Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft
File:                     PKE4ItxLDjEIGkhX_QQHDW2svgw.mft (raw, json)
Hash identifier:          pQ7wnqP5/9vsvVNg3gyRwMEQrVciN7V9mS/SnJ/Wd50=
Subject key identifier:   23:49:1E:5A:D0:4E:38:05:50:29:30:F0:25:04:04:9A:12:F1:B9:22
Authority key identifier: 3C:A1:38:22:DC:4B:0E:31:08:1A:48:57:FD:04:07:0D:6D:AC:BE:0C
Certificate issuer:       /CN=3ca13822dc4b0e31081a4857fd04070d6dacbe0c
Certificate serial:       019922FA7ECF318705FC51285CDF14D80431
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PKE4ItxLDjEIGkhX_QQHDW2svgw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft
Manifest number:          166E
Signing time:             Sun 07 Sep 2025 07:01:05 +0000
Manifest this update:     Sun 07 Sep 2025 07:01:05 +0000
Manifest next update:     Mon 08 Sep 2025 07:01:05 +0000
Files and hashes:         1: PKE4ItxLDjEIGkhX_QQHDW2svgw.crl (hash: TQZx4vG6CsNctwac1aV8G/J8jrUx/2M1Ajl+eG8qlhA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PKE4ItxLDjEIGkhX_QQHDW2svgw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:7e:cf:31:87:05:fc:51:28:5c:df:14:d8:04:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3ca13822dc4b0e31081a4857fd04070d6dacbe0c
        Validity
            Not Before: Sep  7 07:01:05 2025 GMT
            Not After : Sep  8 07:01:05 2025 GMT
        Subject: CN=23491e5ad04e3805502930f02504049a12f1b922
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:55:f8:69:eb:6e:4a:42:f3:9f:6a:da:ed:65:
                    81:2c:e0:0b:5e:d5:59:18:7a:d9:dc:a4:cf:3b:10:
                    ba:54:22:23:45:c1:54:24:4c:07:9e:88:40:35:fe:
                    97:94:2c:9a:50:be:6f:3e:87:f2:7c:21:b1:0a:22:
                    9c:ee:9c:da:2f:d2:8b:93:82:62:56:f6:31:91:61:
                    25:5f:85:65:df:a2:bd:ed:09:db:2a:ce:2b:cb:2a:
                    aa:26:d7:be:e1:9a:e8:62:89:cf:d7:36:f8:70:53:
                    28:73:5b:ff:f1:a1:d7:ac:22:1c:49:25:91:60:af:
                    d1:97:21:f7:c8:37:45:7d:c9:80:1b:31:00:4a:54:
                    68:d2:8f:55:50:05:f1:11:47:e2:71:09:7b:dc:b3:
                    28:0d:e0:2a:46:19:f9:94:00:d9:85:11:3f:e7:50:
                    0d:b6:b5:03:51:20:8c:1a:d6:41:1e:b1:61:82:5c:
                    57:b0:47:5e:48:c5:3d:5d:53:d5:eb:9d:7e:0f:d6:
                    d6:f8:e9:35:10:db:fd:73:15:26:7c:56:fd:7d:4e:
                    a8:20:98:fd:75:e6:95:ff:ec:15:2b:55:b6:db:0f:
                    56:2c:88:2c:ae:04:99:56:71:f7:22:bb:cf:fa:c8:
                    f8:d6:39:96:70:53:f2:86:21:85:4d:1b:f0:f3:95:
                    58:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:49:1E:5A:D0:4E:38:05:50:29:30:F0:25:04:04:9A:12:F1:B9:22
            X509v3 Authority Key Identifier:
                keyid:3C:A1:38:22:DC:4B:0E:31:08:1A:48:57:FD:04:07:0D:6D:AC:BE:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKE4ItxLDjEIGkhX_QQHDW2svgw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:38:f7:53:42:5e:89:6e:2f:5e:6b:06:92:d2:95:ab:24:5b:
         8f:50:13:10:87:ae:c5:dc:33:6a:dd:39:15:48:e3:d6:25:cb:
         54:e0:fc:10:ba:9e:8c:85:3c:d9:4d:71:2e:23:a0:e4:4b:dc:
         fd:dd:89:53:38:58:b0:b8:53:ca:59:92:49:d5:5c:6a:a0:6a:
         68:f1:cb:3c:f1:99:a0:c6:2e:1c:d9:d9:25:ff:6b:a3:86:5f:
         37:c1:d2:b7:90:c8:b9:0c:0b:83:45:38:c3:f6:20:3b:37:6d:
         5e:80:eb:e0:24:c2:8d:f0:96:f9:1d:16:30:f2:b3:99:4e:c5:
         29:9d:47:49:cb:4d:89:6b:61:a8:54:84:e6:c3:0f:8f:65:64:
         8d:b3:9e:ac:9a:0c:1f:df:ae:42:42:36:54:e1:34:31:08:0a:
         5c:d0:d4:0b:a1:eb:28:5e:19:75:9a:23:44:8c:f7:67:9c:7e:
         2c:00:15:43:5c:8e:f2:d0:70:c7:ac:88:67:56:eb:3c:f1:20:
         dc:2f:29:52:90:6f:36:61:1d:95:d8:8a:f0:f5:1f:7c:ed:02:
         c5:cc:9d:2c:2d:64:87:87:54:96:d7:ce:e0:2e:ec:13:e9:90:
         2a:35:f3:c2:b2:38:df:b0:ea:bf:63:30:57:2c:a8:b1:84:d0:
         1f:7f:b0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----