Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft
File:                     GD41veDiUEYFoX1O0FVDfo00ql8.mft (raw, json)
Hash identifier:          uKDHdj9bz3Gt5ldgU05Ct1qhIoZlJwYESCfzLc3ZwtU=
Subject key identifier:   DE:E0:50:D9:F6:23:13:EA:3A:59:C1:53:8C:05:DB:57:A0:07:52:E4
Authority key identifier: 18:3E:35:BD:E0:E2:50:46:05:A1:7D:4E:D0:55:43:7E:8D:34:AA:5F
Certificate issuer:       /CN=183e35bde0e2504605a17d4ed055437e8d34aa5f
Certificate serial:       019922559CE233CEDC1BEDD9D5EEF495DC56
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GD41veDiUEYFoX1O0FVDfo00ql8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft
Manifest number:          166F
Signing time:             Sun 07 Sep 2025 04:00:59 +0000
Manifest this update:     Sun 07 Sep 2025 04:00:59 +0000
Manifest next update:     Mon 08 Sep 2025 04:00:59 +0000
Files and hashes:         1: GD41veDiUEYFoX1O0FVDfo00ql8.crl (hash: B6CxhudUdIm/V2vvq0Mm/rsES++svgBw1w6YHQJO4QQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GD41veDiUEYFoX1O0FVDfo00ql8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:9c:e2:33:ce:dc:1b:ed:d9:d5:ee:f4:95:dc:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=183e35bde0e2504605a17d4ed055437e8d34aa5f
        Validity
            Not Before: Sep  7 04:00:59 2025 GMT
            Not After : Sep  8 04:00:59 2025 GMT
        Subject: CN=dee050d9f62313ea3a59c1538c05db57a00752e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:21:79:00:55:02:d5:1f:02:77:94:9c:9a:50:
                    94:d3:48:86:1e:2b:de:67:fc:f3:f5:73:11:54:fe:
                    bb:87:4e:59:0d:0f:9d:6d:93:97:fb:35:0d:f2:49:
                    b0:11:26:0a:18:09:d5:fe:8b:c6:21:90:e8:eb:0c:
                    ac:74:73:59:19:e6:5b:0e:13:66:dd:72:f3:e1:aa:
                    c0:4c:6d:48:91:70:4d:05:64:d5:f3:31:8e:5d:56:
                    29:2a:a2:7f:37:62:bc:3c:96:3c:cf:bc:fb:3d:c9:
                    02:df:c4:ae:e4:c3:aa:27:2e:83:90:90:0e:dc:be:
                    ac:39:21:65:f6:e9:12:64:11:eb:dc:ef:bc:67:ad:
                    06:62:f5:29:24:94:61:ea:b4:95:2f:2f:d1:b4:5a:
                    12:2d:dc:4d:96:b5:60:a6:0f:a4:ad:0f:29:e3:9f:
                    cf:31:34:ca:c7:a7:3c:e9:ab:01:dc:c5:a7:d4:79:
                    3b:47:87:27:4c:4c:a7:b2:cf:d8:51:9f:00:a9:e3:
                    30:72:59:dd:4c:84:c1:c5:9a:76:72:9f:86:01:a3:
                    fa:0d:8b:47:5f:9b:8e:24:96:0c:38:a9:46:03:11:
                    f8:54:46:93:13:4b:f8:a5:f3:98:38:58:a0:1f:00:
                    bb:e0:e5:27:5a:ae:c4:22:cc:94:35:86:18:27:a2:
                    1d:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:E0:50:D9:F6:23:13:EA:3A:59:C1:53:8C:05:DB:57:A0:07:52:E4
            X509v3 Authority Key Identifier:
                keyid:18:3E:35:BD:E0:E2:50:46:05:A1:7D:4E:D0:55:43:7E:8D:34:AA:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GD41veDiUEYFoX1O0FVDfo00ql8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:cb:f3:fa:5e:e6:05:86:3c:87:a7:09:19:d3:46:42:cc:aa:
         c9:6b:eb:c7:e5:6c:ff:3c:ab:eb:32:62:88:40:70:9b:7a:36:
         45:a7:8a:be:bb:4c:67:39:1d:68:3a:e1:fa:fb:b6:b1:dd:97:
         e7:cc:71:81:4f:ac:66:24:66:b5:79:d6:3c:22:eb:22:97:64:
         a2:d4:62:02:d1:45:09:82:2a:28:1a:ee:1c:05:ef:4c:9e:33:
         3e:67:7c:0a:97:04:49:6f:61:14:41:21:23:9d:b1:28:7f:fd:
         b4:86:af:f7:43:17:32:9b:5f:d1:ba:1d:c9:62:2a:0d:41:78:
         64:2b:f4:39:25:23:00:3c:44:7d:29:44:ca:78:81:a4:ca:90:
         e2:0f:45:10:bf:03:e6:09:f1:90:87:9e:b9:35:21:d2:3f:1f:
         9b:6c:3a:b3:44:92:0b:5b:c9:5d:c7:9d:c5:bc:ea:ae:c1:15:
         45:be:e0:16:32:77:06:5d:e3:9e:e9:07:18:69:97:61:d2:09:
         21:fb:5e:59:7c:e9:34:68:a0:23:6f:71:dc:8e:75:9e:d2:07:
         4c:da:68:87:b2:05:26:64:43:55:da:09:03:82:fa:fb:18:43:
         d6:2e:4f:21:53:a4:4c:8f:8f:90:7c:9b:9b:39:82:79:54:28:
         40:dd:97:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----