Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File:                     A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier:          kRnjPtUDzHB2KpaCPZlgCde8gE2t1iaqpmeWScHQAoA=
Subject key identifier:   E6:EE:F0:F9:E5:6A:B2:7C:CC:AB:9C:58:AE:ED:94:42:AF:F0:4C:54
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer:       /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial:       019921B23ACC158927A29FA3EE35E8771600
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number:          1301
Signing time:             Sun 07 Sep 2025 01:02:32 +0000
Manifest this update:     Sun 07 Sep 2025 01:02:32 +0000
Manifest next update:     Mon 08 Sep 2025 01:02:32 +0000
Files and hashes:         1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: XugWjVJrAyLKX1pH8XhXYf1sjfyPaGdklvdAxnjd7BU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:02:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b2:3a:cc:15:89:27:a2:9f:a3:ee:35:e8:77:16:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=036847b297235faf071686fed2c1e910bf600486
        Validity
            Not Before: Sep  7 01:02:32 2025 GMT
            Not After : Sep  8 01:02:32 2025 GMT
        Subject: CN=e6eef0f9e56ab27cccab9c58aeed9442aff04c54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:5b:71:54:7c:6d:71:db:0b:61:b9:df:2f:67:
                    86:8d:39:0c:d8:7b:43:22:25:88:f1:ea:92:43:79:
                    2a:a6:5a:b9:3c:97:5e:f3:6d:46:4b:e6:cf:93:e9:
                    80:7e:fc:4d:1d:da:ec:74:c8:75:55:c4:d9:05:84:
                    f5:3d:11:f4:38:46:92:30:19:f0:f6:22:7f:8b:49:
                    a7:bb:4a:d8:5f:dc:e9:b3:76:44:e9:66:cf:2d:58:
                    6e:35:71:72:f0:3e:ac:28:ee:e2:df:80:47:59:04:
                    b0:67:1a:df:46:a4:08:72:f5:60:0f:cf:80:48:2d:
                    71:df:35:17:84:2c:62:71:78:19:99:5d:3a:c4:1a:
                    82:4e:45:3c:57:0b:00:72:89:cf:47:ac:84:96:59:
                    db:0f:59:e2:25:07:4c:b1:f7:37:0e:61:73:e0:60:
                    13:7d:e0:65:31:3b:31:e7:a7:7b:30:b8:11:57:2b:
                    95:e8:58:a9:c4:7d:00:79:c6:e4:ac:31:57:9c:ae:
                    41:ea:0e:d3:4f:53:14:d5:43:c4:8d:fe:74:78:db:
                    2a:75:11:6c:c2:24:03:c8:5e:38:0d:54:2f:00:cc:
                    31:eb:13:fe:37:f0:bc:bc:28:fc:04:f8:d3:89:30:
                    87:89:c0:19:70:4a:eb:7d:10:d7:b8:70:2c:e3:8d:
                    c7:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:EE:F0:F9:E5:6A:B2:7C:CC:AB:9C:58:AE:ED:94:42:AF:F0:4C:54
            X509v3 Authority Key Identifier:
                keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:be:44:3c:99:2d:3a:61:f0:d1:26:45:f3:7f:0d:0d:02:81:
         de:09:7c:a1:6e:4e:36:bc:81:ea:82:f9:42:14:0a:20:c4:71:
         e2:3c:ae:78:04:45:d2:28:db:fb:f5:cd:79:7d:27:1a:bd:fc:
         a6:08:c2:9d:39:1a:f6:4d:2d:eb:ff:80:a3:42:63:f7:3e:46:
         42:f7:d9:f3:79:04:6a:d7:ab:8a:91:f3:51:b4:6a:a9:a1:73:
         ec:b5:6b:58:02:43:c3:b8:a1:f7:00:f7:7e:34:65:fe:03:c7:
         ce:b5:07:b7:be:a9:ca:85:db:49:36:b6:ac:a8:46:5a:46:b7:
         4b:f9:82:db:fe:53:2b:83:aa:af:5e:90:6b:44:5f:a4:ef:54:
         8c:3a:6b:02:66:d4:24:fa:0b:50:4f:f8:2f:12:43:90:21:c7:
         2d:f4:6e:ca:05:6a:93:42:60:83:d9:1f:f2:36:3b:10:fc:f4:
         41:2c:28:e3:0b:55:d3:e9:0c:f3:14:17:52:51:da:fc:07:c5:
         e3:7b:28:97:fe:cb:7f:83:d6:b6:7c:d8:d2:04:d9:c9:b6:1c:
         f4:89:bc:f1:88:0a:8a:fd:95:bc:89:4c:f2:14:cf:c7:50:55:
         a7:af:14:12:9c:15:dc:80:9d:b9:92:2f:2d:fa:71:5f:0c:3c:
         c2:9f:a8:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----