Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
File:                     UfSwsEaesNBxmUzYI480vvAMb74.mft (raw, json)
Hash identifier:          qi4YfM2AGWoBlylmM1GwygSYickoR15vP5ymAaOq+gs=
Subject key identifier:   6E:4E:5B:8F:28:66:59:ED:CD:75:4A:2D:38:A5:50:C7:7A:33:5F:73
Authority key identifier: 51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE
Certificate issuer:       /CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
Certificate serial:       0199183FC065FC1AF3264DFEFB8046BB5D03
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
Manifest number:          05E0
Signing time:             Fri 05 Sep 2025 05:00:55 +0000
Manifest this update:     Fri 05 Sep 2025 05:00:55 +0000
Manifest next update:     Sat 06 Sep 2025 05:00:55 +0000
Files and hashes:         1: UfSwsEaesNBxmUzYI480vvAMb74.crl (hash: UzB5hy1+lwcoS3KTS91RPj04D55OqMIE9L76oungUX4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:18:3f:c0:65:fc:1a:f3:26:4d:fe:fb:80:46:bb:5d:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
        Validity
            Not Before: Sep  5 05:00:55 2025 GMT
            Not After : Sep  6 05:00:55 2025 GMT
        Subject: CN=6e4e5b8f286659edcd754a2d38a550c77a335f73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:71:df:df:09:c5:29:25:c8:c7:86:da:f0:14:
                    b6:96:af:70:17:69:52:db:d3:2e:93:bc:57:0e:08:
                    c9:32:17:2e:d2:4a:66:1e:a4:eb:47:2b:48:96:de:
                    ca:dd:72:65:0a:bc:6b:3b:05:18:ea:fd:be:59:7c:
                    48:09:a4:aa:7a:2d:7c:34:d2:f8:99:92:4d:09:2c:
                    22:e3:07:96:1e:55:04:07:ff:3a:bc:05:21:d2:7b:
                    f2:86:e9:7d:fa:1e:b6:b0:5f:a4:1f:1f:22:e2:80:
                    70:98:d6:67:8d:5a:69:e9:2b:59:a4:67:a3:e4:30:
                    14:ce:b6:51:23:1a:38:8e:07:84:ff:6f:cd:26:b0:
                    4c:f8:e6:fd:75:23:b2:d9:54:4c:6d:28:8f:05:6c:
                    11:66:49:a7:33:6f:01:74:a9:af:c8:6c:c6:24:cc:
                    60:ad:af:30:a1:f7:7c:63:5e:bf:2e:d6:62:0d:9a:
                    3e:33:e3:d3:32:29:46:b9:cb:70:99:1c:9a:53:f0:
                    5d:34:08:86:e2:39:0a:04:55:60:80:f1:af:bc:a1:
                    fe:d6:8d:10:3a:57:51:74:a1:9b:bf:b0:a7:7a:ef:
                    6c:f6:bf:24:a3:99:40:a3:f3:62:71:94:02:97:cc:
                    5c:a8:65:a5:51:e4:02:af:64:43:6e:48:54:18:21:
                    04:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:4E:5B:8F:28:66:59:ED:CD:75:4A:2D:38:A5:50:C7:7A:33:5F:73
            X509v3 Authority Key Identifier:
                keyid:51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:f5:b5:52:0f:56:26:be:40:8c:46:c7:47:da:43:7f:49:8a:
         0a:a0:9d:66:9e:ad:06:97:75:80:a9:38:48:be:91:f5:9a:30:
         5d:cd:7e:a4:be:a8:b4:1f:c8:4b:1c:32:78:f4:ae:e1:8e:4f:
         7f:03:06:93:33:e1:ba:88:e0:08:2d:57:c4:1f:88:97:92:0e:
         73:78:1b:8b:c9:0b:5c:8d:e7:50:e5:95:e3:ad:e6:82:5a:44:
         57:2a:7a:c0:0b:af:28:88:f8:4b:f3:52:05:7a:51:5c:e4:b4:
         fd:2e:e2:34:0a:43:3d:b7:14:8a:00:1b:07:b0:e5:eb:38:89:
         b2:02:12:01:9c:c5:b0:b9:9f:9d:26:f2:63:6c:51:ea:e8:6c:
         b7:5b:06:e3:c2:e0:39:26:95:da:f4:9d:93:da:a7:01:b2:61:
         ef:8c:87:cb:72:11:78:94:87:02:f7:62:51:a5:35:d4:09:40:
         f1:3f:1a:f2:73:06:68:d4:4d:7f:d2:25:82:8c:02:14:c8:c7:
         c6:03:49:d4:33:bc:0b:4d:d1:50:9c:fc:ba:91:79:b6:f2:60:
         27:25:77:95:c5:42:f2:c4:c4:eb:41:24:ec:10:b9:c7:8e:cc:
         c4:16:2d:8c:59:51:05:c4:d9:70:55:44:44:83:de:11:bf:79:
         54:46:09:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----