Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
File:                     jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft (raw, json)
Hash identifier:          WYaGHlv2IDg68CR6kwZtr4rO7nnMJcX8rkO+PO2FPJA=
Subject key identifier:   5D:CA:00:6E:19:70:A9:3B:27:59:20:F8:FC:EE:65:A0:71:19:24:B8
Authority key identifier: 8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F
Certificate issuer:       /CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
Certificate serial:       0199180AD7F3BE157B8F5487F787CBA67306
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
Manifest number:          0A5D
Signing time:             Fri 05 Sep 2025 04:03:07 +0000
Manifest this update:     Fri 05 Sep 2025 04:03:07 +0000
Manifest next update:     Sat 06 Sep 2025 04:03:07 +0000
Files and hashes:         1: jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl (hash: 19Inke1hvEiz3LBeJvgyhpZRS4A30X8cvdZORC2TE3o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:18:0a:d7:f3:be:15:7b:8f:54:87:f7:87:cb:a6:73:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
        Validity
            Not Before: Sep  5 04:03:07 2025 GMT
            Not After : Sep  6 04:03:07 2025 GMT
        Subject: CN=5dca006e1970a93b275920f8fcee65a0711924b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:2f:62:cb:41:e3:1f:a7:08:10:63:40:f1:5d:
                    62:28:01:7e:ff:de:f4:48:f9:98:1f:dc:31:21:56:
                    06:2b:68:23:7b:c1:33:73:b2:ee:30:5b:02:6d:55:
                    97:ba:97:bd:a0:a9:b5:ff:85:4e:cf:8c:99:9e:e8:
                    71:13:70:e8:45:b1:c7:6b:ad:34:ee:6d:b7:77:91:
                    a4:82:c3:d0:e1:04:f3:c8:fb:69:a6:d7:eb:a0:f1:
                    3d:50:f0:5b:0a:9c:6e:49:a1:40:8b:c2:f9:e6:81:
                    2a:2d:51:03:53:66:36:01:dd:ec:f3:4f:b2:9f:75:
                    f8:87:8e:88:87:09:5e:c3:2b:16:6e:6e:b8:22:ec:
                    36:b3:26:b0:9f:b8:fd:d7:6b:8c:b2:b2:aa:b4:43:
                    36:82:64:17:49:07:19:f9:a5:1e:9a:35:8d:09:53:
                    64:2b:96:e2:56:f1:e2:8c:8e:54:bc:08:f8:c1:84:
                    44:74:7c:b1:45:23:09:0f:79:26:c4:dd:4c:7a:2b:
                    e0:16:2d:5d:06:33:86:a7:b1:ab:59:19:ff:d2:df:
                    65:f3:39:ac:c6:90:2f:79:b6:dc:c6:92:e7:6b:5e:
                    aa:a4:af:c3:62:27:e0:03:4a:26:69:ea:d6:cd:d6:
                    97:5c:0d:9b:7b:c0:ad:8e:9f:b1:fa:ef:da:18:26:
                    02:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:CA:00:6E:19:70:A9:3B:27:59:20:F8:FC:EE:65:A0:71:19:24:B8
            X509v3 Authority Key Identifier:
                keyid:8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:d9:91:e9:45:8f:d7:04:64:b2:d9:54:f8:47:a6:38:0b:f5:
         b2:cf:3b:d3:25:11:be:5d:47:f5:b0:0e:ba:3f:87:7d:e4:44:
         2b:b5:42:d1:7e:0c:38:b4:62:e9:a5:f9:9e:a8:5d:5d:c1:a3:
         fd:41:6a:14:a9:9c:9d:15:e8:fc:68:8f:b1:58:c7:d2:3c:0c:
         7a:c8:21:58:93:cb:be:d4:70:3e:53:10:25:7c:8e:02:05:cf:
         f0:50:d6:d1:68:7d:89:b0:b8:cf:94:3b:ed:87:f6:32:b5:13:
         fe:78:3a:04:d3:30:e2:23:4b:0c:41:7a:e5:7c:28:47:44:ac:
         df:04:22:73:c7:61:b8:b1:45:b6:47:25:47:53:d4:32:3b:47:
         3a:a6:c9:f9:e0:cc:a8:1d:94:98:09:ea:94:61:a3:2a:11:be:
         73:27:d8:64:b8:23:e0:1c:62:96:6f:b3:68:b8:ad:e1:40:35:
         58:06:c5:ad:21:ed:70:61:96:ea:ea:7e:af:37:95:15:58:ee:
         a9:b2:3b:77:f6:99:a3:44:a3:9f:8f:d3:c4:51:25:be:7e:d7:
         fe:a9:85:d9:93:c5:a0:64:ba:e7:cb:5a:a9:d9:44:de:ba:21:
         0c:eb:46:a5:56:a6:81:ea:f1:09:e7:86:be:5b:94:c0:f4:97:
         c9:ac:de:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----