Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft
File:                     VmczL0gJQe01gDssBLhPNyjTkpc.mft (raw, json)
Hash identifier:          lHeu0Q2V31vN3fXU9CHGhO6TQzK5LpY+Pp78qsHXVHQ=
Subject key identifier:   AC:67:C0:AD:9D:17:33:7F:1B:CB:59:61:36:1A:04:D6:D3:34:3D:7F
Authority key identifier: 56:67:33:2F:48:09:41:ED:35:80:3B:2C:04:B8:4F:37:28:D3:92:97
Certificate issuer:       /CN=5667332f480941ed35803b2c04b84f3728d39297
Certificate serial:       019922557CA89220C82C31A0C15E1D0618CC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft
Manifest number:          62
Signing time:             Sun 07 Sep 2025 04:00:51 +0000
Manifest this update:     Sun 07 Sep 2025 04:00:51 +0000
Manifest next update:     Mon 08 Sep 2025 04:00:51 +0000
Files and hashes:         1: VmczL0gJQe01gDssBLhPNyjTkpc.crl (hash: JSMVEiLf43EsfQXZzk7M2jT6C5nTonypv++2zn+miDU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:7c:a8:92:20:c8:2c:31:a0:c1:5e:1d:06:18:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5667332f480941ed35803b2c04b84f3728d39297
        Validity
            Not Before: Sep  7 04:00:51 2025 GMT
            Not After : Sep  8 04:00:51 2025 GMT
        Subject: CN=ac67c0ad9d17337f1bcb5961361a04d6d3343d7f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c1:e3:96:54:59:17:ac:e1:ae:ae:01:ae:75:
                    46:7d:39:3f:d7:9f:0d:b7:a9:08:3a:21:27:95:ca:
                    d5:c1:ed:bf:3e:c6:c8:91:f3:bb:70:14:ba:b1:70:
                    68:ce:6f:7f:22:4a:8f:95:e7:17:4d:e3:66:78:72:
                    81:44:e5:0d:52:15:36:45:ee:7d:5a:f3:72:c4:d2:
                    85:56:30:48:30:1c:ab:b1:2f:22:35:8c:69:33:03:
                    d4:a3:08:87:7b:87:81:cf:b1:f2:6b:f4:e3:b6:e5:
                    de:ff:ea:bd:55:89:6c:b4:5a:61:96:35:e0:69:69:
                    21:d6:3e:ac:8b:b7:db:82:29:31:c3:10:38:67:c2:
                    e7:c6:de:03:16:72:7b:3e:5f:dc:37:9f:58:7b:c1:
                    1b:4c:47:ff:43:a6:01:f0:f9:8f:65:20:96:a1:83:
                    dd:47:d1:42:c8:77:d2:e1:b2:92:46:a2:82:ce:10:
                    18:6e:39:a4:66:46:69:4b:eb:dc:70:fa:49:16:e3:
                    6f:17:b4:de:ee:3e:af:72:2d:44:26:68:c0:c8:26:
                    21:31:d6:73:e9:ed:54:38:bf:f2:65:a9:a6:3b:50:
                    19:a5:fb:62:5e:ed:40:29:c0:2a:18:b8:6f:b6:df:
                    3a:46:d9:8f:0f:9f:7d:f9:6c:b6:77:83:82:be:36:
                    ba:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:67:C0:AD:9D:17:33:7F:1B:CB:59:61:36:1A:04:D6:D3:34:3D:7F
            X509v3 Authority Key Identifier:
                keyid:56:67:33:2F:48:09:41:ED:35:80:3B:2C:04:B8:4F:37:28:D3:92:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:68:4f:01:05:d7:9f:3b:c2:cd:01:7b:a4:b5:b3:72:9f:04:
         ac:e4:59:ac:bf:eb:6b:bf:38:96:51:5c:5a:79:6f:35:17:3d:
         7f:ce:82:73:52:33:92:37:fb:58:95:f8:bc:cd:02:5c:57:ab:
         a6:fc:8a:45:d0:5e:57:4a:0a:5b:f7:5f:0a:58:31:29:b1:74:
         fd:a5:b3:21:1b:65:83:3e:c4:d7:5a:29:32:55:10:45:0a:c2:
         71:2b:58:af:44:66:11:8b:2b:4b:f1:e8:3c:9f:6f:05:9a:38:
         7c:5c:dc:d3:4f:06:e9:18:12:f7:c3:e0:64:e9:e5:d5:33:65:
         c4:b0:94:5b:88:82:c9:c4:77:60:be:06:12:e4:d5:c1:7c:31:
         01:18:e2:21:ee:cb:91:67:a6:c8:e5:e4:8c:f6:48:74:b2:6c:
         41:ac:4d:ad:62:51:36:fe:6f:a6:ab:c5:a4:bc:38:06:94:80:
         d7:0f:38:d5:e6:70:8f:0c:2b:d4:88:79:8b:e0:06:11:6d:30:
         c1:88:df:13:91:5f:fe:b6:c8:c6:67:19:e1:e7:3d:76:b0:f9:
         ee:e0:6f:c6:fa:43:59:ff:6d:19:a4:89:f2:31:c9:3a:01:f8:
         a0:66:e4:e1:21:d5:f8:db:6d:bc:d9:b2:43:ad:3e:e4:87:86:
         bb:cb:8d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----