Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
File:                     0phnd6RO0JQPKaeVx19Fpi9EuzM.mft (raw, json)
Hash identifier:          bRxXbbi230chRu47j3TYHmtR8ZgIgob8eRPGfCUCQsc=
Subject key identifier:   56:2A:97:BA:F5:35:8F:8B:FD:80:54:C8:65:1B:D6:28:95:05:46:59
Authority key identifier: D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33
Certificate issuer:       /CN=d2986777a44ed0940f29a795c75f45a62f44bb33
Certificate serial:       019923A0D9F7824943B7AAC48BDF7F929C48
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
Manifest number:          065C
Signing time:             Sun 07 Sep 2025 10:02:47 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:47 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:47 +0000
Files and hashes:         1: 0phnd6RO0JQPKaeVx19Fpi9EuzM.crl (hash: I4tKjXWsYP9MGtVdtwEaGWltowf/LIL+HkwaNbBcmgI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:d9:f7:82:49:43:b7:aa:c4:8b:df:7f:92:9c:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2986777a44ed0940f29a795c75f45a62f44bb33
        Validity
            Not Before: Sep  7 10:02:47 2025 GMT
            Not After : Sep  8 10:02:47 2025 GMT
        Subject: CN=562a97baf5358f8bfd8054c8651bd62895054659
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:df:92:09:59:c5:65:d6:3b:88:94:b0:4e:1d:
                    2e:86:9a:5c:6f:c9:89:1b:9f:5a:38:f4:e3:d6:ff:
                    9a:d0:33:8a:3e:35:3e:cb:50:10:7a:81:a2:8b:58:
                    eb:86:2d:bf:8d:d1:36:ac:8f:4f:75:6a:4c:64:00:
                    fb:ba:4d:11:ba:96:fa:58:c4:b2:91:84:3b:1a:48:
                    2b:ca:76:87:26:9d:40:a6:68:47:96:1a:b1:af:cc:
                    42:87:66:fa:14:e0:c8:f6:eb:11:80:c0:4e:6e:c8:
                    40:2b:3b:9e:d3:42:c7:93:2a:30:9b:c9:49:e3:7c:
                    98:66:f8:97:2b:75:9e:9c:fe:ba:da:53:b1:a5:51:
                    ae:29:1b:f8:c8:30:6c:83:1b:a5:0a:71:b3:7e:30:
                    cf:df:1d:5a:a2:6f:9a:23:10:2b:b5:96:2f:6d:c3:
                    84:20:3f:ae:a0:13:e1:e0:be:56:05:2a:29:b7:43:
                    02:81:d8:0e:13:77:2a:2d:99:bc:50:74:34:ef:27:
                    0c:90:e4:04:6b:cc:b7:31:d3:8f:ac:9f:d2:1e:69:
                    50:91:8f:e1:8b:e6:89:4c:73:a1:8b:dd:34:36:1b:
                    8a:de:af:ba:61:c8:9e:e2:e2:c2:94:84:c7:d8:04:
                    de:30:9b:a0:4e:03:4a:1e:93:30:06:f4:7a:2e:fa:
                    b5:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:2A:97:BA:F5:35:8F:8B:FD:80:54:C8:65:1B:D6:28:95:05:46:59
            X509v3 Authority Key Identifier:
                keyid:D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:c5:2b:fd:b8:bb:79:a3:5d:ad:ff:16:df:28:0b:bd:47:c5:
         cd:67:10:c0:09:31:84:24:e5:b8:6c:54:03:05:c6:16:0c:4d:
         67:5c:f0:85:12:43:c3:62:cd:88:60:b5:0c:43:a7:a0:18:5f:
         c7:a1:22:1c:53:7b:50:11:55:2a:fd:47:1f:0f:a2:1d:b7:26:
         27:68:ea:6f:e7:fa:d7:8b:32:f7:6f:85:17:c1:c6:64:dc:2c:
         06:a7:de:56:94:15:fc:d5:eb:8d:3b:9f:ee:5c:83:6c:e9:10:
         45:26:fb:d9:e7:aa:cd:55:4a:f6:07:fe:da:51:ea:1b:10:7d:
         d9:be:eb:2e:56:65:88:70:18:fe:1d:df:4e:d2:fa:c3:46:92:
         eb:0a:ac:8c:25:a4:75:e4:04:14:45:f8:cc:a9:8c:07:24:a0:
         e6:87:c2:5f:fa:28:10:9e:ad:36:87:23:01:f1:de:3d:70:24:
         3d:57:9e:aa:2e:44:f0:21:78:17:c4:3f:00:47:3f:5b:33:71:
         7b:a4:09:f4:d6:5f:8d:18:bc:87:8d:be:6f:41:0f:b0:7c:fe:
         43:b6:2d:2f:12:4e:cb:e7:ba:54:b4:ee:a7:d2:b3:13:80:d0:
         8b:2d:42:86:56:0a:46:ed:78:a3:bf:76:1a:bd:69:33:a0:4c:
         33:49:5e:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----