Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File:                     aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier:          jhJBNGJ4rPF6zBn5GrmVplet+pQ/Jd+k1ymofphNImQ=
Subject key identifier:   AD:2F:08:E6:1D:B9:AF:CB:2E:C5:FA:64:6E:D6:37:08:4F:1A:D8:05
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer:       /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial:       019922551B81C8D5DAB12CDFDB2D3A4BD8F0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number:          10AD
Signing time:             Sun 07 Sep 2025 04:00:26 +0000
Manifest this update:     Sun 07 Sep 2025 04:00:26 +0000
Manifest next update:     Mon 08 Sep 2025 04:00:26 +0000
Files and hashes:         1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: 2nm5HBWcnz/JHb7XiioZJUlYWw5oY+zI4BObpj13lEk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:1b:81:c8:d5:da:b1:2c:df:db:2d:3a:4b:d8:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
        Validity
            Not Before: Sep  7 04:00:26 2025 GMT
            Not After : Sep  8 04:00:26 2025 GMT
        Subject: CN=ad2f08e61db9afcb2ec5fa646ed637084f1ad805
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:91:e0:2b:22:da:3f:7b:f7:91:6f:64:c7:c8:
                    2f:82:31:5e:86:ec:c6:05:05:40:6c:41:73:3f:ed:
                    d4:cc:dc:12:bb:e9:ec:b3:05:48:69:db:2e:78:eb:
                    8b:88:a7:86:c7:94:77:66:b7:91:b1:68:83:88:aa:
                    ff:7b:13:19:41:30:a4:17:07:95:11:da:fe:65:d8:
                    26:db:cd:23:71:0a:56:8f:7a:d0:54:35:4b:5f:7c:
                    f3:68:23:af:31:00:95:03:e9:9f:8e:dc:9e:89:a7:
                    f8:d7:6b:7a:f7:06:95:ec:09:4c:2a:02:09:ee:a8:
                    1f:9e:09:1a:45:5c:08:42:47:d8:43:ad:ac:11:ab:
                    cb:d2:b2:d3:8b:fd:40:80:cf:5f:66:8d:a8:d8:4e:
                    b4:2f:a5:dd:ce:e7:3e:de:e5:55:1d:29:d0:e1:6d:
                    94:2f:99:90:05:51:fc:b1:45:e8:45:f6:45:de:f1:
                    10:87:0f:13:ed:3e:84:7a:6e:66:54:75:ff:77:2f:
                    6b:88:fa:93:95:55:8c:0d:c2:53:26:b9:a3:e5:13:
                    ca:a8:5f:0a:fe:c9:a0:75:ca:fd:24:9c:c5:e1:c1:
                    14:e5:fb:08:81:ee:b4:f1:00:1e:b0:8e:38:81:ca:
                    e2:f9:e1:ff:e9:1b:73:32:17:e6:47:7c:ad:95:c7:
                    95:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:2F:08:E6:1D:B9:AF:CB:2E:C5:FA:64:6E:D6:37:08:4F:1A:D8:05
            X509v3 Authority Key Identifier:
                keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:fb:92:32:62:82:42:aa:ae:a8:50:12:c6:87:29:21:33:9d:
         79:40:2f:9b:7c:ec:c9:55:2e:ab:a3:5c:31:f4:aa:3b:68:be:
         99:cc:71:69:1b:59:34:f1:fc:b7:94:94:93:53:8b:59:0a:aa:
         1d:06:e2:08:41:49:0e:80:f5:4e:a7:cf:52:04:1a:9f:62:be:
         29:a7:da:00:e1:3e:43:8a:89:37:91:e7:e5:d0:1f:6a:da:67:
         e2:d5:c5:85:86:25:ee:11:00:ff:16:25:1c:0e:05:95:d2:d1:
         22:ff:8b:bd:81:47:09:be:99:7a:ab:97:31:bf:f4:fe:9b:ba:
         89:48:ae:66:b8:05:84:e3:90:14:73:9a:87:35:df:56:46:2c:
         cd:70:6f:2c:1c:c3:46:de:3b:3a:21:9c:39:ab:8d:ce:df:b0:
         0d:89:34:91:04:4a:e1:7b:71:b2:37:09:c2:6f:20:53:12:5c:
         ef:1b:5a:9c:37:26:37:2c:08:0f:8b:49:7a:02:60:0a:c1:01:
         f4:f0:ca:fe:d0:b0:c2:3e:22:10:ba:9c:ee:5a:68:48:54:76:
         5a:19:ce:3e:7c:cb:e8:e7:ea:c8:61:51:b9:ed:f9:96:3d:76:
         b1:b4:e5:fb:a4:7e:2e:bb:ee:70:a4:ad:01:a3:c2:82:74:27:
         b5:67:31:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----