Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File:                     0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier:          WAT7Xyw/7we8r9fHiXa0+WNIb3jpASuvyZHA3jbI5o4=
Subject key identifier:   6C:36:71:CC:ED:19:3A:34:12:1C:55:09:85:30:EC:3F:D6:69:44:51
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer:       /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial:       01976C2ADD1DCDB1B2CA9BB5D76EDC15F028
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number:          0B11
Signing time:             Sat 14 Jun 2025 02:00:37 +0000
Manifest this update:     Sat 14 Jun 2025 02:00:37 +0000
Manifest next update:     Sun 15 Jun 2025 02:00:37 +0000
Files and hashes:         1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: jg/SUBmxAmwSkgI6iJl/VfKzB93E1yhpWVgU7PadYVc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2a:dd:1d:cd:b1:b2:ca:9b:b5:d7:6e:dc:15:f0:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
        Validity
            Not Before: Jun 14 02:00:37 2025 GMT
            Not After : Jun 15 02:00:37 2025 GMT
        Subject: CN=6c3671cced193a34121c55098530ec3fd6694451
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:a9:f2:a7:8e:aa:e6:21:5c:43:2b:16:fc:b2:
                    46:a5:3c:47:60:65:4a:e9:cf:b5:fe:20:05:67:0c:
                    5e:a8:34:a2:bf:85:c2:5d:30:67:2d:52:13:eb:0b:
                    e1:e4:14:96:39:e9:43:3b:83:e7:60:66:d6:bf:27:
                    c8:46:6b:aa:ac:72:7e:ff:19:fd:a3:39:b5:42:3a:
                    05:f2:29:b8:d4:c5:20:58:41:81:ea:fd:43:41:8c:
                    83:e2:af:96:b5:1c:ba:52:dd:a0:8c:48:f0:b2:58:
                    69:a5:75:36:e2:f3:73:fc:68:aa:b5:aa:26:1d:d9:
                    d1:b9:a6:7e:d8:7a:22:43:69:df:bd:8b:3d:db:d9:
                    0c:9d:56:f2:b3:4d:99:3c:55:0d:ee:ba:0f:ab:37:
                    18:0f:8e:35:29:19:fb:09:b3:9e:d1:8d:3d:a1:1a:
                    9e:bc:73:1f:fb:60:46:9c:f3:b5:5f:70:b2:3d:60:
                    f1:62:9d:38:83:3c:6e:3e:0f:a3:0f:3e:b7:06:7e:
                    5b:ce:f6:a0:4e:7a:39:b8:c1:79:38:28:0c:ca:73:
                    73:9d:1e:8c:39:c9:0a:45:53:7e:24:dd:6d:9e:d1:
                    53:e6:2e:36:80:31:e3:3b:66:74:55:75:a4:6a:c0:
                    4d:88:cd:5d:a7:b9:92:ec:f7:bb:b6:78:1a:fb:da:
                    b7:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:36:71:CC:ED:19:3A:34:12:1C:55:09:85:30:EC:3F:D6:69:44:51
            X509v3 Authority Key Identifier:
                keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:6a:8c:27:a3:2e:78:36:00:9d:56:39:f1:83:f1:e4:7d:8c:
         0e:3e:be:ef:83:0c:0a:3a:88:f5:d0:29:6e:59:13:bc:92:4b:
         d2:ab:07:94:e6:04:6b:22:be:fb:48:c0:6a:76:2f:4e:bc:1a:
         73:0a:38:3d:d4:65:37:69:2e:01:bc:b2:02:eb:ca:cb:25:89:
         e9:3c:68:a6:3f:db:e2:e5:da:f3:a8:71:3b:cf:03:07:61:92:
         6a:68:c2:9c:ca:3f:ef:61:0b:06:7e:1f:c7:9d:c0:cc:0a:48:
         eb:d3:52:37:2d:1a:82:9c:d7:84:97:45:1b:ec:8b:eb:37:04:
         c7:00:d2:dc:0c:84:35:32:81:26:be:11:aa:bf:9e:10:1a:70:
         7d:29:11:a8:a2:51:75:78:f2:f6:83:cf:4e:21:1f:25:a2:45:
         ac:08:37:3a:06:4a:3d:e5:ee:ea:7f:c5:f8:90:7d:21:b6:50:
         34:6e:1b:11:aa:5b:39:56:a7:54:23:32:5f:54:64:36:0f:bf:
         4b:c1:49:f4:22:a0:90:7d:6a:07:9f:58:9a:f6:df:fa:c5:07:
         73:6d:24:7b:b7:9e:75:1e:b5:56:bc:33:9c:0d:bb:66:d0:83:
         28:66:b0:2b:9e:6d:3e:49:a7:45:f2:fc:6e:80:6c:69:b7:50:
         6d:d9:fb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----