Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
File:                     _VnTVh_4rdtfGww2o90laLdMpRU.mft (raw, json)
Hash identifier:          /lv+wy8J7sZHpcLdHHRIV0ycl9S+Xy1iL9NW+rkuDaY=
Subject key identifier:   A9:FD:38:DF:04:57:B9:15:B9:B3:BC:47:61:6B:18:B3:13:24:DB:8B
Authority key identifier: FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15
Certificate issuer:       /CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515
Certificate serial:       01992255509B515C7C85CCACCE419D6C7E92
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
Manifest number:          0B54
Signing time:             Sun 07 Sep 2025 04:00:40 +0000
Manifest this update:     Sun 07 Sep 2025 04:00:40 +0000
Manifest next update:     Mon 08 Sep 2025 04:00:40 +0000
Files and hashes:         1: _VnTVh_4rdtfGww2o90laLdMpRU.crl (hash: AnmWdGaOg+FhWBfHBqsyP18GzdWtFjFVcvEb8ooe5PY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:50:9b:51:5c:7c:85:cc:ac:ce:41:9d:6c:7e:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515
        Validity
            Not Before: Sep  7 04:00:40 2025 GMT
            Not After : Sep  8 04:00:40 2025 GMT
        Subject: CN=a9fd38df0457b915b9b3bc47616b18b31324db8b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:2e:b9:b2:46:18:2e:d3:c1:8e:a4:17:34:40:
                    55:0e:90:f4:10:6c:6b:27:68:0a:cd:45:22:9b:36:
                    ca:18:7b:eb:33:e3:52:84:1b:ba:51:84:eb:80:19:
                    2f:ca:74:a8:af:70:89:c6:02:d6:f9:98:1b:38:39:
                    a7:7c:34:96:9d:c5:b5:b1:39:1c:bf:0e:ec:fe:ca:
                    1a:52:57:3f:1e:81:18:4b:8d:4e:c0:bb:1a:07:fd:
                    79:c6:b8:2b:6b:97:55:bf:f0:28:d3:29:80:6a:b4:
                    ea:bc:74:48:a7:bc:bd:07:ea:2d:c0:73:fc:de:46:
                    0b:02:59:0c:83:43:21:8e:66:3e:19:5b:b4:8f:4d:
                    ba:00:af:75:55:57:9e:5d:e9:23:08:e7:f3:af:a2:
                    65:ea:18:17:e8:0c:98:f2:99:04:51:ff:c1:ab:52:
                    14:8d:5d:5c:9c:0f:3c:e5:1b:6d:74:53:37:78:4c:
                    8c:e1:b7:40:e7:c1:c4:1d:fe:ad:45:2b:99:aa:0f:
                    ee:d4:96:b0:c7:75:5b:a7:1e:0b:71:0f:f5:8f:83:
                    81:31:3f:9d:99:6c:f5:60:c9:78:fe:7c:31:9d:48:
                    45:09:1b:34:ba:28:a6:30:12:89:ad:28:80:6b:bc:
                    5d:37:92:bd:d9:f8:0d:bd:5e:ca:34:66:0f:5e:7b:
                    2f:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:FD:38:DF:04:57:B9:15:B9:B3:BC:47:61:6B:18:B3:13:24:DB:8B
            X509v3 Authority Key Identifier:
                keyid:FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:e2:e4:06:9a:33:fe:e9:9c:ed:6e:2c:07:c8:1b:9b:e3:74:
         73:7f:da:57:37:76:b5:de:8b:9f:fa:4b:2b:df:1c:37:5e:e3:
         62:4b:32:6b:0f:c4:00:90:94:d0:31:3d:62:4e:c3:1c:88:28:
         48:ec:a0:bf:a9:73:28:cb:bd:da:94:4a:d9:b6:d0:98:94:dc:
         3b:a5:c3:a2:e1:47:3a:37:53:f9:87:d9:b6:d5:f1:42:af:3c:
         3c:e7:0a:27:a8:7b:a0:b8:a4:de:a6:96:e1:83:6b:9f:74:d0:
         6e:be:6b:c4:d9:dc:a6:1a:16:ef:81:ac:60:53:94:10:80:06:
         71:af:19:a5:5f:9d:f4:93:18:2a:66:ff:5a:f3:e9:54:bd:86:
         93:f6:53:d2:2c:7f:aa:50:da:f5:40:cc:4a:5a:0e:b8:e7:c3:
         17:72:5b:42:cf:85:62:ce:0f:66:04:66:95:c3:c5:7a:0a:a4:
         d2:db:66:be:da:91:b2:d0:b1:ec:90:8a:df:d7:f0:4b:83:16:
         7d:1c:ad:d7:a6:52:8b:00:1a:76:70:da:86:15:87:de:9e:db:
         42:b8:0e:49:44:bb:50:69:01:2c:cc:b6:8a:9e:30:97:aa:3f:
         14:ca:45:65:fa:88:1f:7e:bc:ca:3c:9e:26:75:ff:07:b5:d0:
         18:52:77:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----