Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft
File:                     FAd8W3ds23z3vDXWtELjZ3arDG4.mft (raw, json)
Hash identifier:          Ap35mXYlVoRRZOEODoi3VA2I5yGnZYJKALo23hOE41Y=
Subject key identifier:   0C:6F:E3:E0:BA:70:ED:E8:5A:E7:32:85:5E:26:6A:60:49:64:77:A1
Authority key identifier: 14:07:7C:5B:77:6C:DB:7C:F7:BC:35:D6:B4:42:E3:67:76:AB:0C:6E
Certificate issuer:       /CN=14077c5b776cdb7cf7bc35d6b442e36776ab0c6e
Certificate serial:       01976960CB1DEC20B34D4249B86BFD441E3C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FAd8W3ds23z3vDXWtELjZ3arDG4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft
Manifest number:          158A
Signing time:             Fri 13 Jun 2025 13:00:40 +0000
Manifest this update:     Fri 13 Jun 2025 13:00:40 +0000
Manifest next update:     Sat 14 Jun 2025 13:00:40 +0000
Files and hashes:         1: FAd8W3ds23z3vDXWtELjZ3arDG4.crl (hash: yvfVqgmbjEAjGqbBwsmUit8kX0lMkKaGh8bZNNa7VaM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FAd8W3ds23z3vDXWtELjZ3arDG4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:60:cb:1d:ec:20:b3:4d:42:49:b8:6b:fd:44:1e:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14077c5b776cdb7cf7bc35d6b442e36776ab0c6e
        Validity
            Not Before: Jun 13 13:00:40 2025 GMT
            Not After : Jun 14 13:00:40 2025 GMT
        Subject: CN=0c6fe3e0ba70ede85ae732855e266a60496477a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:8e:de:63:a9:ef:cb:07:c7:36:4b:a2:77:4f:
                    f0:52:cd:99:df:b1:4f:a7:f0:54:6c:b5:1a:b7:0c:
                    ca:c6:62:ee:ac:84:aa:fd:83:1c:ee:33:33:a3:2b:
                    de:69:b3:d6:61:21:d4:2f:f4:be:80:42:86:ea:4d:
                    71:2a:e7:bd:db:73:c8:92:37:49:dc:4a:7f:ba:95:
                    80:2b:62:57:e6:22:d1:1b:ac:72:6c:e2:a5:bd:0b:
                    5d:a3:f1:1d:8e:e6:85:58:76:53:f6:d9:6e:ff:3a:
                    03:80:bf:ca:ac:5c:17:3e:e4:9f:7a:ee:45:93:9b:
                    20:76:4e:88:04:34:9f:2c:bb:71:c6:f9:65:d0:43:
                    8b:4f:61:97:18:a1:47:6a:ff:60:78:49:89:f0:bd:
                    51:6b:82:3e:62:a5:27:7a:1d:27:9a:35:c9:4e:b9:
                    0d:7d:5d:4e:91:5b:27:36:c5:93:68:bf:d8:fb:50:
                    70:71:df:6b:6b:8d:d1:40:0a:6f:1e:38:4d:30:ad:
                    79:30:c4:1f:df:1b:99:86:65:c5:15:7b:49:30:56:
                    7b:39:ae:b1:93:2f:ce:26:7e:7c:e0:18:9a:2e:17:
                    44:c7:8d:e1:b5:05:de:32:c0:67:36:7f:1c:2a:6b:
                    b7:1b:2f:35:90:12:c7:1e:d1:91:f7:80:43:7a:21:
                    6e:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:6F:E3:E0:BA:70:ED:E8:5A:E7:32:85:5E:26:6A:60:49:64:77:A1
            X509v3 Authority Key Identifier:
                keyid:14:07:7C:5B:77:6C:DB:7C:F7:BC:35:D6:B4:42:E3:67:76:AB:0C:6E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAd8W3ds23z3vDXWtELjZ3arDG4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:63:94:18:c1:f6:a5:ae:d6:7c:8f:f1:88:45:43:df:5d:4a:
         65:81:12:cf:19:a7:5b:0b:cf:e7:6b:02:db:e4:aa:8d:72:5e:
         99:c9:b4:2c:f9:91:c3:a3:09:3a:8e:21:c3:f6:25:d4:af:89:
         5a:0e:b4:0e:02:4a:12:1b:d2:8c:ad:5a:b5:53:97:c5:e8:ad:
         21:02:ee:cc:a3:7a:d7:98:24:fe:f9:47:76:45:67:76:91:2b:
         9a:6e:6a:be:ba:af:15:70:08:e6:0d:03:02:3f:c6:43:b0:0a:
         9f:f6:18:e5:53:79:f0:4b:d9:89:d0:6e:51:6a:ab:0e:e2:1c:
         25:54:00:dc:0e:7e:32:5d:c5:54:02:01:2f:52:08:12:a9:06:
         63:4c:a2:fd:eb:d2:c9:6e:51:35:d9:56:58:7a:de:12:ec:9a:
         67:9d:39:aa:b8:b0:e2:90:c4:67:74:fd:69:2d:6a:2d:e7:56:
         66:18:50:46:6c:ee:7a:d7:8a:31:dd:c1:3b:cb:73:ae:4c:37:
         41:59:2e:6b:a0:8e:d6:12:21:3a:f2:a5:fe:2b:24:7c:a6:ce:
         cc:44:58:80:36:1a:b1:7e:26:69:62:f6:7e:00:06:e8:7e:29:
         bb:ef:93:5d:4b:7e:bd:c8:3f:1a:59:35:98:43:c2:e5:96:7d:
         48:d7:6b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----