Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
File:                     O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft (raw, json)
Hash identifier:          6q+Cw5RuNHG1vz3bjlJvvXGrNtCEx7RIdkrd/M8Nh6A=
Subject key identifier:   FC:99:83:F1:DA:15:D7:C3:9E:B4:19:D6:B4:BC:F0:BC:F2:5A:FF:13
Authority key identifier: 3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3
Certificate issuer:       /CN=3bee6066bb652c648c7a87099d0d9354546060d3
Certificate serial:       019778D476E5E9F6A6EE225E2B36A50ED42D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
Manifest number:          1595
Signing time:             Mon 16 Jun 2025 13:01:19 +0000
Manifest this update:     Mon 16 Jun 2025 13:01:19 +0000
Manifest next update:     Tue 17 Jun 2025 13:01:19 +0000
Files and hashes:         1: O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl (hash: 7N88Nq9sefRAC4R5F7/OOBdoI7b6didHJhx762nogUs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 13:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:78:d4:76:e5:e9:f6:a6:ee:22:5e:2b:36:a5:0e:d4:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3bee6066bb652c648c7a87099d0d9354546060d3
        Validity
            Not Before: Jun 16 13:01:19 2025 GMT
            Not After : Jun 17 13:01:19 2025 GMT
        Subject: CN=fc9983f1da15d7c39eb419d6b4bcf0bcf25aff13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:91:bb:6a:6a:d3:1b:ad:52:58:ad:45:62:68:
                    18:8a:7c:fb:a4:2d:b0:9e:8b:ca:bd:48:24:97:db:
                    98:73:aa:f8:86:21:07:0b:7a:64:77:df:4d:55:80:
                    d5:e5:d6:a1:ab:bc:2d:0e:fa:e9:7c:ab:eb:b7:ab:
                    74:0d:da:56:10:6c:5e:b0:85:57:39:45:5b:cc:ce:
                    64:84:30:0e:e0:00:60:57:ce:24:7b:a5:06:c7:99:
                    b2:96:77:0e:5b:dd:db:45:10:90:15:7b:b3:b7:41:
                    97:2a:fe:8e:5a:0d:98:fe:8b:82:c8:a1:81:ac:66:
                    ec:50:63:2a:f0:4f:3a:48:f4:1f:e2:ea:e1:47:24:
                    9c:19:29:ae:53:12:eb:44:84:b4:d3:a5:98:d9:a7:
                    07:61:93:12:6d:39:97:a8:ee:14:2f:a9:a9:4f:74:
                    f3:c5:59:91:fc:4c:39:24:47:cc:49:e8:c1:47:f2:
                    c4:eb:a4:3a:86:82:dd:92:3f:67:92:18:e7:90:6f:
                    ed:b3:d2:09:27:e0:3d:48:68:f7:60:5c:ba:fc:13:
                    51:be:88:28:8f:54:3c:9f:15:aa:06:b0:98:f1:da:
                    04:64:7a:2a:c2:04:2b:9b:70:ee:0a:c1:07:97:7e:
                    47:da:e6:01:11:97:1e:fe:29:78:55:fe:f6:24:e9:
                    25:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:99:83:F1:DA:15:D7:C3:9E:B4:19:D6:B4:BC:F0:BC:F2:5A:FF:13
            X509v3 Authority Key Identifier:
                keyid:3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:b4:9c:ae:81:ac:60:0e:45:df:ca:4b:33:19:99:9a:6f:19:
         e0:8d:37:4e:55:c6:2b:35:d6:61:32:f2:2e:97:f6:bc:e7:02:
         be:dc:38:5d:97:29:05:55:ad:7b:f8:99:c7:cc:e2:31:20:33:
         fd:c2:8a:d6:64:42:b9:1a:ac:d3:b7:e7:0e:05:6b:c3:0b:e0:
         2b:c4:d5:84:53:c7:2a:d1:94:b1:d7:e1:87:18:bd:a6:ba:2f:
         4d:47:20:cf:d7:41:d5:77:93:ab:2c:24:e0:8f:c6:a3:8d:f6:
         87:ed:c8:cd:1a:f2:4a:9e:ba:12:57:bb:d9:16:d4:f6:92:6f:
         72:3a:df:04:fd:a7:1e:46:de:7d:1c:0b:c8:cf:64:c6:5a:c1:
         6a:e3:1c:e6:e7:e4:92:54:af:96:b1:6a:7b:e1:6c:a1:72:bd:
         3d:a4:1a:07:df:c6:dd:05:bd:e7:ca:de:04:14:78:91:dc:19:
         6a:b6:df:4e:67:9b:dd:9a:5f:af:f6:c5:0b:fa:df:14:a9:70:
         cd:a5:e5:dc:7b:8d:94:15:dd:6c:b9:77:2e:1e:13:86:41:90:
         15:9b:74:c6:62:f3:a9:35:b3:84:05:e8:39:cd:4f:e3:a2:61:
         27:97:d5:69:7a:0f:a2:bf:b9:c0:5a:3d:cd:b1:e3:fd:e3:dc:
         2d:97:16:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----