Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
File:                     XZOOJrKYSy-hYarAewS9uFCq3RY.mft (raw, json)
Hash identifier:          PimvIktv4BIKGdKjRWmJ6VmKFolc9MHJvdGYEN4hI58=
Subject key identifier:   E7:C3:21:8C:9E:D5:74:CD:14:87:1E:E5:4A:12:62:3F:A4:ED:1F:3B
Authority key identifier: 5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16
Certificate issuer:       /CN=5d938e26b2984b2fa161aac07b04bdb850aadd16
Certificate serial:       01976E19C2C865CD5416D47A208C852A9A0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
Manifest number:          0975
Signing time:             Sat 14 Jun 2025 11:01:11 +0000
Manifest this update:     Sat 14 Jun 2025 11:01:11 +0000
Manifest next update:     Sun 15 Jun 2025 11:01:11 +0000
Files and hashes:         1: XZOOJrKYSy-hYarAewS9uFCq3RY.crl (hash: iXZPQ4EWUH34OX9lXa6OGYsdREcedBZwTy6Rmr96TYI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 11:01:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6e:19:c2:c8:65:cd:54:16:d4:7a:20:8c:85:2a:9a:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d938e26b2984b2fa161aac07b04bdb850aadd16
        Validity
            Not Before: Jun 14 11:01:11 2025 GMT
            Not After : Jun 15 11:01:11 2025 GMT
        Subject: CN=e7c3218c9ed574cd14871ee54a12623fa4ed1f3b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:f1:63:79:38:1b:45:c4:31:b1:91:38:18:66:
                    42:c1:3b:07:3b:d4:4f:a2:2d:48:1a:f6:bc:0c:68:
                    c1:84:6c:08:0b:2f:f1:85:10:3b:8e:62:12:2c:8a:
                    f6:5a:34:91:30:a5:cf:6d:a1:e6:32:ca:2a:30:1d:
                    3c:3e:ac:55:f1:a8:da:36:0a:98:2c:e4:af:93:db:
                    ea:7c:17:6c:ad:49:17:e7:71:2a:6f:64:27:77:45:
                    2c:af:29:a5:ea:43:c5:79:33:77:87:96:28:a1:97:
                    b2:2d:79:82:3c:2d:47:7e:cd:6f:45:fa:2f:ca:eb:
                    69:93:65:bd:55:00:73:02:1f:6e:03:6e:d5:22:a2:
                    7d:f5:c9:24:af:4e:c1:69:0a:0d:e7:7d:43:65:03:
                    66:b6:d9:ae:30:f4:5e:0b:41:bf:2b:67:59:92:32:
                    01:ea:27:7c:55:b1:52:59:8a:c7:81:b5:f2:88:62:
                    78:eb:be:c2:73:ac:3d:34:57:15:ce:38:f9:f2:d2:
                    8d:86:f8:c9:6b:c9:eb:92:2e:0d:ab:e5:1c:58:80:
                    8b:10:78:5e:c0:12:17:75:d8:36:4c:2f:d3:a5:b1:
                    15:ef:e3:67:45:8b:4a:13:3a:81:c3:a3:a0:3d:8a:
                    9e:dd:d6:0f:1a:c8:14:52:df:65:12:f8:f0:14:49:
                    c5:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:C3:21:8C:9E:D5:74:CD:14:87:1E:E5:4A:12:62:3F:A4:ED:1F:3B
            X509v3 Authority Key Identifier:
                keyid:5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:a7:23:1b:aa:97:4e:5c:a9:dd:39:3f:48:7d:6d:e7:06:99:
         48:f8:39:da:40:89:eb:11:d7:8f:af:ed:c1:08:5e:bd:03:58:
         88:2f:b2:59:c1:92:f9:09:54:dc:3c:bc:75:f1:39:03:35:65:
         1b:28:94:67:ee:f4:bc:ce:20:ea:b1:4d:46:d8:9c:5c:62:c8:
         e2:5d:67:60:f6:0e:c0:77:e3:f2:34:f0:0c:b1:a7:66:14:2e:
         c9:d2:ad:27:25:ac:f6:cd:dc:df:e3:a3:52:9c:11:8d:4b:03:
         55:5a:c8:92:21:ce:df:31:8d:8e:9d:33:0d:cc:ff:12:74:ca:
         38:0b:3c:09:66:6f:0f:b6:5a:05:bc:91:9d:fb:00:c3:06:a6:
         3a:c4:67:31:c8:48:8b:95:9a:77:a8:e2:ef:9f:94:57:07:b9:
         f6:00:06:c9:c1:39:61:2e:03:3a:66:79:56:37:76:10:bf:bf:
         87:10:fa:ff:bd:29:2c:21:55:6d:93:7c:2d:ff:c3:cb:4d:36:
         fc:86:64:e4:62:a4:b1:1f:15:77:86:eb:63:88:a1:96:b2:7f:
         2c:b3:ea:2f:da:d7:9d:87:da:37:2f:eb:72:42:b7:f3:43:2c:
         9c:a8:7b:70:ae:1e:5a:f9:3b:4b:e3:35:53:d3:4b:8d:e0:1c:
         65:09:d9:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----