Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
File:                     ur8nIaXXgzW3uX22OuxDXJyji8c.mft (raw, json)
Hash identifier:          lKJwTDZml7zBtOSB5fRfyEqtX2Du1/7dAyYaO3TwmBk=
Subject key identifier:   7C:A6:AB:DF:59:7D:C9:49:76:08:0E:05:EA:09:FB:C2:3F:C3:CC:85
Authority key identifier: BA:BF:27:21:A5:D7:83:35:B7:B9:7D:B6:3A:EC:43:5C:9C:A3:8B:C7
Certificate issuer:       /CN=babf2721a5d78335b7b97db63aec435c9ca38bc7
Certificate serial:       019776E5E2906CFF4371357716619187FA18
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
Manifest number:          078E
Signing time:             Mon 16 Jun 2025 04:01:06 +0000
Manifest this update:     Mon 16 Jun 2025 04:01:06 +0000
Manifest next update:     Tue 17 Jun 2025 04:01:06 +0000
Files and hashes:         1: ur8nIaXXgzW3uX22OuxDXJyji8c.crl (hash: ajjjK49wwv6wUd+vRKykIpuUIX/p1MiG7zhcsH41TFQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 04:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:76:e5:e2:90:6c:ff:43:71:35:77:16:61:91:87:fa:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=babf2721a5d78335b7b97db63aec435c9ca38bc7
        Validity
            Not Before: Jun 16 04:01:06 2025 GMT
            Not After : Jun 17 04:01:06 2025 GMT
        Subject: CN=7ca6abdf597dc94976080e05ea09fbc23fc3cc85
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:97:4b:65:c6:6d:42:60:fc:13:00:73:42:74:
                    b2:aa:46:ae:f2:66:a5:34:fa:86:ef:6c:1f:65:23:
                    ba:d1:59:1a:04:65:70:67:66:93:0d:62:a6:99:30:
                    8c:e8:d6:cc:ed:39:80:79:e3:56:8f:35:6b:7f:d3:
                    69:19:6d:f4:d1:68:7b:5c:d6:50:b3:dd:1e:5e:d1:
                    75:fd:a1:62:f1:a8:f4:58:d9:eb:5d:73:7e:f1:23:
                    22:64:62:0a:10:1f:95:aa:d7:34:c7:63:d7:89:eb:
                    c4:bd:a3:68:a6:2c:9d:8c:64:92:0b:59:1c:10:a0:
                    dc:3c:cc:c1:ed:7a:c3:48:76:e3:84:bd:d3:a0:bf:
                    ab:de:6e:86:ff:ae:f8:5f:43:f5:5b:50:46:61:bc:
                    69:78:d0:c3:6b:a2:e4:af:e0:14:c6:30:dd:fe:97:
                    21:4c:97:17:27:70:e2:ed:d7:69:96:bf:4f:44:48:
                    3f:1c:2f:5f:59:62:ed:2d:20:cb:0e:37:37:1f:f0:
                    67:38:7c:75:da:fb:ff:9a:b6:93:04:52:95:7b:89:
                    0b:7c:ff:47:d2:99:10:66:fb:aa:81:c5:2c:58:91:
                    dd:93:23:0c:1c:21:35:eb:8a:f4:14:20:3d:56:5c:
                    1e:72:a8:31:b6:7e:5b:06:2f:11:3f:83:31:a4:46:
                    a8:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:A6:AB:DF:59:7D:C9:49:76:08:0E:05:EA:09:FB:C2:3F:C3:CC:85
            X509v3 Authority Key Identifier:
                keyid:BA:BF:27:21:A5:D7:83:35:B7:B9:7D:B6:3A:EC:43:5C:9C:A3:8B:C7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:dd:cd:bc:34:4d:e1:e8:b1:33:dc:d9:df:c3:7e:a0:d3:cf:
         a4:39:65:5d:1f:87:9b:17:99:6b:ff:07:04:f2:a0:a9:bb:cc:
         32:ca:c1:b8:b1:cb:33:79:00:d0:78:0c:7b:6e:1f:40:c9:b3:
         76:e8:ad:9a:9e:c1:50:b2:1b:10:19:32:61:e9:56:05:66:7c:
         6c:bb:3e:e0:f8:f4:59:4a:d8:ac:8e:2b:ae:20:c8:a9:f8:bd:
         a8:f6:e6:66:3c:5e:55:d9:2c:76:d6:98:0c:98:75:b5:10:24:
         65:49:a4:56:d1:00:9d:1a:41:15:2d:63:2c:1a:8f:84:10:93:
         1d:ce:d6:b3:34:ca:ea:ec:d6:9c:4c:71:2e:ab:ec:81:94:a7:
         51:f4:91:6c:9c:bf:29:c1:87:11:5e:33:13:9b:5d:ad:ca:5d:
         69:b3:c6:fb:82:e0:22:80:f6:f3:fe:ff:46:7c:e4:0f:f6:e5:
         c0:fe:4f:3c:54:47:86:a7:20:08:65:c3:8b:87:80:4d:89:d3:
         11:df:93:cf:9c:62:87:9d:ad:3c:40:50:c1:95:37:f0:6a:51:
         ca:2a:bb:d6:44:ce:b1:b8:87:dd:c0:f7:1d:e0:ca:06:f5:a3:
         8e:c3:20:d5:22:eb:eb:c5:ad:a3:61:38:51:fa:12:28:f3:61:
         57:2d:f9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----