Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
File:                     _ypds7oz42wW2_UmCy_idK5_siI.mft (raw, json)
Hash identifier:          5qakmSFDnsaDoBVq5B3mn7gC2decpntD6/pa/8uawXQ=
Subject key identifier:   C7:2B:AD:F1:2C:31:38:03:0D:65:9D:9D:C4:83:01:77:3D:B6:D3:7A
Authority key identifier: FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22
Certificate issuer:       /CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222
Certificate serial:       019922FA366E74E612C4C0254E1E33D73B96
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
Manifest number:          0D51
Signing time:             Sun 07 Sep 2025 07:00:47 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:47 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:47 +0000
Files and hashes:         1: _ypds7oz42wW2_UmCy_idK5_siI.crl (hash: yYduRZ0zPbsRtKWLti1SluFkv+3ugr1IPIUWIRwwnII=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:36:6e:74:e6:12:c4:c0:25:4e:1e:33:d7:3b:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222
        Validity
            Not Before: Sep  7 07:00:47 2025 GMT
            Not After : Sep  8 07:00:47 2025 GMT
        Subject: CN=c72badf12c3138030d659d9dc48301773db6d37a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:21:14:6e:3a:67:e4:8a:95:2e:c4:4a:4b:cb:
                    cf:23:f9:a0:16:40:cf:42:52:9d:3c:06:4b:7f:e2:
                    e1:8c:d8:fe:33:30:89:c8:c2:a4:32:93:e6:66:65:
                    4d:5f:de:80:81:03:46:a5:ff:f0:f6:b0:51:56:13:
                    d2:2b:6a:23:b3:cb:31:4b:30:ee:05:fd:09:7e:a8:
                    95:69:34:61:94:a8:4a:fe:33:34:31:a1:a8:17:13:
                    2e:f3:d6:5c:50:f4:a8:f3:eb:96:01:59:21:3a:8f:
                    1b:81:c0:dc:2c:73:a8:c1:ff:ff:20:55:26:ee:f0:
                    1b:2b:31:c9:23:e5:6d:38:11:d4:56:f5:1f:99:fb:
                    21:13:f3:f2:ad:87:56:f5:6c:31:4a:e7:93:da:c9:
                    04:9e:01:0a:77:8d:40:27:f3:6a:e2:a5:53:3b:81:
                    36:71:d7:51:87:e6:32:a8:c9:e6:97:2b:d1:ca:00:
                    aa:4f:55:e8:d6:69:60:9b:c2:3d:b6:2e:26:ca:2e:
                    63:49:2d:26:d1:d4:79:27:5f:1d:98:bc:6d:4c:b3:
                    07:07:b8:9e:af:93:d8:6c:fe:ab:59:9b:4e:47:bc:
                    50:22:80:c7:a1:04:e7:a7:32:37:9a:53:cb:b5:8b:
                    26:20:38:0b:f8:e9:da:d1:92:47:92:03:02:74:fa:
                    8e:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:2B:AD:F1:2C:31:38:03:0D:65:9D:9D:C4:83:01:77:3D:B6:D3:7A
            X509v3 Authority Key Identifier:
                keyid:FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:05:57:22:ee:db:18:8e:e2:4c:ea:f7:6b:26:9b:54:8e:d1:
         71:97:f0:6f:b9:6d:fa:45:10:4f:cf:a7:0c:8f:ab:d9:87:24:
         68:70:64:a1:9c:1d:7c:1b:6f:41:23:25:96:0f:6c:d5:ca:05:
         5a:44:9b:8b:2e:a9:3d:d9:5e:bb:ad:5d:40:30:98:2c:29:d1:
         4f:04:32:02:1d:34:f7:c6:6e:e9:0e:8f:92:2c:45:e9:85:da:
         55:e7:5a:bb:3e:e0:2e:4e:c4:19:57:40:d5:26:40:4b:76:83:
         c8:9a:9b:c5:7a:f0:87:46:14:59:b8:7d:88:cc:b3:f7:0b:37:
         2e:78:aa:66:86:b1:a1:62:bb:c1:66:78:84:4a:39:4f:ef:5d:
         43:83:b5:fe:7f:c0:ac:da:3e:b0:dc:39:1d:6f:f5:d0:7d:51:
         25:86:0e:38:3b:2f:25:8c:ce:e2:8f:bb:63:8b:e0:ca:3e:a4:
         77:92:3a:f4:98:a2:5d:73:f8:c2:9d:8d:5c:75:99:f2:b6:16:
         c9:da:00:03:d7:7b:1e:ec:c8:e5:88:9b:be:3e:50:8c:4a:cd:
         bc:b2:03:f9:4c:e5:09:67:b7:4c:ab:ec:1c:3e:bc:c6:15:61:
         4b:85:95:1c:d9:28:d2:eb:60:f6:9e:6d:96:b0:78:98:b4:ab:
         fd:06:05:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----