Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/4d10c0-67bf-4135-97ab-bbf2ce07ecad/1/oaRYJWLDE1u1K9uWFF4a0DeGsUg.mft
File:                     oaRYJWLDE1u1K9uWFF4a0DeGsUg.mft (raw, json)
Hash identifier:          MqwV4iwifgjsHMj5GN9kujPDTa3cLO+drScKEBJr3hI=
Subject key identifier:   37:D5:30:42:0E:91:5E:4F:CB:79:F1:8C:64:74:B9:E0:4F:38:00:AC
Authority key identifier: A1:A4:58:25:62:C3:13:5B:B5:2B:DB:96:14:5E:1A:D0:37:86:B1:48
Certificate issuer:       /CN=a1a4582562c3135bb52bdb96145e1ad03786b148
Certificate serial:       019923A0876B931DC2E8AEAA857020462D26
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oaRYJWLDE1u1K9uWFF4a0DeGsUg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/95/4d10c0-67bf-4135-97ab-bbf2ce07ecad/1/oaRYJWLDE1u1K9uWFF4a0DeGsUg.mft
Manifest number:          1417
Signing time:             Sun 07 Sep 2025 10:02:26 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:26 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:26 +0000
Files and hashes:         1: oaRYJWLDE1u1K9uWFF4a0DeGsUg.crl (hash: 7ZzxUQdMwQ83lg3wJi4JF/szBf00WVEv1Q5M8mrmxMA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/95/4d10c0-67bf-4135-97ab-bbf2ce07ecad/1/oaRYJWLDE1u1K9uWFF4a0DeGsUg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/95/4d10c0-67bf-4135-97ab-bbf2ce07ecad/1/oaRYJWLDE1u1K9uWFF4a0DeGsUg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oaRYJWLDE1u1K9uWFF4a0DeGsUg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:87:6b:93:1d:c2:e8:ae:aa:85:70:20:46:2d:26
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1a4582562c3135bb52bdb96145e1ad03786b148
        Validity
            Not Before: Sep  7 10:02:26 2025 GMT
            Not After : Sep  8 10:02:26 2025 GMT
        Subject: CN=37d530420e915e4fcb79f18c6474b9e04f3800ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:ea:23:09:b6:d2:ee:88:21:93:e3:12:73:18:
                    f6:64:6a:f6:db:e9:5e:ac:ab:64:17:24:fa:60:f1:
                    c9:20:cf:3b:9f:95:0b:d6:14:e0:44:1c:e3:98:c0:
                    be:a3:32:b2:8f:69:22:1e:c2:93:b8:f9:2c:c9:48:
                    f7:a5:3b:2d:e0:ed:c6:0d:9e:db:80:64:e1:80:61:
                    f5:ce:d9:94:20:f3:8e:23:a0:3c:19:7e:83:b9:b5:
                    0e:7e:e8:40:58:49:66:27:f6:45:6e:79:8f:9e:12:
                    c1:52:97:07:70:2d:c8:c3:0e:ae:f6:59:e9:2e:f9:
                    ae:b6:87:93:47:dc:21:f0:43:49:bb:e4:60:8b:43:
                    82:15:79:a0:0b:3a:ea:76:47:0d:8d:ac:69:5b:4f:
                    2f:70:06:7e:0f:ee:60:21:5e:cd:8d:38:23:65:7f:
                    4d:39:97:f8:f4:3b:ed:90:64:44:37:06:31:16:f9:
                    b4:fd:78:89:a3:e5:77:f0:ae:27:78:9c:9c:d1:e7:
                    6b:68:d4:84:3e:bd:98:2f:3b:c2:23:dd:c0:a6:9c:
                    f2:10:b9:0e:cc:5a:ce:7c:2e:87:87:e6:3c:bf:46:
                    e1:43:8c:a2:17:28:c1:92:e6:c4:fa:35:2a:c5:97:
                    50:c1:c2:83:b9:75:0a:2c:59:fb:c7:14:b2:b4:14:
                    1c:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:D5:30:42:0E:91:5E:4F:CB:79:F1:8C:64:74:B9:E0:4F:38:00:AC
            X509v3 Authority Key Identifier:
                keyid:A1:A4:58:25:62:C3:13:5B:B5:2B:DB:96:14:5E:1A:D0:37:86:B1:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaRYJWLDE1u1K9uWFF4a0DeGsUg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4d10c0-67bf-4135-97ab-bbf2ce07ecad/1/oaRYJWLDE1u1K9uWFF4a0DeGsUg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4d10c0-67bf-4135-97ab-bbf2ce07ecad/1/oaRYJWLDE1u1K9uWFF4a0DeGsUg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:fc:cd:3b:26:28:9e:49:3e:7a:77:f5:ba:ee:a9:80:64:05:
         3d:1a:fa:67:a0:93:1f:89:81:8d:a8:a4:c1:47:12:1b:88:ed:
         bd:d9:de:84:cc:ed:61:cf:bc:c5:ce:e6:af:24:6d:78:a4:3d:
         d6:e9:85:a6:50:ed:b5:ca:c7:cd:17:aa:f7:e0:b7:f5:00:b5:
         a6:64:88:1b:51:3f:5e:d4:5f:4e:86:4f:85:f4:7a:d9:cc:1b:
         79:d6:be:ec:83:46:cb:f1:b3:bd:bf:4f:cd:54:08:9e:d5:80:
         e7:f3:7a:1a:3a:95:dc:b9:14:d1:dc:0b:86:fd:e0:e4:2b:17:
         e2:c8:10:1e:bf:e3:e2:e6:0f:bd:46:4c:40:b0:f2:ac:03:35:
         fa:d1:e3:dc:6c:aa:ad:1d:ab:4a:60:13:50:56:02:b2:7b:59:
         b4:ec:04:db:ef:d3:73:4f:71:a1:79:84:8a:a1:d7:7f:57:10:
         e5:e5:31:e2:7c:b5:d6:ad:2f:18:f1:c1:61:d4:75:db:d2:52:
         5b:63:15:9f:ad:92:c4:ab:99:63:91:ee:b1:03:09:e3:81:27:
         ca:45:a2:76:66:c8:21:8c:a7:86:5a:44:1d:38:2f:e8:6a:86:
         e5:2a:5f:c9:27:70:79:1f:09:cb:81:4d:13:ea:2f:2e:78:18:
         75:1c:71:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----