Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
File:                     qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft (raw, json)
Hash identifier:          pDXrHgIl3JdRqzUexx0/qWdm0wcEGNLaFAz4/WP6Ht0=
Subject key identifier:   E5:CB:A2:E8:99:6F:71:76:66:73:FD:22:18:9B:37:10:3E:0F:EA:61
Authority key identifier: AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4
Certificate issuer:       /CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
Certificate serial:       0199240D3E85B2FB48409A298D95DFF954A0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
Manifest number:          0EF4
Signing time:             Sun 07 Sep 2025 12:01:11 +0000
Manifest this update:     Sun 07 Sep 2025 12:01:11 +0000
Manifest next update:     Mon 08 Sep 2025 12:01:11 +0000
Files and hashes:         1: qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl (hash: x3uxH4ydLxKm4RwR3oz+KT33sa8NhAnZh6IWnvLkDgU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:24:0d:3e:85:b2:fb:48:40:9a:29:8d:95:df:f9:54:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
        Validity
            Not Before: Sep  7 12:01:11 2025 GMT
            Not After : Sep  8 12:01:11 2025 GMT
        Subject: CN=e5cba2e8996f71766673fd22189b37103e0fea61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:0c:6d:52:43:1c:59:f6:58:29:82:bb:86:5a:
                    e2:90:a1:a6:6a:53:73:78:83:a2:2f:cb:88:4a:3e:
                    50:22:aa:c8:46:e7:70:f1:a5:d6:00:5b:3d:07:dc:
                    0b:00:e0:5a:8e:9f:b8:65:3b:a8:9e:34:c5:8a:41:
                    33:9a:5f:7d:ee:05:7a:92:3b:b7:77:15:95:5f:7f:
                    86:f6:27:02:ca:7a:6d:28:7d:88:11:be:be:f8:f1:
                    a4:98:4f:f0:df:76:d8:c2:38:1b:f9:e9:f5:b0:46:
                    ea:1f:a3:fd:2f:d4:7c:02:9e:83:c2:1a:a9:40:0c:
                    a0:e7:36:d7:84:b1:e7:c3:ac:14:c9:c6:69:04:72:
                    80:fe:db:4a:84:5f:60:a7:69:ac:b4:9d:5e:dd:a4:
                    23:81:a9:78:b6:7b:c3:5b:90:92:53:23:cf:2e:34:
                    1b:0d:b9:7f:38:f1:ba:25:6e:87:df:49:65:f3:29:
                    04:b3:f4:a1:73:36:d9:42:47:1d:c6:36:dd:9a:6f:
                    e7:bc:9c:a6:70:17:d1:05:c7:c4:70:35:1f:37:82:
                    fb:27:04:a3:f3:f7:fb:c6:37:32:e2:5e:ac:c4:02:
                    31:7a:33:4e:29:47:af:a4:dc:7e:af:f0:a9:90:1b:
                    85:20:48:41:2e:7c:4a:25:d8:a2:82:18:76:f9:45:
                    dc:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:CB:A2:E8:99:6F:71:76:66:73:FD:22:18:9B:37:10:3E:0F:EA:61
            X509v3 Authority Key Identifier:
                keyid:AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:8f:11:49:7c:c5:b3:6a:92:b4:8c:94:48:41:94:00:42:59:
         67:8f:06:a4:3b:35:1d:17:7c:9e:9e:35:55:1f:db:37:1e:58:
         d0:55:51:a8:28:5a:cc:68:77:68:b4:5d:27:0e:61:83:82:24:
         fa:f5:40:78:47:7b:af:12:20:8a:4b:ea:85:82:f1:05:1c:53:
         14:9f:ad:d7:64:8f:9c:87:8f:e5:af:3c:ce:f9:b5:b3:66:05:
         2c:e4:a2:b5:65:53:1f:c3:fb:b2:a8:37:0e:6e:70:4c:db:7d:
         29:ec:d6:dc:52:95:3f:bf:88:e8:f1:8b:7a:8f:ad:79:be:f8:
         3f:9b:34:24:3b:7d:c7:68:31:7d:66:89:d0:1c:92:86:2a:1c:
         7f:2e:ea:d2:fe:c1:f7:fd:6d:d6:15:59:bc:f2:43:07:9b:cd:
         23:6e:f8:33:be:d6:0e:33:94:5f:89:88:ca:69:83:48:bc:d6:
         2b:2f:4d:7b:c2:22:e1:19:d3:4d:e1:c2:bb:e8:80:e7:32:4b:
         4c:6c:39:c2:70:f1:1d:d6:41:2f:96:f9:47:3e:3a:f5:26:7e:
         9a:aa:0f:fe:2b:83:20:9c:34:2e:31:a6:2c:c0:e2:8c:cc:4f:
         f3:79:cd:56:a9:80:83:e4:2a:f5:20:20:72:35:4f:2f:1d:6c:
         7c:54:69:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----