Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
File:                     hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft (raw, json)
Hash identifier:          bLQ4EBKErklxVdg7nV8Za6E92uWQX4x7RN/R7oJXOJM=
Subject key identifier:   0A:F1:86:CA:10:77:06:31:81:E1:5A:C2:12:E6:EC:1D:89:D5:3C:78
Authority key identifier: 84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
Certificate issuer:       /CN=84f590ca62c246440583818c31f2573a0f50ffd0
Certificate serial:       01992255382444552E4066E5E9B045EFD4C7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
Manifest number:          0A85
Signing time:             Sun 07 Sep 2025 04:00:34 +0000
Manifest this update:     Sun 07 Sep 2025 04:00:34 +0000
Manifest next update:     Mon 08 Sep 2025 04:00:34 +0000
Files and hashes:         1: hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl (hash: BxBYbhjzDOp10cGXdBAPW7fDjgqGt4ozv63Aw+CfOPw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:38:24:44:55:2e:40:66:e5:e9:b0:45:ef:d4:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=84f590ca62c246440583818c31f2573a0f50ffd0
        Validity
            Not Before: Sep  7 04:00:34 2025 GMT
            Not After : Sep  8 04:00:34 2025 GMT
        Subject: CN=0af186ca1077063181e15ac212e6ec1d89d53c78
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:9e:c0:0a:09:96:79:01:c3:ef:be:38:80:fc:
                    ed:56:5d:11:96:44:60:8d:4f:40:db:f8:b2:7d:61:
                    c0:fa:7f:ce:96:d0:47:07:2a:07:e7:d3:78:90:e5:
                    47:e9:b6:f9:af:be:79:c8:65:83:b6:22:d2:07:77:
                    09:6d:2f:c9:2e:98:fd:53:a2:2c:16:88:0a:6b:ca:
                    09:1b:b5:82:2d:6e:ab:71:30:75:3a:ca:a6:4b:45:
                    99:9d:67:77:01:42:47:a5:ce:a9:7e:61:8c:93:30:
                    ad:6d:9c:d4:71:ea:45:9d:af:f5:d6:7d:60:3c:ad:
                    51:9d:e7:60:3e:65:c5:25:79:0e:2c:ab:70:48:f9:
                    ad:ad:f4:94:ea:d6:f0:4e:0c:32:30:c8:a9:6c:a9:
                    b7:df:87:18:72:0c:3c:d1:00:c4:be:fa:ba:72:7b:
                    5f:d5:c2:1c:1a:f7:ba:67:81:a3:05:8e:83:a2:ab:
                    48:86:ea:f0:3e:16:0c:5c:24:5c:c4:f0:ac:a0:bd:
                    b2:5e:ba:4c:eb:e9:dc:2d:04:39:be:a9:10:d8:10:
                    8e:8c:78:69:ee:41:1e:f4:4d:b4:95:77:52:00:4c:
                    f6:ef:c8:0b:c4:a9:35:3b:84:be:56:ed:00:fd:73:
                    b2:42:ed:90:dd:16:94:3c:cf:87:54:47:c2:a0:3d:
                    4b:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:F1:86:CA:10:77:06:31:81:E1:5A:C2:12:E6:EC:1D:89:D5:3C:78
            X509v3 Authority Key Identifier:
                keyid:84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:c5:8a:b7:90:75:ec:61:2d:89:9b:78:19:91:0c:e6:1b:ac:
         3e:cb:3d:d8:54:40:6e:70:4d:0b:b5:aa:41:b2:ff:71:52:b3:
         1b:84:9b:36:55:44:57:b9:84:7b:60:21:a5:7c:fe:d3:6b:50:
         4d:fd:dc:d7:77:c4:e3:9a:3f:a0:a0:3e:11:ae:da:d0:f2:b1:
         ee:00:d7:9a:0d:e7:75:fc:6f:81:bc:f7:bc:1f:63:a7:36:79:
         92:a0:58:5f:74:7d:a5:a4:8c:32:69:76:11:05:03:50:a4:0b:
         58:5e:2b:8b:81:bb:f3:ac:dd:78:9f:a6:0c:90:28:fe:07:aa:
         1f:f3:65:9a:f0:76:1b:58:05:e7:cb:b1:04:44:88:8b:43:53:
         f1:3c:23:64:63:1a:cf:e2:c1:1b:b0:24:a3:ee:cd:eb:e7:92:
         32:03:cf:30:68:b0:98:5e:65:8c:d7:f5:5c:38:92:c0:0e:44:
         e4:20:02:57:f3:9f:49:66:13:ed:d8:92:a6:2f:14:53:83:3c:
         29:91:78:a7:5b:dd:3d:39:60:b5:e0:0b:56:cf:8a:c5:57:91:
         c9:95:5b:d7:a9:e1:cf:1d:3e:c8:ea:1d:51:e6:a6:d8:37:a8:
         32:2a:98:f2:9a:ba:ce:78:d9:55:c4:7b:db:7a:b5:e0:72:bc:
         2e:40:4d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----