Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
File:                     71j4Vyvdd9mBQRGA4u-aioAsdqw.mft (raw, json)
Hash identifier:          RXTho9e85BrZCg5okThqwcKB7/2N2zA88YkCHF2KwzU=
Subject key identifier:   53:60:56:B3:53:EA:6B:CA:F2:00:77:16:5E:8C:76:F9:F8:6C:40:4C
Authority key identifier: EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC
Certificate issuer:       /CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
Certificate serial:       019922FA17733DCE118BF58CA911A87DD4A2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
Manifest number:          01ED
Signing time:             Sun 07 Sep 2025 07:00:39 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:39 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:39 +0000
Files and hashes:         1: 71j4Vyvdd9mBQRGA4u-aioAsdqw.crl (hash: vXkjSk1RcfHOai1YJd7Dy8/RDBO0IOK7jYl6JLSIN1w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:17:73:3d:ce:11:8b:f5:8c:a9:11:a8:7d:d4:a2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
        Validity
            Not Before: Sep  7 07:00:39 2025 GMT
            Not After : Sep  8 07:00:39 2025 GMT
        Subject: CN=536056b353ea6bcaf20077165e8c76f9f86c404c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:c5:4b:51:8f:2c:bf:e4:02:e4:6c:3b:c5:9e:
                    12:70:c3:20:d8:7c:f5:8c:77:a1:e7:b7:1f:ea:85:
                    93:d1:f7:1f:46:58:a3:cc:01:28:bb:2c:8d:9b:ca:
                    81:ea:e4:6a:e7:d8:1a:49:4b:5b:30:41:53:c7:91:
                    e7:2a:ab:35:55:07:9e:2f:6e:18:d6:e9:3e:6a:22:
                    61:11:93:98:c4:0f:fa:72:ee:b0:21:7a:ae:9a:fe:
                    6e:b3:7d:2c:a8:0c:40:66:36:12:73:15:01:5f:94:
                    83:97:3e:fb:0d:e1:8d:7c:20:37:97:22:42:74:77:
                    2d:e1:54:55:b9:ed:5d:a8:7c:40:b4:e0:2a:1d:8f:
                    2d:99:bd:91:d0:5a:b7:82:64:da:8c:b6:5b:6c:08:
                    3a:f6:4f:a2:2e:08:63:84:0e:ef:5d:f7:27:fd:60:
                    2c:28:66:37:07:4c:5e:05:41:a4:1a:bf:25:7b:2b:
                    63:a8:37:66:99:d7:56:08:5b:a3:b9:73:e0:2d:9c:
                    b8:b2:2a:5f:ca:c4:29:e3:09:fc:c7:e8:4a:0e:22:
                    87:79:c9:21:f9:72:bf:86:f7:48:dd:ab:cb:b6:44:
                    1d:f7:03:9f:e9:e3:e6:98:64:74:63:16:b6:f3:d0:
                    87:6e:66:80:28:9c:94:c5:3a:88:86:89:a8:96:66:
                    f4:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:60:56:B3:53:EA:6B:CA:F2:00:77:16:5E:8C:76:F9:F8:6C:40:4C
            X509v3 Authority Key Identifier:
                keyid:EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:79:f1:a6:c0:26:78:da:ef:ae:84:c5:b7:9a:c7:f4:c4:31:
         cd:65:a9:05:51:ce:af:ed:76:7e:38:a4:4b:b3:15:ac:bd:ea:
         bc:6a:ea:c4:73:06:08:1d:c6:16:a7:4f:93:2d:f1:54:98:98:
         94:03:27:fc:a3:01:f3:c3:7f:22:fd:7f:f2:51:ec:c3:45:96:
         12:56:a2:c2:86:0d:29:22:3b:ac:31:86:fe:60:e4:20:b9:c4:
         0d:4d:ad:fd:66:99:8f:2f:26:3c:20:d7:b5:20:3c:9e:e2:1e:
         1c:ac:27:c8:f0:f8:60:3c:08:c3:35:75:06:e1:13:0e:03:fb:
         c6:05:56:20:b1:73:05:ff:8c:33:b9:1c:9e:2a:58:75:48:ea:
         cc:99:ce:13:ce:55:05:7b:15:37:c7:63:f3:b8:f2:02:b2:7d:
         e0:38:c6:75:bb:3e:2e:1f:7d:2d:f2:64:21:f4:43:72:fc:49:
         63:e8:9a:c5:2d:12:39:92:06:1d:f1:e8:38:13:8e:c1:81:50:
         9a:11:3b:0c:99:53:33:30:e3:da:f3:36:71:3a:be:84:87:8b:
         59:c8:0b:27:89:0c:66:0a:1e:b0:46:4c:f1:58:c0:de:ba:57:
         07:d2:33:46:c3:5e:14:81:98:53:6e:e2:8c:f6:d5:b5:98:c8:
         56:07:58:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----