Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
File:                     wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft (raw, json)
Hash identifier:          uKQ2J4ThMGOuhONSO+K0weylmLUQIQ905Ax2PP22fdw=
Subject key identifier:   6B:05:5B:CF:73:98:6C:12:39:BB:82:71:A8:CD:3D:0F:56:28:CF:9D
Authority key identifier: C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55
Certificate issuer:       /CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
Certificate serial:       01977DC32C30C20B370C71AA73E57F3872AB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
Manifest number:          02CF
Signing time:             Tue 17 Jun 2025 12:00:32 +0000
Manifest this update:     Tue 17 Jun 2025 12:00:32 +0000
Manifest next update:     Wed 18 Jun 2025 12:00:32 +0000
Files and hashes:         1: wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl (hash: eYFfvI08iL9JVYcpcKPa3k1wXNiVkK+u00yJ0e44SuE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 18 Jun 2025 08:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:7d:c3:2c:30:c2:0b:37:0c:71:aa:73:e5:7f:38:72:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
        Validity
            Not Before: Jun 17 12:00:32 2025 GMT
            Not After : Jun 18 12:00:32 2025 GMT
        Subject: CN=6b055bcf73986c1239bb8271a8cd3d0f5628cf9d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:bc:0b:1e:1c:f0:b6:bb:11:55:ee:01:93:27:
                    70:34:00:3b:5a:8c:ba:a8:92:af:de:a0:81:0d:37:
                    ab:52:57:3a:54:56:0a:c2:cd:42:87:99:33:b4:68:
                    a2:10:20:e4:38:69:08:4c:71:59:6a:07:77:ae:08:
                    6a:42:c5:b1:36:c7:0c:5f:b6:51:6e:0d:d9:82:24:
                    59:48:a7:04:c3:03:c4:72:0a:f5:a5:cd:56:7a:70:
                    69:7f:c6:af:0a:b6:31:bc:2f:c6:d0:3f:59:e4:06:
                    c3:01:d2:a9:ca:89:06:b5:38:c5:5e:59:61:09:48:
                    86:7c:6c:82:76:f2:7b:41:e7:27:5d:a4:23:c0:3f:
                    83:35:26:46:8f:68:bc:62:82:79:c1:b8:7d:59:14:
                    b8:10:2f:13:19:7c:13:bc:62:7e:88:c3:a3:4f:2c:
                    44:7a:20:e6:8d:29:9b:8f:0f:dd:7c:19:6f:ae:fb:
                    ab:0b:60:da:02:ba:21:f3:43:18:33:0a:a2:2d:b4:
                    ae:1b:7b:fb:9a:89:70:74:b6:27:99:87:11:16:cc:
                    63:21:d6:dd:25:42:b1:b7:07:a5:22:79:ef:2e:21:
                    15:f3:21:b4:22:43:3d:e6:f1:6e:2d:0e:91:7d:9b:
                    ea:08:1b:b5:b6:24:4b:12:3c:69:f9:83:1f:f4:75:
                    f7:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:05:5B:CF:73:98:6C:12:39:BB:82:71:A8:CD:3D:0F:56:28:CF:9D
            X509v3 Authority Key Identifier:
                keyid:C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:0d:27:a2:99:14:3b:59:54:2f:c5:8c:c0:58:61:a0:01:fc:
         3d:1c:21:1d:cd:38:76:b3:f1:14:e5:4e:3b:03:6a:f3:cf:54:
         5b:ce:d2:5e:a0:87:94:f3:10:fd:b5:03:e0:7d:06:a0:29:5d:
         ae:e4:d2:0b:08:d8:9e:17:d8:b8:c9:9e:5b:53:67:62:e0:57:
         eb:7c:e4:34:46:2a:3c:18:a6:86:e7:0e:a7:e7:a7:c2:7e:aa:
         68:9d:78:b7:83:64:13:6c:c2:5a:8a:f2:4d:11:ab:e1:de:0b:
         14:b3:0a:16:cc:b0:47:f2:25:3f:ad:fc:22:e0:cc:da:8b:b7:
         77:d2:76:df:56:d3:72:81:d7:a7:e3:e7:5d:aa:4d:8f:34:14:
         9f:f4:bb:9d:f4:bc:7c:41:84:06:9b:96:ea:2f:6e:23:4d:0f:
         a7:a4:25:b8:c5:d5:f5:df:de:c4:17:f7:04:de:da:f3:11:85:
         6b:2a:ca:45:e2:d5:54:ce:c1:29:73:da:1b:df:7d:10:49:bb:
         48:e4:04:4f:94:fd:7c:59:60:0d:c3:f1:27:3c:bc:c6:e8:cc:
         90:fd:b2:b8:01:b6:38:07:15:b2:b3:a3:d9:5e:0a:1e:33:be:
         88:d3:bd:22:94:6a:05:d1:5d:38:32:91:67:54:ce:0c:d8:db:
         72:5c:3c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----