Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
File:                     b27JJY79ACkhePqBwjzXfAKhoRA.mft (raw, json)
Hash identifier:          ifmjs4DJ5tSlk0QcpcFWxOhVCJl7ho9bMLGWZaHlQko=
Subject key identifier:   6A:4E:99:72:65:0A:4D:01:87:4F:AD:BE:A3:A1:CC:36:30:E7:C8:65
Authority key identifier: 6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10
Certificate issuer:       /CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
Certificate serial:       0199221EBE5EF0CAC24B9CB04A3F12C50B29
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
Manifest number:          0CF0
Signing time:             Sun 07 Sep 2025 03:01:03 +0000
Manifest this update:     Sun 07 Sep 2025 03:01:03 +0000
Manifest next update:     Mon 08 Sep 2025 03:01:03 +0000
Files and hashes:         1: b27JJY79ACkhePqBwjzXfAKhoRA.crl (hash: fawfRtSpEjcbhNjZwsDIrdGYO6twreKAPAb0njncHck=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 03:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:1e:be:5e:f0:ca:c2:4b:9c:b0:4a:3f:12:c5:0b:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
        Validity
            Not Before: Sep  7 03:01:03 2025 GMT
            Not After : Sep  8 03:01:03 2025 GMT
        Subject: CN=6a4e9972650a4d01874fadbea3a1cc3630e7c865
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:b0:2b:51:74:f5:d9:dc:6f:6d:b6:6f:35:c4:
                    33:c1:38:48:ca:24:3a:12:6b:12:c5:95:27:39:b3:
                    45:26:98:09:6f:1a:41:ed:bc:ac:eb:3f:b5:1e:18:
                    a9:a1:4e:44:32:af:2b:c2:84:ab:9c:86:c3:18:e9:
                    34:71:b0:e8:43:15:b1:73:0b:0d:a8:f2:9f:cc:81:
                    ac:b8:a0:6d:45:c5:5c:b7:08:52:e2:09:ab:91:88:
                    8b:ad:6d:69:3d:ac:86:93:ef:27:32:09:c7:b8:db:
                    ec:8f:4b:70:44:8b:95:8e:a0:39:49:38:a3:72:57:
                    1b:4a:3f:32:8a:b0:54:d8:7f:8c:a3:9e:a2:cb:84:
                    7a:9c:86:3c:5f:e0:64:46:3c:ec:1d:a1:a8:f4:18:
                    95:ce:d2:f1:38:44:7a:bc:b1:8b:77:04:69:37:16:
                    f9:6f:42:cd:b4:0b:37:5d:b4:f8:db:81:a9:42:0e:
                    cb:58:ae:ab:32:ef:19:c5:bf:13:1b:e2:44:5d:64:
                    c6:34:da:c7:f6:01:13:f0:7f:8f:8c:7a:cf:14:5a:
                    a1:ef:fb:09:db:86:7a:76:ec:b2:3c:cf:b2:6f:af:
                    a1:f8:fb:c2:e1:9f:1c:df:55:52:60:f8:3a:4e:9c:
                    f6:e8:f2:d3:3d:fe:a8:0f:4f:2a:f5:28:b1:0a:f7:
                    9b:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:4E:99:72:65:0A:4D:01:87:4F:AD:BE:A3:A1:CC:36:30:E7:C8:65
            X509v3 Authority Key Identifier:
                keyid:6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:b7:65:3c:b5:c3:fd:39:8a:c0:93:72:90:85:87:52:43:27:
         c6:96:23:eb:d5:77:aa:2d:47:5f:5f:0b:c6:21:26:3c:3d:cb:
         f9:9a:24:06:6a:96:a8:5b:61:b5:ab:ad:d4:de:ae:25:5d:bb:
         ce:57:22:1e:9f:27:b9:94:f1:92:83:04:73:92:7d:9c:f1:4d:
         93:ad:37:08:cd:93:ae:c3:b6:2e:d3:c5:89:c2:1f:44:5b:0d:
         4a:fc:e5:34:be:bd:53:11:83:00:05:99:ea:f8:d5:7f:ec:d1:
         43:54:8c:eb:2e:5e:81:00:be:d2:f4:fc:0c:08:60:07:34:65:
         17:3c:50:60:68:aa:81:19:26:3c:44:cd:3f:cc:93:b8:82:ec:
         ce:5a:d9:ac:f5:94:79:a5:09:e0:4d:ee:83:49:c2:de:cc:97:
         07:c8:94:2c:f5:0d:58:63:cf:9a:28:d4:75:07:2f:68:16:19:
         85:6b:57:fb:68:ba:49:1b:7d:ee:ac:5e:75:1f:97:e9:25:1a:
         b6:e9:55:9b:6a:5f:9d:c5:3f:b8:1d:1f:1e:67:ae:31:88:02:
         b5:af:08:11:b6:14:f4:a2:3d:cc:7f:56:92:53:f6:3b:63:de:
         ec:57:ec:4d:ed:d9:2d:15:a2:88:08:50:86:b4:f1:2b:5f:c0:
         11:d9:0f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----