Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/382fdf-b73c-4979-86c5-ed4498115033/1/fIJLILMxe7jIm-pPDzTQlC0dcU4.mft
File:                     fIJLILMxe7jIm-pPDzTQlC0dcU4.mft (raw, json)
Hash identifier:          JBZMdoLYsGo6DodXCkafJEY2aMw3PT5MpO5GhaLYNFc=
Subject key identifier:   02:03:2B:11:7C:C1:F6:CD:3D:F0:7C:6F:7E:36:BA:E7:FE:CF:B6:5B
Authority key identifier: 7C:82:4B:20:B3:31:7B:B8:C8:9B:EA:4F:0F:34:D0:94:2D:1D:71:4E
Certificate issuer:       /CN=7c824b20b3317bb8c89bea4f0f34d0942d1d714e
Certificate serial:       01976EBDDCB08859BBD6B60ABF680E626785
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fIJLILMxe7jIm-pPDzTQlC0dcU4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/382fdf-b73c-4979-86c5-ed4498115033/1/fIJLILMxe7jIm-pPDzTQlC0dcU4.mft
Manifest number:          44
Signing time:             Sat 14 Jun 2025 14:00:25 +0000
Manifest this update:     Sat 14 Jun 2025 14:00:25 +0000
Manifest next update:     Sun 15 Jun 2025 14:00:25 +0000
Files and hashes:         1: fIJLILMxe7jIm-pPDzTQlC0dcU4.crl (hash: X3XWXO4Fcc7mhoJwbV53u6Dw3D/ArJJjmRaUSBzSmko=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/382fdf-b73c-4979-86c5-ed4498115033/1/fIJLILMxe7jIm-pPDzTQlC0dcU4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/382fdf-b73c-4979-86c5-ed4498115033/1/fIJLILMxe7jIm-pPDzTQlC0dcU4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fIJLILMxe7jIm-pPDzTQlC0dcU4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 14:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6e:bd:dc:b0:88:59:bb:d6:b6:0a:bf:68:0e:62:67:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c824b20b3317bb8c89bea4f0f34d0942d1d714e
        Validity
            Not Before: Jun 14 14:00:25 2025 GMT
            Not After : Jun 15 14:00:25 2025 GMT
        Subject: CN=02032b117cc1f6cd3df07c6f7e36bae7fecfb65b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:81:71:95:4a:68:fa:03:5f:3a:42:d3:fd:92:
                    0b:ef:a0:0b:ce:20:b4:2c:d1:0b:ac:31:99:2b:fa:
                    f3:00:26:41:ba:1d:dc:ba:c5:8c:c2:1a:43:05:5d:
                    5f:e5:0b:cc:ff:49:de:1e:e6:1b:88:ce:5f:57:fa:
                    da:3e:e5:bd:12:46:1c:aa:b5:62:10:42:cf:50:9a:
                    1e:22:eb:96:16:92:e1:3f:39:c3:89:91:64:60:fb:
                    d0:a1:73:f7:72:2e:00:b5:95:1c:ae:ff:47:8f:ff:
                    6d:fc:71:91:19:91:4a:a5:b6:1a:0b:91:5d:46:63:
                    4a:41:bb:a8:a7:d2:89:a6:d3:b7:b9:96:10:35:2f:
                    56:1a:ec:0f:8c:a4:de:42:76:e1:0b:06:d4:4e:c5:
                    03:b4:7b:ca:a2:a7:2b:ed:a2:0f:fe:05:7d:0b:81:
                    f6:39:13:78:c7:51:89:ca:aa:29:2b:db:86:85:49:
                    ff:63:96:a4:78:57:5a:82:0f:b4:c7:7e:45:a6:e5:
                    51:b3:81:da:04:1f:84:57:01:90:a3:29:c8:9a:7e:
                    a8:62:96:0e:50:11:57:7e:cc:38:0b:96:9c:f2:90:
                    81:a7:87:ff:d3:fc:9c:46:65:16:7c:d2:1d:3d:20:
                    f9:fc:ec:c5:a0:fa:77:c4:2e:df:f6:e8:c5:4f:54:
                    38:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:03:2B:11:7C:C1:F6:CD:3D:F0:7C:6F:7E:36:BA:E7:FE:CF:B6:5B
            X509v3 Authority Key Identifier:
                keyid:7C:82:4B:20:B3:31:7B:B8:C8:9B:EA:4F:0F:34:D0:94:2D:1D:71:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fIJLILMxe7jIm-pPDzTQlC0dcU4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/382fdf-b73c-4979-86c5-ed4498115033/1/fIJLILMxe7jIm-pPDzTQlC0dcU4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/382fdf-b73c-4979-86c5-ed4498115033/1/fIJLILMxe7jIm-pPDzTQlC0dcU4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:f0:75:8b:13:13:47:b6:c0:f9:9c:71:8b:c3:75:ef:fc:68:
         21:b1:d4:31:e5:77:dc:35:e8:23:c3:db:d4:a2:7f:1e:9f:85:
         d5:59:9a:f2:8f:45:e7:69:00:3d:41:89:fb:fa:c5:79:b8:e2:
         0f:d9:55:60:69:a6:77:53:df:04:be:2f:89:3e:6a:49:8a:13:
         7b:83:cb:f3:3c:63:72:f1:f5:3a:08:95:cf:e7:56:25:a2:44:
         db:39:31:2f:29:28:15:5a:b5:42:86:af:c7:06:46:7d:30:ca:
         7f:b1:fe:17:1d:3f:34:a5:6e:44:5c:28:84:09:0b:f2:28:7f:
         0d:3e:d4:16:cc:1a:33:d0:2d:51:62:31:70:8e:16:8a:b7:cc:
         95:89:57:14:3e:00:b5:05:d1:43:49:6c:36:30:a3:56:8c:72:
         01:d3:d1:f8:27:bc:e3:06:e9:c0:43:78:85:c8:ed:9d:fd:28:
         ab:5f:54:06:c6:3c:6e:13:ef:0f:21:76:7a:f1:92:0b:a6:27:
         89:8a:86:f7:83:d1:1f:9c:2b:25:8b:ea:40:9b:e5:2d:d5:8a:
         b5:5b:44:2d:8e:7f:db:ea:33:1d:d4:01:25:0b:e9:4e:8d:56:
         fe:2d:3c:bd:93:16:6c:56:f5:51:c7:12:88:6a:09:15:ed:06:
         83:e3:48:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----