Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft
File:                     jhTxdhHOtBMYStycGa71CKhJubI.mft (raw, json)
Hash identifier:          zTzKJCL6apgCn37gfM001N/gDZguHIC5HdNJKsNEDus=
Subject key identifier:   52:18:1E:E5:76:55:CE:01:6D:E1:D0:FF:6C:34:F6:C8:1C:5E:4C:F2
Authority key identifier: 8E:14:F1:76:11:CE:B4:13:18:4A:DC:9C:19:AE:F5:08:A8:49:B9:B2
Certificate issuer:       /CN=8e14f17611ceb413184adc9c19aef508a849b9b2
Certificate serial:       019921B074D3B07FAC54A21727601C6C31A6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft
Manifest number:          166C
Signing time:             Sun 07 Sep 2025 01:00:36 +0000
Manifest this update:     Sun 07 Sep 2025 01:00:36 +0000
Manifest next update:     Mon 08 Sep 2025 01:00:36 +0000
Files and hashes:         1: jhTxdhHOtBMYStycGa71CKhJubI.crl (hash: GprVi69aum1KtdoLRyv5hvDKnExnRmFRJ1sgkT2OOJQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b0:74:d3:b0:7f:ac:54:a2:17:27:60:1c:6c:31:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8e14f17611ceb413184adc9c19aef508a849b9b2
        Validity
            Not Before: Sep  7 01:00:36 2025 GMT
            Not After : Sep  8 01:00:36 2025 GMT
        Subject: CN=52181ee57655ce016de1d0ff6c34f6c81c5e4cf2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:05:d3:a8:5a:7c:d3:57:9c:47:db:d6:d6:f8:
                    93:2e:68:09:64:a5:61:a4:6f:66:9f:d1:84:d5:91:
                    3f:ca:6d:3e:cb:c9:ca:0e:0d:f9:28:df:86:25:ce:
                    eb:c8:4f:ef:ad:d9:c6:42:86:d3:74:cd:a2:cd:78:
                    3d:09:44:30:c6:55:87:59:17:f7:28:9c:d2:ea:ca:
                    9a:16:98:cb:c6:51:09:c8:1d:8b:bf:5d:85:6a:5b:
                    37:19:6f:16:9f:30:f4:d7:e6:6a:4c:44:16:5a:fd:
                    ed:05:60:cd:fb:e2:e4:0a:83:54:09:94:a3:53:f9:
                    8f:ea:68:37:27:a2:6c:d3:59:ac:5d:4b:dc:8d:1a:
                    65:ec:71:67:dd:33:a4:57:48:dd:ba:81:91:37:3f:
                    85:bc:2e:ae:68:f3:5c:7c:67:02:ad:82:77:92:88:
                    ba:32:eb:10:ae:cf:0f:a3:cd:68:37:d3:ee:79:de:
                    17:a3:46:28:38:fd:40:cb:9e:94:ed:ea:1f:d5:23:
                    05:3d:a1:f0:d9:92:d5:c2:9f:3d:93:5b:29:49:d2:
                    50:64:30:c2:37:d7:ea:c0:82:b5:3f:70:3f:38:6b:
                    6a:1c:52:3e:81:03:5b:23:80:9d:80:9d:fc:83:2a:
                    39:f4:c0:31:d2:fd:ad:d8:eb:4d:65:15:29:42:28:
                    67:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:18:1E:E5:76:55:CE:01:6D:E1:D0:FF:6C:34:F6:C8:1C:5E:4C:F2
            X509v3 Authority Key Identifier:
                keyid:8E:14:F1:76:11:CE:B4:13:18:4A:DC:9C:19:AE:F5:08:A8:49:B9:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:11:ca:8e:eb:18:b1:da:aa:1e:4a:8d:1e:c5:37:d9:d5:fa:
         11:6e:5b:8e:5d:9c:4c:0f:b7:38:97:83:f7:7f:6b:ac:89:ba:
         3e:46:7f:72:25:f0:d5:59:87:bc:7f:3b:7b:7a:fc:2b:79:e2:
         fa:b3:17:c2:57:5f:dc:af:93:cc:90:f7:73:fd:a1:51:a7:2d:
         ec:33:45:7b:6b:bb:87:60:e7:e1:86:3d:78:55:7e:04:24:0a:
         72:c3:d3:5c:71:79:da:c1:bc:d4:46:b3:a4:b3:66:62:7f:e3:
         fb:a7:7c:76:44:b5:8d:a1:a4:ae:5a:b7:b7:34:20:b0:1f:24:
         b7:c1:02:8a:98:ba:a2:dc:fe:32:4e:07:f4:c7:99:15:46:ca:
         5a:5f:40:31:1e:b9:b3:3d:4a:18:fe:d2:5a:dd:3e:4f:3d:65:
         23:26:65:29:1e:98:94:65:79:5b:eb:e5:eb:f8:bd:5f:6c:e3:
         7e:15:b8:af:b4:d1:91:27:c9:83:be:b0:a9:1d:b0:b7:d1:44:
         e9:cd:9b:02:ab:3c:16:b3:14:7e:2e:ba:b7:46:0d:17:5e:db:
         26:ec:01:57:cb:2c:f1:04:1b:cd:df:53:65:0e:79:b5:e6:c6:
         48:86:dd:ee:01:16:df:b9:45:cd:58:d5:66:ad:43:21:1a:67:
         f6:a7:d1:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----