Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/439275-30bf-4f61-b4d5-80930b284a69/1/ROzt5-D_vTCKy5ESE2jfjWyy6WE.mft
File:                     ROzt5-D_vTCKy5ESE2jfjWyy6WE.mft (raw, json)
Hash identifier:          9eZ4wKfPuiBI5LRq6/9k5uS3Mkx3hlujcKWlc+TE1Ec=
Subject key identifier:   B5:D7:13:AA:2B:5C:05:AA:24:A6:DD:1A:0F:01:AC:97:22:B0:51:69
Authority key identifier: 44:EC:ED:E7:E0:FF:BD:30:8A:CB:91:12:13:68:DF:8D:6C:B2:E9:61
Certificate issuer:       /CN=44ecede7e0ffbd308acb91121368df8d6cb2e961
Certificate serial:       0199221E218FEDF713F7EA2CDDB8217AA9F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ROzt5-D_vTCKy5ESE2jfjWyy6WE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/439275-30bf-4f61-b4d5-80930b284a69/1/ROzt5-D_vTCKy5ESE2jfjWyy6WE.mft
Manifest number:          166F
Signing time:             Sun 07 Sep 2025 03:00:23 +0000
Manifest this update:     Sun 07 Sep 2025 03:00:23 +0000
Manifest next update:     Mon 08 Sep 2025 03:00:23 +0000
Files and hashes:         1: ROzt5-D_vTCKy5ESE2jfjWyy6WE.crl (hash: Tm0BHT4oDl9jqmTBoAQ7o6t/eJgEkLLqi6sEu8ncULc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cc/439275-30bf-4f61-b4d5-80930b284a69/1/ROzt5-D_vTCKy5ESE2jfjWyy6WE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cc/439275-30bf-4f61-b4d5-80930b284a69/1/ROzt5-D_vTCKy5ESE2jfjWyy6WE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ROzt5-D_vTCKy5ESE2jfjWyy6WE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 03:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:1e:21:8f:ed:f7:13:f7:ea:2c:dd:b8:21:7a:a9:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44ecede7e0ffbd308acb91121368df8d6cb2e961
        Validity
            Not Before: Sep  7 03:00:23 2025 GMT
            Not After : Sep  8 03:00:23 2025 GMT
        Subject: CN=b5d713aa2b5c05aa24a6dd1a0f01ac9722b05169
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:6f:81:e2:12:86:e3:e0:18:13:09:54:51:b9:
                    7b:4d:49:e7:75:4f:71:14:ae:1e:08:de:e4:7d:9d:
                    5b:58:79:56:df:04:4f:ce:11:0c:ac:d7:22:b1:31:
                    55:f0:7e:4b:c1:3f:af:bd:bc:63:a1:30:96:d3:d0:
                    08:f2:7e:21:e7:95:5d:00:25:21:7e:33:7a:e2:76:
                    f9:57:7c:11:07:31:99:4e:15:a3:e2:5b:93:54:0c:
                    33:46:fe:7f:f0:dd:73:ed:d1:75:63:d4:75:c4:2a:
                    15:d5:4e:eb:4a:77:d6:15:67:4a:81:a0:86:13:8c:
                    8d:5c:de:3e:66:c0:c0:81:63:62:2d:fd:a4:40:06:
                    6b:1f:1e:64:2b:5b:12:8a:60:7e:99:08:cf:89:95:
                    0d:a3:43:d6:4e:d5:60:15:36:dd:67:23:34:8d:1f:
                    62:29:17:90:8d:75:5f:86:21:df:63:4a:1e:c8:5e:
                    a0:98:9d:f5:0c:a4:4c:a7:ee:9c:78:e2:00:26:d9:
                    ae:c4:c1:24:e2:06:3f:6a:32:34:37:10:e7:f8:f5:
                    24:b6:f3:2a:67:21:18:3c:4d:2e:47:9f:c8:7d:9c:
                    76:43:ca:ad:3c:c3:cc:55:fd:ba:af:09:fd:55:1b:
                    2c:41:bd:e6:3d:6d:84:72:d7:b4:de:90:85:54:65:
                    24:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:D7:13:AA:2B:5C:05:AA:24:A6:DD:1A:0F:01:AC:97:22:B0:51:69
            X509v3 Authority Key Identifier:
                keyid:44:EC:ED:E7:E0:FF:BD:30:8A:CB:91:12:13:68:DF:8D:6C:B2:E9:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROzt5-D_vTCKy5ESE2jfjWyy6WE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/439275-30bf-4f61-b4d5-80930b284a69/1/ROzt5-D_vTCKy5ESE2jfjWyy6WE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/439275-30bf-4f61-b4d5-80930b284a69/1/ROzt5-D_vTCKy5ESE2jfjWyy6WE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:34:5d:bb:80:61:9e:0b:75:e8:68:1a:70:5e:2e:1d:aa:56:
         b8:40:eb:46:36:ca:4f:15:24:73:a0:f8:8e:1a:07:64:44:0b:
         65:16:7e:a5:ef:0e:14:1b:a2:9c:a9:df:61:d2:00:78:8f:06:
         69:96:49:c7:16:4d:50:fb:77:a5:b1:11:aa:02:0c:ea:bb:29:
         96:3c:3a:43:f1:2f:7f:ac:17:51:d7:07:1f:61:2e:88:0f:29:
         db:c9:2d:f5:de:4e:4a:36:c6:07:4d:31:6f:8e:1c:5d:80:56:
         c9:53:f1:cd:57:6f:ce:06:b0:63:d0:bc:eb:b0:8c:f3:03:6f:
         ca:12:d4:22:e5:66:70:4d:0a:87:b4:74:45:9e:c7:cb:51:92:
         77:40:33:ce:19:d5:12:b6:a0:b5:f0:09:7f:80:a7:9d:b0:d1:
         62:75:92:52:fc:fe:e3:fd:a6:ec:65:b9:1d:8a:21:49:08:63:
         3f:4d:60:ab:88:42:4c:a7:bd:54:60:95:8c:58:a0:7e:db:d9:
         76:e7:d1:66:50:2f:b3:a0:44:a3:4d:93:9d:ed:51:6a:3a:6e:
         c3:2e:b1:99:e0:8f:46:34:82:d7:38:06:18:2b:e7:48:55:f7:
         64:e8:f8:2d:5c:31:cb:7b:29:ca:4c:2b:66:97:1a:bd:bd:d3:
         5f:c8:f8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----