Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
File:                     hJxbptQKtOTjm3tpttLZhEqiSK8.mft (raw, json)
Hash identifier:          fRlYVavuwJkofswmGb2q3liyDKQvGxjB9gr+eqRxgss=
Subject key identifier:   94:CA:33:9F:DC:C3:D3:64:03:1C:40:E1:12:01:EC:74:38:27:30:1B
Authority key identifier: 84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF
Certificate issuer:       /CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af
Certificate serial:       019922FAA410F406908948A85C68CC2A3691
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
Manifest number:          0D51
Signing time:             Sun 07 Sep 2025 07:01:15 +0000
Manifest this update:     Sun 07 Sep 2025 07:01:15 +0000
Manifest next update:     Mon 08 Sep 2025 07:01:15 +0000
Files and hashes:         1: hJxbptQKtOTjm3tpttLZhEqiSK8.crl (hash: TQR4QiCiv+ZQ8Zb5oSRuIDCXveJm+P23miclLX0PRBY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:a4:10:f4:06:90:89:48:a8:5c:68:cc:2a:36:91
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af
        Validity
            Not Before: Sep  7 07:01:15 2025 GMT
            Not After : Sep  8 07:01:15 2025 GMT
        Subject: CN=94ca339fdcc3d364031c40e11201ec743827301b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:fc:65:4f:22:51:33:79:83:57:46:8d:2d:5a:
                    39:e9:13:58:af:d7:74:30:d9:a4:44:30:4b:c4:20:
                    d3:a1:bc:0a:71:84:2a:61:fb:d6:12:42:a7:4f:a4:
                    6f:42:1b:46:dc:c0:15:8f:08:40:10:a1:08:e8:84:
                    3e:6b:16:48:76:3f:f2:5b:2b:17:d6:96:ab:f2:7f:
                    66:3b:9f:70:1f:96:4d:f9:22:47:e2:3a:62:24:0c:
                    18:54:c0:8d:8a:dc:dd:1d:70:71:ac:44:5c:a9:2e:
                    dc:73:f8:0a:b2:5e:78:5a:73:66:c3:1f:11:ca:a9:
                    79:02:5e:e2:22:3d:c5:e7:27:5a:e1:b7:e9:81:61:
                    9b:aa:5f:11:88:f2:12:71:19:24:3b:12:d3:31:d5:
                    f6:50:96:de:c2:87:c7:f6:f2:70:c8:ee:d8:5b:55:
                    38:86:a0:85:ad:38:88:21:f1:82:50:44:69:bc:20:
                    04:94:9d:61:9f:8d:bc:bf:64:ca:8d:91:b3:c3:cb:
                    68:c0:f0:82:b9:db:bf:dd:5b:03:18:29:f7:be:fb:
                    82:70:fd:e3:f7:b2:c3:8a:2f:35:a6:4b:3f:19:99:
                    d4:5f:85:cd:57:f8:65:62:64:ce:81:29:ea:10:2c:
                    bb:a1:d7:7a:c9:b0:ef:73:e3:95:03:e9:0a:87:2e:
                    16:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:CA:33:9F:DC:C3:D3:64:03:1C:40:E1:12:01:EC:74:38:27:30:1B
            X509v3 Authority Key Identifier:
                keyid:84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:6b:90:dd:c6:01:45:71:30:0e:96:70:90:3e:0d:eb:83:5d:
         df:aa:3b:7a:5c:14:61:89:b7:7e:a7:bc:23:2b:83:04:96:a3:
         0b:a1:85:db:a4:de:d8:3a:e1:36:15:15:03:21:f9:9e:ab:e6:
         7b:f3:2d:cc:ad:69:e1:34:42:6e:21:d2:b7:5d:54:dc:c2:56:
         42:d3:18:91:a3:89:81:97:55:a3:c8:28:57:59:2b:00:29:f3:
         b1:0b:b0:7e:af:cb:95:62:98:ca:38:5b:94:98:92:be:1e:2c:
         d6:77:fe:4c:04:fb:73:4f:b1:10:b4:43:ce:bf:79:39:cf:e7:
         83:d6:ef:ec:ad:9a:5d:b9:38:8f:10:c5:e3:72:10:ab:76:1a:
         bf:dc:a8:3a:97:d7:a8:e8:f2:0c:6d:26:16:0f:e5:a2:0d:55:
         c2:36:7d:e9:58:61:7b:46:37:e8:46:b7:e0:f5:73:28:e4:b1:
         94:c9:61:80:aa:d7:83:14:42:5d:17:a5:43:fd:36:da:1d:e1:
         cc:19:99:0e:7c:12:ef:fa:93:58:bb:2d:70:47:26:7c:63:4a:
         77:20:f6:9e:04:86:9a:bc:11:79:59:0d:c8:26:d6:38:3b:18:
         36:4f:cd:4a:05:cb:e5:a4:04:65:46:78:0e:a9:46:0e:db:54:
         c9:b0:bc:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----