Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft
File:                     biw-HNO4VNZu9GxWd-9y0sWjZpc.mft (raw, json)
Hash identifier:          hQm8g8hCjk+KnAbhdH6BHxO8FBDAGsy1cmIalVhVXhk=
Subject key identifier:   70:DE:89:52:B0:0A:A8:60:63:20:80:E2:5A:A9:5F:6A:BB:D2:F6:35
Authority key identifier: 6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97
Certificate issuer:       /CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697
Certificate serial:       019922C35E28E59D5F7A0CB2479AEF8C5BAB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft
Manifest number:          082B
Signing time:             Sun 07 Sep 2025 06:00:52 +0000
Manifest this update:     Sun 07 Sep 2025 06:00:52 +0000
Manifest next update:     Mon 08 Sep 2025 06:00:52 +0000
Files and hashes:         1: biw-HNO4VNZu9GxWd-9y0sWjZpc.crl (hash: SPqhT0AYYi6DOghFlt4MJQm2GLpkDicA0vd6ScZRfJQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:c3:5e:28:e5:9d:5f:7a:0c:b2:47:9a:ef:8c:5b:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697
        Validity
            Not Before: Sep  7 06:00:52 2025 GMT
            Not After : Sep  8 06:00:52 2025 GMT
        Subject: CN=70de8952b00aa860632080e25aa95f6abbd2f635
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:d8:d0:62:66:77:b0:4b:bb:b6:42:c8:31:ba:
                    88:3d:42:07:93:61:f3:04:fa:6f:c7:43:91:2c:b3:
                    14:92:4c:e9:56:56:f9:ad:e1:fe:1c:37:a3:61:e0:
                    a6:e6:22:18:9b:9a:c3:cc:f0:ec:2b:4a:9e:44:d0:
                    d8:18:0c:60:0d:07:b8:63:8d:65:8e:e9:cc:a1:97:
                    18:6a:a3:4c:17:08:72:93:c5:87:08:29:67:99:f0:
                    48:53:33:ca:d8:dc:c8:7f:74:fc:82:d0:c4:03:d9:
                    c2:03:fe:0a:e4:a5:bb:35:6d:bc:93:53:9c:d5:94:
                    c3:3b:f2:5c:f9:27:e7:c2:35:49:03:d9:ec:67:f9:
                    55:4c:88:b6:95:25:4f:c0:3d:a0:a1:e6:a2:a1:4b:
                    70:bf:d7:6d:95:80:50:ca:f4:54:c0:6b:2d:12:69:
                    dc:1f:2b:d8:5e:73:63:9e:2b:56:4d:39:66:6c:56:
                    34:d7:39:f3:2c:31:5f:6d:fb:37:7d:2e:08:bd:e9:
                    ea:0a:7d:18:9a:b8:07:10:0d:dd:4c:82:a5:9b:29:
                    53:44:71:5a:eb:72:3c:87:ee:e6:5b:4a:ae:3f:a9:
                    ca:2f:9e:b9:c6:d4:e5:93:fa:c6:54:5a:8a:fd:02:
                    6a:4c:09:bd:41:a6:f4:b2:8d:70:52:28:77:80:bf:
                    66:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:DE:89:52:B0:0A:A8:60:63:20:80:E2:5A:A9:5F:6A:BB:D2:F6:35
            X509v3 Authority Key Identifier:
                keyid:6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:e2:39:e3:ae:68:0c:86:5f:87:9b:e3:72:82:4e:ef:0b:aa:
         da:2c:2d:3d:a4:f3:c2:4e:e9:db:10:93:86:a3:9b:0f:f3:18:
         c7:1d:6d:55:8b:dd:da:f6:e0:21:48:4d:02:12:6e:db:3b:e0:
         b3:aa:f6:f1:ef:69:ea:14:c5:c3:7f:9b:f8:5a:90:9b:ff:e5:
         0f:30:a1:1c:0b:f1:93:af:cf:9c:87:5a:fc:84:ae:d3:d7:a8:
         2b:5f:36:80:26:57:03:eb:fd:00:c1:10:39:b1:b5:4c:2c:bb:
         b7:c8:46:a9:dd:2f:93:19:85:a4:47:2b:a8:49:8f:0d:1f:ed:
         07:ae:b5:2d:50:81:25:af:66:c1:a8:e1:66:75:fc:b5:11:af:
         c3:0d:82:44:3a:46:af:0a:d3:cb:7a:28:c8:f5:42:04:fa:e2:
         9b:cc:59:ed:da:2f:5b:0f:39:81:94:b7:34:9f:47:fb:77:60:
         a3:0f:99:7c:e9:fe:d0:83:08:b0:21:0e:6e:50:7c:fb:f8:66:
         2d:34:8f:e2:4c:19:f9:b7:84:d4:a6:77:ed:1f:7a:d4:73:6b:
         f7:21:74:b2:6c:ab:a3:64:4d:87:cd:a9:f5:6c:1b:09:a8:06:
         63:68:cf:c8:c4:ef:bc:5e:3b:c7:3a:50:19:66:50:c8:b1:ca:
         69:99:fd:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----