Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
File:                     dgynIUsW9YyV1i3vAFkVhtvSPKo.mft (raw, json)
Hash identifier:          8lcq1EYscVdAwAnHWCoFs/st2Z5r3yvE23Q46zk7o14=
Subject key identifier:   E2:D8:1C:BD:74:9E:A2:9A:87:C5:81:63:EA:77:BB:54:D6:E9:47:93
Authority key identifier: 76:0C:A7:21:4B:16:F5:8C:95:D6:2D:EF:00:59:15:86:DB:D2:3C:AA
Certificate issuer:       /CN=760ca7214b16f58c95d62def00591586dbd23caa
Certificate serial:       019921B1CB951017C662D9FD9B946A88BA05
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
Manifest number:          08E3
Signing time:             Sun 07 Sep 2025 01:02:04 +0000
Manifest this update:     Sun 07 Sep 2025 01:02:04 +0000
Manifest next update:     Mon 08 Sep 2025 01:02:04 +0000
Files and hashes:         1: dgynIUsW9YyV1i3vAFkVhtvSPKo.crl (hash: tPRgZG3dz+ifzXmrVp0gMNd+P9A9jiidN4XY7IHcmig=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:02:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b1:cb:95:10:17:c6:62:d9:fd:9b:94:6a:88:ba:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=760ca7214b16f58c95d62def00591586dbd23caa
        Validity
            Not Before: Sep  7 01:02:04 2025 GMT
            Not After : Sep  8 01:02:04 2025 GMT
        Subject: CN=e2d81cbd749ea29a87c58163ea77bb54d6e94793
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:e2:97:cf:eb:3f:ac:61:5c:fe:58:58:5e:70:
                    08:0e:43:8e:74:30:a0:e6:80:02:37:4c:e5:5f:14:
                    2d:fe:cf:4d:64:1d:44:76:10:58:e8:91:cc:17:61:
                    8f:1d:bc:51:ca:df:af:ee:b7:95:bf:c6:0b:bd:5b:
                    cd:59:36:cf:83:a3:c8:8c:b6:05:dc:f4:a4:b2:19:
                    bb:c2:25:90:e6:c4:04:41:8f:ba:b7:62:ef:29:36:
                    97:3a:c9:28:90:70:1c:4b:2e:fe:11:51:3e:da:c2:
                    d5:94:7d:7e:8e:ad:91:e9:9b:53:3b:a6:86:33:59:
                    20:17:47:b1:13:57:c6:04:6a:ce:14:7b:f1:af:13:
                    81:2b:57:0c:c4:ae:23:50:cd:46:11:7f:04:47:91:
                    b4:8f:4c:1d:7d:83:63:80:3a:9a:95:cc:0c:6b:f4:
                    1e:8b:8d:c8:de:ef:ed:79:b6:46:d3:df:e7:0f:28:
                    0b:6b:8c:c1:0f:e6:23:c1:96:87:68:78:fc:aa:57:
                    b8:0f:03:7b:6b:37:20:81:92:60:50:cd:9e:dd:44:
                    e7:b7:55:9b:34:5e:3b:2a:d2:f7:8b:f8:00:7b:4c:
                    ac:32:1a:6d:02:81:4e:ff:64:0c:fb:ba:52:1b:76:
                    fb:6f:04:fa:33:a4:3c:b9:e6:67:47:aa:97:6a:be:
                    c3:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:D8:1C:BD:74:9E:A2:9A:87:C5:81:63:EA:77:BB:54:D6:E9:47:93
            X509v3 Authority Key Identifier:
                keyid:76:0C:A7:21:4B:16:F5:8C:95:D6:2D:EF:00:59:15:86:DB:D2:3C:AA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:e9:42:fd:55:1d:45:49:f8:7e:f9:dc:d5:be:b9:56:73:2e:
         ba:30:79:f1:8e:f6:20:9d:b2:d9:7c:be:0b:ad:34:b2:e2:4f:
         6f:0d:0f:56:f1:e5:0f:e4:7d:03:9a:a5:03:69:e6:b0:f4:3b:
         66:ab:f6:3b:a9:61:85:3d:b7:d3:88:75:df:e9:ee:33:43:09:
         f9:5a:60:e9:5b:18:d5:03:98:43:b3:fd:03:09:a2:5b:c2:6b:
         4b:4b:3f:1b:5e:bd:63:9a:57:3b:97:eb:63:4a:5e:98:ac:28:
         a5:1f:07:87:e1:3f:a8:c7:f5:03:22:7d:e2:d1:96:db:b0:ef:
         f6:cb:64:db:58:98:b8:46:24:20:61:00:18:98:21:62:b3:26:
         36:c2:f8:ee:83:e9:15:cf:2f:a5:ed:c1:79:37:63:2a:51:bf:
         5b:25:82:7c:82:8e:b0:1a:b9:7e:50:09:62:3d:23:ec:30:f8:
         45:46:bf:f7:8b:9d:34:cb:0e:0a:6f:19:2a:17:1a:a0:5b:2f:
         9a:0c:be:e2:12:13:13:35:ee:07:fc:56:53:ac:cd:6b:da:6b:
         06:1b:99:b4:af:db:0e:3f:4d:3a:01:5f:e8:45:7e:54:e0:1d:
         54:e7:de:ef:16:d8:ab:4e:9e:2c:e0:4f:56:1c:e9:3c:40:a4:
         f5:19:ce:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----