Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
File:                     ELZc9vpeH8roz4TJcB44vftjqrM.mft (raw, json)
Hash identifier:          bLRkRgB0RFgOpFWIh+j1yPI5nrw1dzcqNJPGeW4ck2w=
Subject key identifier:   0F:1D:6F:B7:F3:03:56:43:BA:D1:C7:33:FC:E8:C8:AB:99:92:F8:36
Authority key identifier: 10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3
Certificate issuer:       /CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
Certificate serial:       019922FA74E247D642985894B70E2F8CD9A7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
Manifest number:          0F1E
Signing time:             Sun 07 Sep 2025 07:01:03 +0000
Manifest this update:     Sun 07 Sep 2025 07:01:03 +0000
Manifest next update:     Mon 08 Sep 2025 07:01:03 +0000
Files and hashes:         1: ELZc9vpeH8roz4TJcB44vftjqrM.crl (hash: rXsUXkJTf6FJD2dztOJ/ODUkBo3hZSYjYw0MHHqsrtw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:74:e2:47:d6:42:98:58:94:b7:0e:2f:8c:d9:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
        Validity
            Not Before: Sep  7 07:01:03 2025 GMT
            Not After : Sep  8 07:01:03 2025 GMT
        Subject: CN=0f1d6fb7f3035643bad1c733fce8c8ab9992f836
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:a1:8e:b3:ae:40:61:56:bf:aa:60:42:98:3d:
                    63:6f:fe:68:05:2a:28:0e:d3:47:73:23:c2:ee:28:
                    4c:3d:ab:34:68:03:2d:9c:b7:02:87:3d:69:dc:5a:
                    29:b0:a5:0f:b6:35:08:6a:8a:c4:01:b9:e1:d7:8e:
                    2f:50:86:da:4b:c9:23:6d:29:79:3f:5c:eb:c9:b6:
                    8f:bc:3e:df:15:6b:3f:6e:4f:ae:e6:00:66:e8:93:
                    ce:76:cb:e5:f9:d9:c4:f7:6e:19:b4:66:09:32:1b:
                    a9:a2:72:43:46:13:4d:6d:b7:b4:0f:e2:58:c0:e5:
                    53:d6:b7:5a:92:63:86:53:fc:a9:5c:7d:46:a5:69:
                    60:db:0b:c9:fe:cd:8f:ec:a4:09:9f:63:ba:6f:5e:
                    c3:19:7b:e3:79:9d:f3:4e:35:8f:12:60:8b:6e:ea:
                    a1:fd:89:00:db:1f:ba:8f:6d:7e:32:22:43:4e:01:
                    80:fc:3a:a8:34:2f:8d:10:b6:93:d8:18:f6:01:b5:
                    47:20:71:1f:03:6e:e3:8f:25:7c:38:33:42:b5:80:
                    f8:66:b6:e9:8f:1a:6b:e3:af:1d:ba:13:31:24:2a:
                    e2:6c:80:70:67:19:43:f7:c7:5b:27:0b:da:5b:bb:
                    a9:22:39:a7:8a:8e:1b:cf:df:28:9a:27:ac:a7:d7:
                    34:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:1D:6F:B7:F3:03:56:43:BA:D1:C7:33:FC:E8:C8:AB:99:92:F8:36
            X509v3 Authority Key Identifier:
                keyid:10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:c7:90:ac:5f:ad:2a:ac:81:4b:3f:f0:2f:77:62:2c:66:38:
         b3:e7:5e:52:9b:47:7d:55:ee:fc:f4:a6:8d:dd:d6:7b:be:34:
         47:6f:c5:8f:27:fe:50:87:83:b8:90:c6:8a:bf:bd:85:e0:7d:
         24:d2:68:a9:29:fd:d7:00:1e:49:c8:24:93:25:d0:09:13:26:
         0f:84:7e:bf:4d:2e:e7:1d:e6:ae:48:f6:0d:82:9f:1e:cf:03:
         96:06:7c:de:f2:bb:d3:da:c3:0f:5c:f2:fa:9d:d0:6c:bd:ea:
         7a:7f:ec:ad:49:62:1b:9a:10:64:e3:55:85:17:79:67:48:df:
         fd:e5:2a:d5:0c:57:36:b3:59:de:6f:d0:6c:5c:1b:9f:cf:6b:
         55:cc:fb:ff:fe:24:c3:a7:51:87:5d:59:02:d8:93:8b:ff:e4:
         86:e2:1a:67:eb:6b:74:9b:60:20:72:41:32:51:67:8f:f6:1b:
         b8:4a:a6:25:1e:ad:24:f3:78:0e:ae:eb:89:e8:5d:0a:fb:a3:
         c1:61:00:7c:f5:d8:49:26:ca:d6:3d:c9:77:19:a7:a7:34:fc:
         6c:83:de:70:87:be:9e:59:64:dd:89:6c:4b:d5:7e:de:95:0e:
         45:20:34:42:81:ba:8d:51:44:a7:01:05:33:62:7b:c5:b7:4a:
         5d:99:17:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----