Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2e2194-3f91-4939-a830-aa80b4e7f2fd/1/SRrcI2V17CPX67-9wgQ5kYAmvvw.mft
File:                     SRrcI2V17CPX67-9wgQ5kYAmvvw.mft (raw, json)
Hash identifier:          afbpBCB/3bHgMejeAfMr9TFFDjXtnngoWAQa+c1dqJY=
Subject key identifier:   F7:0B:8D:32:90:F1:BD:C5:B1:E5:36:26:0C:BD:5A:FC:6C:FC:E1:4F
Authority key identifier: 49:1A:DC:23:65:75:EC:23:D7:EB:BF:BD:C2:04:39:91:80:26:BE:FC
Certificate issuer:       /CN=491adc236575ec23d7ebbfbdc20439918026befc
Certificate serial:       01977308E12BD557EB8E9A8948880AB28EB0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SRrcI2V17CPX67-9wgQ5kYAmvvw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/2e2194-3f91-4939-a830-aa80b4e7f2fd/1/SRrcI2V17CPX67-9wgQ5kYAmvvw.mft
Manifest number:          12B9
Signing time:             Sun 15 Jun 2025 10:00:51 +0000
Manifest this update:     Sun 15 Jun 2025 10:00:51 +0000
Manifest next update:     Mon 16 Jun 2025 10:00:51 +0000
Files and hashes:         1: SRrcI2V17CPX67-9wgQ5kYAmvvw.crl (hash: PYdo7q0Um4KpMlmZmob+/wiaV/pj3Yipf4UNisqRX1w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/2e2194-3f91-4939-a830-aa80b4e7f2fd/1/SRrcI2V17CPX67-9wgQ5kYAmvvw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/2e2194-3f91-4939-a830-aa80b4e7f2fd/1/SRrcI2V17CPX67-9wgQ5kYAmvvw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SRrcI2V17CPX67-9wgQ5kYAmvvw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:08:e1:2b:d5:57:eb:8e:9a:89:48:88:0a:b2:8e:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=491adc236575ec23d7ebbfbdc20439918026befc
        Validity
            Not Before: Jun 15 10:00:51 2025 GMT
            Not After : Jun 16 10:00:51 2025 GMT
        Subject: CN=f70b8d3290f1bdc5b1e536260cbd5afc6cfce14f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:58:b3:49:3a:62:96:52:b4:93:04:8f:60:75:
                    41:e1:80:c1:fa:25:23:9f:97:c0:57:8c:75:0f:f0:
                    a1:f6:bd:26:a4:59:33:3b:7f:ee:80:62:76:d3:67:
                    2d:8a:f0:6a:d4:6d:b1:b3:83:58:cf:88:14:48:3c:
                    d2:52:49:14:fb:e8:a0:4b:05:30:7d:30:97:d4:5d:
                    de:44:84:8b:fe:22:2a:9d:9c:0d:a2:d5:1a:c6:29:
                    f4:59:9e:1f:b3:4d:f1:d9:f0:b2:14:a6:24:31:8a:
                    de:79:e2:ef:e5:02:3f:1e:dc:43:2b:71:8b:a9:e0:
                    6c:76:6d:3f:22:04:28:37:cd:c4:b2:93:d8:01:66:
                    c6:23:bd:5f:89:65:d8:2a:15:bf:2e:c1:4d:e8:42:
                    36:06:ef:5f:32:21:57:50:c4:cb:96:06:41:b5:56:
                    47:a9:cc:76:fe:df:c4:c1:2a:0a:bf:54:a2:fb:ee:
                    0f:dd:02:01:e0:01:6c:8e:bf:3f:d3:e3:2d:e1:85:
                    d8:2e:5c:5e:7f:d5:68:c6:59:55:53:fe:68:01:79:
                    9a:9e:90:fb:29:a8:d9:3b:56:db:5f:98:3e:be:92:
                    51:fe:f6:ec:09:3b:df:78:dd:d6:72:10:58:13:3c:
                    6b:11:5d:86:c8:cf:42:bc:34:ae:07:1b:c8:91:4f:
                    88:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:0B:8D:32:90:F1:BD:C5:B1:E5:36:26:0C:BD:5A:FC:6C:FC:E1:4F
            X509v3 Authority Key Identifier:
                keyid:49:1A:DC:23:65:75:EC:23:D7:EB:BF:BD:C2:04:39:91:80:26:BE:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SRrcI2V17CPX67-9wgQ5kYAmvvw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2e2194-3f91-4939-a830-aa80b4e7f2fd/1/SRrcI2V17CPX67-9wgQ5kYAmvvw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2e2194-3f91-4939-a830-aa80b4e7f2fd/1/SRrcI2V17CPX67-9wgQ5kYAmvvw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:5c:42:f6:45:79:a4:c1:7d:65:69:ab:f2:46:d5:05:b5:bf:
         74:cb:fd:5b:16:2c:eb:85:49:e6:fe:cf:2f:7c:f4:00:f3:09:
         eb:34:44:cd:ff:05:41:aa:24:b3:8d:d4:08:66:e1:2d:78:8d:
         b8:bf:01:33:f2:11:ba:e5:b3:e0:75:5b:28:3c:4c:ca:39:c4:
         04:39:74:bc:47:a7:9d:96:7e:7e:c1:bd:5c:b8:6d:c6:c2:be:
         91:5d:d0:de:02:f4:5d:72:25:b7:34:1e:a7:b4:f4:63:6e:ea:
         e9:a7:fa:1e:3f:20:37:04:c8:9b:87:45:4c:ba:a6:f8:1d:02:
         7f:6e:67:f4:da:f3:2f:e9:9d:4c:9d:6f:6f:fe:28:fd:94:1a:
         d6:37:38:0d:41:bd:6b:03:7f:56:de:8e:9f:76:29:43:6f:cf:
         19:93:3d:09:53:ca:1c:c3:e2:4e:12:6a:5b:31:a5:66:02:1d:
         50:7a:d5:b1:77:02:a8:78:f6:a1:a7:97:73:84:cd:ec:31:0c:
         f5:23:ea:ff:4c:ea:ee:b6:4f:51:fd:b3:17:e5:d2:e7:4a:51:
         4f:07:7f:04:ea:a3:c3:3f:1a:ef:38:d5:6f:0a:6e:7d:f1:bc:
         17:b6:8a:0a:09:5f:79:a5:d2:ab:b9:51:bd:f4:6b:bb:d9:9d:
         d0:2a:f7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----