 01:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:70:6e:41:41:25:ff:42:da:a5:7a:1c:6a:f1:6c:12:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac
        Validity
            Not Before: Nov 11 01:01:05 2025 GMT
            Not After : Nov 12 01:01:05 2025 GMT
        Subject: CN=83552e937857a26b2224e3bb1fb56660d41f8aac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:68:08:67:eb:03:ec:17:45:f3:c7:6d:66:25:
                    ed:a3:7a:49:9f:e3:d3:bd:f9:7e:39:d3:02:ec:08:
                    35:70:cd:19:4d:e6:f9:95:15:ce:c4:f8:5d:15:3a:
                    08:95:af:29:6e:ee:3e:57:b4:1d:36:c4:f8:e8:02:
                    da:bb:3a:84:0c:4f:32:21:11:eb:20:b9:9c:a6:3b:
                    4d:00:2e:a8:67:84:1d:75:8e:8c:8a:be:22:1d:7d:
                    32:c1:4e:d2:3d:05:9d:07:62:d7:6a:6c:cb:fa:c1:
                    e4:f0:aa:f2:d6:80:ca:14:54:c0:c3:97:44:fb:35:
                    30:bb:b1:0c:39:fe:4e:05:1e:b7:e8:8c:5a:69:88:
                    9a:f4:e3:a2:0e:24:21:e7:82:25:fb:7d:37:9d:6a:
                    18:51:d9:10:a0:2f:1d:96:59:b3:fe:16:3a:31:2d:
                    ad:e1:96:8f:4f:4c:f4:cb:df:9d:d4:de:61:fb:f4:
                    a3:03:1b:59:f0:82:49:ca:cb:cc:b4:20:c6:b8:f0:
                    6f:16:cc:8e:ee:3a:b9:ec:3a:68:15:ad:ab:e5:e5:
                    a4:dd:80:c2:83:4f:4f:43:af:0f:9c:e6:5d:c5:52:
                    4f:95:ad:5a:91:4b:82:c4:13:29:ab:1c:cb:43:9e:
                    58:b2:94:2b:be:58:fa:a1:03:4b:13:9b:9f:46:3b:
                    90:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:55:2E:93:78:57:A2:6B:22:24:E3:BB:1F:B5:66:60:D4:1F:8A:AC
            X509v3 Authority Key Identifier:
                keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:14:ef:17:a1:3e:41:2c:79:41:e0:1f:e5:90:2c:f9:37:19:
         aa:b5:0c:44:f5:c6:85:0a:c9:c3:c6:ec:c3:e7:46:c1:d8:b8:
         6a:6d:35:60:a8:56:42:96:22:58:a7:5a:52:c9:92:3e:32:f3:
         7a:df:03:3f:a6:4b:c2:f8:77:4b:78:35:d9:71:9e:76:13:0a:
         a7:25:a9:36:ad:fc:2e:5c:f3:7e:6f:41:be:e3:5a:cb:ce:98:
         87:4a:aa:bd:60:c7:b2:12:bc:23:36:df:fd:5d:2e:d8:c7:0d:
         ea:cf:2d:8b:4b:6c:05:da:07:21:09:e4:91:44:2c:32:ec:5e:
         79:4e:14:b7:c5:1f:a1:5b:c6:1c:34:1f:8b:51:b2:d7:71:28:
         4a:73:bb:32:19:51:9a:a5:4c:94:5a:41:82:79:dd:ea:37:2e:
         e5:3d:04:a8:ee:c9:62:7b:7a:14:6a:78:41:42:a9:ab:96:b5:
         6e:fc:a0:59:d0:37:2c:54:74:5f:c3:be:e5:60:9c:4b:9a:e0:
         69:79:17:cd:da:a0:a2:14:d9:94:27:a7:08:56:c6:8d:d7:ed:
         77:71:54:63:f2:67:81:ce:00:c6:c9:c7:64:10:a1:dc:84:33:
         5b:97:8d:3e:fe:a0:65:61:70:e7:a5:d4:f9:51:28:11:b8:d9:
         61:ef:d3:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----