Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft
File:                     8p5p65n-wSVjcxHUMFL3kx2P3TI.mft (raw, json)
Hash identifier:          7Zn7ghrSdlB8fkG0acGAXd9eJ2YY6RArsBLtT72H1oA=
Subject key identifier:   93:30:D6:C4:0B:DF:A9:C5:13:5A:C0:EB:12:3B:F8:28:42:6C:A0:5B
Authority key identifier: F2:9E:69:EB:99:FE:C1:25:63:73:11:D4:30:52:F7:93:1D:8F:DD:32
Certificate issuer:       /CN=f29e69eb99fec125637311d43052f7931d8fdd32
Certificate serial:       0199221F4A4D1173D59C44E623447CF846E2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8p5p65n-wSVjcxHUMFL3kx2P3TI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft
Manifest number:          060B
Signing time:             Sun 07 Sep 2025 03:01:39 +0000
Manifest this update:     Sun 07 Sep 2025 03:01:39 +0000
Manifest next update:     Mon 08 Sep 2025 03:01:39 +0000
Files and hashes:         1: 8p5p65n-wSVjcxHUMFL3kx2P3TI.crl (hash: PMlQQArW4dA8zt47LY1Jbyz75kHY0z4wUbhdYTbGny4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8p5p65n-wSVjcxHUMFL3kx2P3TI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 03:01:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:1f:4a:4d:11:73:d5:9c:44:e6:23:44:7c:f8:46:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f29e69eb99fec125637311d43052f7931d8fdd32
        Validity
            Not Before: Sep  7 03:01:39 2025 GMT
            Not After : Sep  8 03:01:39 2025 GMT
        Subject: CN=9330d6c40bdfa9c5135ac0eb123bf828426ca05b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:c7:85:95:ec:9b:e0:f7:0d:16:1b:29:fc:a8:
                    06:93:f3:f4:34:41:f5:a6:32:31:da:c2:64:5f:c2:
                    e5:aa:d0:03:10:1b:87:76:86:94:f3:f9:1d:7d:7a:
                    85:3c:aa:5f:b2:96:25:99:d5:cf:6c:cf:08:ae:28:
                    c0:2a:e4:8c:e9:64:45:bb:1c:64:f8:c0:54:0b:13:
                    b2:4e:d3:be:cd:b3:c9:b0:81:a1:4b:66:bb:63:97:
                    2a:0f:4a:82:1e:f5:ea:5c:e2:3b:b9:d4:6f:39:83:
                    79:b7:e1:d7:2f:8a:5d:f0:6b:13:8a:2a:4f:a2:b7:
                    e4:8f:57:84:03:9f:17:40:b9:35:ad:bf:8a:19:96:
                    23:67:f3:26:79:58:5b:9b:30:4f:db:1c:1e:f4:0e:
                    52:f2:13:64:ef:5b:c9:a1:28:b1:cf:e2:81:89:18:
                    76:e3:8f:53:45:9d:dc:18:06:49:3e:a7:79:34:dd:
                    1e:f5:80:fe:e2:cb:87:ba:4e:73:2e:2e:e1:02:84:
                    35:17:1d:6f:fd:ae:17:d6:94:e4:a7:7b:f4:ed:d8:
                    41:82:62:53:89:0e:7b:10:c9:be:83:a3:73:6c:68:
                    ed:78:81:33:b1:65:db:8a:bf:21:65:15:3d:91:88:
                    5f:a1:a2:77:71:a4:10:6a:9e:9b:30:00:10:16:38:
                    f3:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:30:D6:C4:0B:DF:A9:C5:13:5A:C0:EB:12:3B:F8:28:42:6C:A0:5B
            X509v3 Authority Key Identifier:
                keyid:F2:9E:69:EB:99:FE:C1:25:63:73:11:D4:30:52:F7:93:1D:8F:DD:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p5p65n-wSVjcxHUMFL3kx2P3TI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c826d-93b8-4c3a-a21f-513403e3d820/1/8p5p65n-wSVjcxHUMFL3kx2P3TI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:a6:59:b3:a7:61:14:3a:67:48:17:6d:2a:e3:b7:f5:8e:a0:
         6f:c6:86:b7:55:12:90:55:f5:4e:b1:8b:2c:9e:66:48:ac:1b:
         7d:c4:d6:32:55:23:30:9d:3d:7d:18:6b:38:38:82:b1:08:d0:
         13:4a:42:ff:13:27:8c:c2:16:2a:df:24:0b:f6:e3:61:45:5e:
         b0:8c:bc:66:9d:18:22:73:b6:28:15:08:7b:86:37:d3:0b:ec:
         dd:b7:13:70:4b:31:c0:7d:7f:66:70:d3:70:e1:e4:84:7f:ad:
         a7:9e:cc:f4:f2:e6:7d:62:de:5e:93:05:86:20:ee:47:74:14:
         ef:49:96:c8:09:35:e1:a4:92:f4:ef:8d:b0:4a:b8:65:82:65:
         b5:fd:06:8c:bd:f3:1c:52:36:8c:91:5f:85:38:c9:57:90:04:
         d1:ac:13:9d:7a:2b:5e:4a:79:be:81:b1:92:9d:99:b4:63:5e:
         a6:80:25:6b:f5:26:bb:17:42:f2:be:c5:08:ad:e0:ea:2b:31:
         58:5c:31:56:42:5e:c6:31:44:97:0e:99:54:b3:8d:9e:39:a1:
         7a:e9:30:2a:67:be:05:c3:73:2d:23:76:0d:61:69:56:3b:55:
         5f:b0:41:8e:a5:e6:43:63:af:49:03:ff:75:e8:87:84:c1:6a:
         d8:63:3c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----