Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
File:                     FW-pMchet5jGgtwy5CkJ1xySOyM.mft (raw, json)
Hash identifier:          8LFPi5f/SOfWwfhaLBMiFqITtk1vLDD+/jkTGqAHgzk=
Subject key identifier:   EF:A1:C1:9C:36:92:1F:4F:77:78:FD:3E:C4:67:7C:FF:20:1F:06:E6
Authority key identifier: 15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23
Certificate issuer:       /CN=156fa931c85eb798c682dc32e42909d71c923b23
Certificate serial:       019922C32598A979F78CFF372D1E3763B816
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
Manifest number:          055B
Signing time:             Sun 07 Sep 2025 06:00:38 +0000
Manifest this update:     Sun 07 Sep 2025 06:00:38 +0000
Manifest next update:     Mon 08 Sep 2025 06:00:38 +0000
Files and hashes:         1: FW-pMchet5jGgtwy5CkJ1xySOyM.crl (hash: TGyQQhsRYULvG1ErRrIvpV40qN/6GgZ6K8Cp3U720Ss=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:c3:25:98:a9:79:f7:8c:ff:37:2d:1e:37:63:b8:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=156fa931c85eb798c682dc32e42909d71c923b23
        Validity
            Not Before: Sep  7 06:00:38 2025 GMT
            Not After : Sep  8 06:00:38 2025 GMT
        Subject: CN=efa1c19c36921f4f7778fd3ec4677cff201f06e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:ea:b2:d6:69:e7:36:03:b5:d6:73:75:15:47:
                    5d:e1:2e:45:0f:d2:15:ab:0c:49:47:b5:94:f9:a5:
                    1e:f6:61:15:3d:8e:f6:3b:b7:34:4b:03:84:a1:10:
                    72:d5:5f:4f:26:15:4b:3a:5a:82:27:ca:72:6f:d1:
                    f0:50:d8:61:b1:c1:7f:0b:3f:bd:39:b6:a2:36:f5:
                    a3:41:62:60:e5:e5:9d:8d:16:6f:13:15:58:31:ce:
                    83:72:a6:c4:8c:f6:63:26:7b:8a:66:53:a7:58:b7:
                    f9:e6:11:4b:a2:e6:6e:60:d8:c1:55:a8:40:33:77:
                    18:ef:38:1e:c1:d5:2e:50:d8:34:a7:1b:6d:a5:b2:
                    49:3d:7d:a9:1f:f6:8b:46:76:a4:b5:0b:13:66:8c:
                    00:49:39:ae:6a:34:52:f4:ce:d7:c3:16:03:86:33:
                    c7:3e:43:84:b1:59:5c:93:ed:e2:66:88:77:92:03:
                    c4:64:0f:53:b9:b7:78:ff:db:35:79:74:e7:a6:26:
                    ea:2a:ab:2a:9b:df:64:04:ce:ac:ac:9c:34:ee:15:
                    d6:d9:bd:07:e2:38:f6:88:9c:26:d3:fb:93:24:36:
                    62:57:3c:19:93:76:5a:01:2a:af:e2:2d:09:95:e5:
                    78:0e:74:35:40:17:31:26:b0:68:52:78:1b:af:08:
                    a6:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:A1:C1:9C:36:92:1F:4F:77:78:FD:3E:C4:67:7C:FF:20:1F:06:E6
            X509v3 Authority Key Identifier:
                keyid:15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:a7:87:0e:e7:a6:43:5b:95:99:5e:d8:ad:bf:13:f8:69:06:
         2c:f3:e8:78:70:58:8a:13:b2:56:ae:c0:7d:b6:dd:d8:24:26:
         27:8b:00:c1:11:d3:a1:6d:0a:c4:ed:7d:72:8f:38:96:98:60:
         82:a8:81:e9:85:fe:b6:08:ae:ce:e0:cf:ff:56:34:f2:e0:bb:
         48:8c:96:42:9d:ae:65:fe:5c:93:66:24:dc:74:bb:76:aa:1d:
         b3:9b:2a:c1:bb:fe:23:9a:e8:39:d0:df:b9:67:d9:03:25:24:
         ee:fb:84:96:13:35:20:08:36:ce:bf:f2:88:38:40:ae:57:c5:
         2f:de:58:55:e3:ea:9b:91:bf:ec:a5:f1:c4:6a:4f:85:7a:cd:
         d9:2c:e4:29:8d:cd:3a:d8:be:d0:51:f8:54:9f:35:bd:9d:76:
         5a:66:3c:bd:39:2c:cd:33:b6:4e:01:60:81:c5:10:19:e1:00:
         f8:09:3d:f6:07:0a:d0:c1:e9:48:bc:3e:ff:2e:d6:48:e3:f4:
         6d:7a:4a:7a:57:23:1d:14:58:8b:e5:7e:c8:f4:36:24:ee:a1:
         b2:ba:a4:0c:54:9f:5a:67:22:58:da:2b:10:00:fa:05:39:84:
         35:06:76:1a:52:34:d2:2b:8f:a2:53:77:d5:ab:62:1e:a6:08:
         46:8e:ce:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----