Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft
File:                     9z1njq7ZSnm3Qt1DveP1TynbMVI.mft (raw, json)
Hash identifier:          m/jwajAK3EUJKQPJaNBqixeF8iJreef8A/1jZzKVnXg=
Subject key identifier:   F5:B8:EC:4F:3B:95:E0:DC:59:B5:DF:C0:E4:AA:02:4A:15:27:03:5B
Authority key identifier: F7:3D:67:8E:AE:D9:4A:79:B7:42:DD:43:BD:E3:F5:4F:29:DB:31:52
Certificate issuer:       /CN=f73d678eaed94a79b742dd43bde3f54f29db3152
Certificate serial:       019921E75FA74B0CA8EFF7B168A2F9EB0883
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9z1njq7ZSnm3Qt1DveP1TynbMVI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft
Manifest number:          6B
Signing time:             Sun 07 Sep 2025 02:00:35 +0000
Manifest this update:     Sun 07 Sep 2025 02:00:35 +0000
Manifest next update:     Mon 08 Sep 2025 02:00:35 +0000
Files and hashes:         1: 9z1njq7ZSnm3Qt1DveP1TynbMVI.crl (hash: ZPhMaRMvELWdidPAnzhZVAHMu7T1FmxGbnm2jJqe2Fs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9z1njq7ZSnm3Qt1DveP1TynbMVI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 02:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:e7:5f:a7:4b:0c:a8:ef:f7:b1:68:a2:f9:eb:08:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f73d678eaed94a79b742dd43bde3f54f29db3152
        Validity
            Not Before: Sep  7 02:00:35 2025 GMT
            Not After : Sep  8 02:00:35 2025 GMT
        Subject: CN=f5b8ec4f3b95e0dc59b5dfc0e4aa024a1527035b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:d9:8d:df:6e:78:13:8d:3e:8d:0e:f2:b5:55:
                    a6:b7:fb:76:48:c7:a7:74:ec:3f:e3:06:7a:be:6b:
                    a0:b9:ea:2c:f1:82:c7:a6:d4:89:6f:45:88:93:af:
                    ed:b9:a8:b8:85:13:49:94:66:ea:1c:a8:3f:da:8d:
                    b0:53:78:31:f9:dd:4b:14:47:ba:0c:8f:06:8d:54:
                    f0:8d:42:fc:29:64:01:f3:fa:cd:53:96:b2:89:fb:
                    bb:93:76:f5:99:32:9a:66:21:c3:99:3d:e3:43:0b:
                    10:d4:f7:74:66:19:23:50:ab:44:ad:9d:3e:59:21:
                    6a:ba:7f:eb:55:f4:67:41:4c:e9:04:7e:97:b3:59:
                    ca:33:7d:39:c8:28:3f:da:fe:b5:b1:dc:17:3d:a5:
                    4e:a0:6d:17:20:c9:4d:87:d7:53:08:1a:e6:a8:dd:
                    3e:a1:63:f1:fd:a5:55:a7:00:cd:a8:f3:97:86:ce:
                    90:e1:85:eb:dd:48:a1:07:d5:82:f4:e9:a5:da:a8:
                    c3:78:24:39:78:36:97:55:63:48:6f:f1:18:bf:17:
                    48:bf:cc:61:25:40:9c:12:f1:03:da:4a:b8:66:76:
                    b6:cf:cd:f1:e0:28:fb:79:e1:50:24:68:45:65:3c:
                    b5:bd:f8:7f:b0:46:64:99:22:61:c6:a0:85:cc:b9:
                    f6:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:B8:EC:4F:3B:95:E0:DC:59:B5:DF:C0:E4:AA:02:4A:15:27:03:5B
            X509v3 Authority Key Identifier:
                keyid:F7:3D:67:8E:AE:D9:4A:79:B7:42:DD:43:BD:E3:F5:4F:29:DB:31:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9z1njq7ZSnm3Qt1DveP1TynbMVI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:51:1e:c2:c4:8b:75:e6:ac:f4:36:9a:ef:d9:c2:1f:e6:23:
         91:67:37:8c:ab:f0:c4:26:96:48:03:c7:f6:41:8f:02:42:35:
         95:6a:bd:16:56:6d:65:cf:87:61:fe:8d:95:4d:77:15:99:b2:
         18:b7:41:78:12:9b:50:2a:f7:e3:53:11:a8:f0:3f:7e:d3:3f:
         f1:24:62:9c:d1:66:87:78:88:8a:ba:fd:da:b8:a1:de:e5:b6:
         e8:97:10:76:03:21:71:46:b1:d5:b4:02:df:f6:aa:72:1c:3f:
         5f:c0:57:2c:6c:c3:85:46:d4:e6:41:8b:b4:2c:90:f9:e8:12:
         95:f9:58:1b:69:2c:50:86:2d:f5:06:30:94:f9:df:ca:0c:9c:
         5a:ee:b8:5a:93:5f:99:8c:f0:b9:ea:16:17:ec:64:2e:a0:d0:
         88:b5:17:80:44:00:2a:83:a4:97:0f:97:7b:e8:94:2d:38:a6:
         da:51:60:15:8b:13:e6:fc:12:de:d9:fb:f4:d3:f8:f7:63:eb:
         2e:c4:ec:8b:c9:23:fe:d2:29:c4:df:d4:f4:74:30:d9:a2:b7:
         5e:67:65:f7:74:e8:c4:48:ac:04:b9:44:56:29:92:e4:ff:b3:
         ee:c9:6c:86:6d:6b:79:56:cb:1d:4f:21:93:00:94:8b:2c:73:
         96:88:6a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----