Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
File:                     gbv0m8K-YG6m9Ivb-WJX3natfMA.mft (raw, json)
Hash identifier:          Qq7ppVkiCFnjr+VqwOc7wsFRA+KzUEtwvCwULvnKmck=
Subject key identifier:   DC:12:82:7C:F2:16:BD:7A:34:49:FF:49:A8:36:0E:89:6C:A7:2E:EB
Authority key identifier: 81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0
Certificate issuer:       /CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
Certificate serial:       019921B146A9A245D99E09D58FCCA499E6FF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
Manifest number:          166E
Signing time:             Sun 07 Sep 2025 01:01:29 +0000
Manifest this update:     Sun 07 Sep 2025 01:01:29 +0000
Manifest next update:     Mon 08 Sep 2025 01:01:29 +0000
Files and hashes:         1: gbv0m8K-YG6m9Ivb-WJX3natfMA.crl (hash: 4ZMUK2B4kD6PAk8q0MRuCaI46qGNbPSEZqnJov5c82Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b1:46:a9:a2:45:d9:9e:09:d5:8f:cc:a4:99:e6:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
        Validity
            Not Before: Sep  7 01:01:29 2025 GMT
            Not After : Sep  8 01:01:29 2025 GMT
        Subject: CN=dc12827cf216bd7a3449ff49a8360e896ca72eeb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:e3:70:2c:c4:f4:96:31:8a:7e:f3:a2:41:0c:
                    cd:55:d8:e4:a6:da:eb:6f:11:69:0a:d6:1b:02:2c:
                    41:a4:8c:00:f6:4e:59:7d:01:c1:4d:62:5d:bb:8b:
                    50:29:32:ea:17:7f:5d:f3:9e:e1:f4:7d:85:28:ce:
                    e1:46:fd:47:e1:f4:dc:3e:5a:b0:da:dd:fd:6a:33:
                    57:76:d2:12:38:a5:07:7a:c0:ef:0b:1e:a5:b3:0a:
                    cc:4c:08:d7:76:37:80:36:8e:42:02:18:13:5d:9e:
                    8b:22:21:3e:c8:b3:d0:c1:d6:37:cc:80:84:5a:f1:
                    b7:1b:ee:08:3f:ff:4c:01:37:43:45:47:ef:61:c7:
                    1d:1d:00:75:cb:f9:60:90:91:5a:c8:80:24:ed:97:
                    11:80:6f:91:f7:ec:f2:e4:99:2d:2c:d3:61:7f:9f:
                    46:1f:79:f8:ea:88:ca:88:79:0b:d7:bd:e4:11:d1:
                    dc:32:a5:b1:8f:1e:1c:50:3e:f1:8b:93:bf:b9:19:
                    e4:60:99:46:9e:2b:87:6b:c7:ae:63:e1:3d:5f:b7:
                    31:8c:1c:90:f0:20:01:d9:73:af:f7:55:40:bd:c6:
                    4d:5a:91:f1:7c:0f:0b:4b:a6:dc:3e:d9:ae:22:50:
                    d3:59:bd:72:77:c6:d2:82:60:cc:39:48:e2:47:eb:
                    c0:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:12:82:7C:F2:16:BD:7A:34:49:FF:49:A8:36:0E:89:6C:A7:2E:EB
            X509v3 Authority Key Identifier:
                keyid:81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:64:19:8f:1f:73:b2:fe:07:e7:64:d9:af:c8:8b:bf:f3:42:
         14:02:d6:a9:e1:09:35:27:e2:87:81:75:bc:d3:5e:da:57:b0:
         87:6f:31:3a:c4:70:ef:46:3d:2f:d4:15:4c:84:16:40:ce:52:
         0b:53:e5:9d:e7:30:ac:24:5b:b9:6f:04:39:a8:b9:a4:66:13:
         44:e0:c2:1b:cb:4d:60:53:f8:41:78:c6:c0:5d:36:fe:d5:4b:
         2f:85:ec:54:64:02:6f:80:6f:45:49:ac:a8:28:3d:f2:d6:f5:
         be:72:13:d1:c5:08:d6:3a:0f:7b:a7:d9:7f:31:5d:4a:3e:e0:
         47:9b:21:89:51:1d:39:6a:1d:56:d1:c4:9b:21:32:dd:2b:16:
         f5:12:91:30:2e:5a:de:0e:7c:e5:8a:34:94:7f:e6:83:71:89:
         e7:6d:03:81:e4:86:3f:e6:27:cf:45:6a:f0:1f:b0:c8:12:4a:
         5f:d3:eb:d4:7e:7e:52:8e:92:e8:4d:9e:c7:ec:d2:3e:2d:d1:
         25:f6:49:a8:b0:f6:7a:f9:62:db:d0:16:d6:60:08:ed:b4:13:
         f4:95:4f:23:9e:92:0f:a3:4d:22:03:de:60:3f:fb:1b:00:a5:
         6b:96:2d:32:60:39:39:d9:cb:e0:5d:4f:8c:0d:ed:99:88:ba:
         c2:bc:d8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----