Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
File:                     79XDTJ_TJEnLwIirENkbWkq1Nho.mft (raw, json)
Hash identifier:          xSbN3P5RUlwLn2va23J9wHxoCB0vnntICrNbIO+965s=
Subject key identifier:   55:BD:F5:09:57:57:60:B8:7B:06:EC:13:5B:18:17:46:57:9E:DB:60
Authority key identifier: EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A
Certificate issuer:       /CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
Certificate serial:       019922C37E76AED9C1976D8853E95BEED80E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
Manifest number:          0649
Signing time:             Sun 07 Sep 2025 06:01:01 +0000
Manifest this update:     Sun 07 Sep 2025 06:01:01 +0000
Manifest next update:     Mon 08 Sep 2025 06:01:01 +0000
Files and hashes:         1: 79XDTJ_TJEnLwIirENkbWkq1Nho.crl (hash: iJY2cElG3Ie6uOisA6eYEhhtekJuJVR5+l9lZbRuwd8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:c3:7e:76:ae:d9:c1:97:6d:88:53:e9:5b:ee:d8:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
        Validity
            Not Before: Sep  7 06:01:01 2025 GMT
            Not After : Sep  8 06:01:01 2025 GMT
        Subject: CN=55bdf509575760b87b06ec135b181746579edb60
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:7e:a8:49:77:3a:b8:7c:1c:93:e7:46:1f:23:
                    1a:aa:c7:10:18:36:43:76:53:53:9d:db:bf:48:e6:
                    af:91:87:e1:9d:78:65:1b:cd:7c:ab:fa:7e:b0:d4:
                    7e:99:f3:25:27:f9:12:29:81:6c:75:fa:56:81:98:
                    53:2e:04:78:7d:8a:76:f7:ba:4c:ed:b9:86:ea:cd:
                    d4:76:eb:74:58:7d:cb:e2:6d:c4:32:57:3b:72:06:
                    11:8a:6e:0a:bb:b2:9b:5a:83:3b:56:2e:5d:c2:a9:
                    33:72:51:c6:74:cd:fc:54:a4:6b:fc:24:59:28:3e:
                    4d:b0:b5:26:d5:09:53:ee:0b:0b:f6:95:94:82:ce:
                    fe:fc:b2:a5:0c:06:2c:15:b6:e3:13:c1:36:2e:60:
                    71:1b:a7:47:e6:eb:ae:5b:0d:8f:44:90:70:30:60:
                    a9:2a:a6:b4:28:c3:3c:a6:69:74:22:94:70:cb:e6:
                    10:0e:8a:60:9e:2b:fc:2b:6a:15:24:d9:b2:1e:e2:
                    51:aa:93:e0:a2:eb:1d:fc:da:69:39:fd:fb:c5:05:
                    81:ce:4c:0c:17:7f:84:21:5b:32:ed:c6:46:1b:db:
                    7b:06:c0:46:60:ba:d5:c3:de:30:98:f6:01:c0:dd:
                    67:e7:14:bd:ba:73:05:f5:87:41:8e:f7:79:69:21:
                    b7:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:BD:F5:09:57:57:60:B8:7B:06:EC:13:5B:18:17:46:57:9E:DB:60
            X509v3 Authority Key Identifier:
                keyid:EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:04:c1:81:fa:29:73:40:65:10:11:f2:89:31:94:c4:6d:7c:
         78:cf:4d:6f:4e:3b:ff:e1:67:79:01:1c:db:ce:3c:65:d4:42:
         98:93:b6:17:a6:10:f2:08:01:ff:7d:89:6c:48:63:db:73:10:
         31:6d:5b:6b:60:f8:c0:34:a1:07:5c:5f:15:c6:54:84:17:90:
         08:68:9c:9e:63:36:ff:42:34:3f:46:47:8e:df:20:98:f1:b4:
         94:aa:13:6a:3e:db:7b:24:33:74:6c:5a:60:18:6e:4e:58:1e:
         70:6c:4f:4b:37:f8:8a:af:b0:2b:50:1e:84:5f:42:72:62:1d:
         62:0d:95:14:74:0a:46:80:ed:c0:57:cb:31:d7:4a:b0:c0:56:
         f0:cf:c9:dc:24:1c:b6:3d:4b:97:3f:75:40:c4:11:e2:fd:bc:
         c7:e6:c2:a6:fc:dc:9c:d4:91:10:4e:c1:5b:34:78:07:de:4d:
         72:86:c6:d8:9d:6f:c8:41:da:21:5c:dc:4c:37:95:9d:d2:71:
         c6:5a:21:bf:eb:d3:d4:1d:a8:04:8e:0a:8e:b6:4e:cd:95:11:
         b7:94:e9:64:22:8d:6f:a7:7e:0e:d0:54:b0:04:ad:b0:a7:64:
         fa:69:62:51:91:a7:de:17:f6:f6:df:d1:59:68:a8:e2:6e:a4:
         44:a8:d3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----