Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
File:                     aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft (raw, json)
Hash identifier:          7T7qvzpZ1bxlrKhmk03ADM0ChotdzVsfTEDAnl7yPsQ=
Subject key identifier:   4B:60:9F:06:93:87:F6:83:6C:01:52:C6:BC:E6:55:7B:5B:FE:B2:E7
Authority key identifier: 68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA
Certificate issuer:       /CN=6809515d093644678703c024d92014c532f316ea
Certificate serial:       0197684E5EAC0857271F7849D42402ECC197
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
Manifest number:          118B
Signing time:             Fri 13 Jun 2025 08:00:55 +0000
Manifest this update:     Fri 13 Jun 2025 08:00:55 +0000
Manifest next update:     Sat 14 Jun 2025 08:00:55 +0000
Files and hashes:         1: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl (hash: 1LrEtwpXU+osIBokLjs6KMQj5noCr4hD5DpYZSSzkkc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 08:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4e:5e:ac:08:57:27:1f:78:49:d4:24:02:ec:c1:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6809515d093644678703c024d92014c532f316ea
        Validity
            Not Before: Jun 13 08:00:55 2025 GMT
            Not After : Jun 14 08:00:55 2025 GMT
        Subject: CN=4b609f069387f6836c0152c6bce6557b5bfeb2e7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:e9:7b:70:85:53:0b:cf:24:f6:14:f4:83:87:
                    fa:2e:14:c9:48:1f:87:bc:59:71:93:a6:8a:04:87:
                    e7:b5:70:ec:da:d4:09:1a:05:bb:72:e5:21:d4:31:
                    4c:53:86:3b:af:53:d4:d7:3b:40:b5:6f:43:f4:e8:
                    8d:ad:86:f6:9a:e9:bd:bf:23:a6:fd:f4:f1:82:e9:
                    6a:3c:b9:83:f3:21:34:89:8c:7d:d1:f3:24:2e:f0:
                    49:b4:04:04:51:2c:73:f5:b2:fe:16:e8:91:52:86:
                    36:59:df:04:6a:7e:8d:8d:ab:f1:92:49:ba:e8:39:
                    c3:b9:07:e2:08:8d:af:fb:8b:85:68:bd:26:6d:a1:
                    b4:34:b2:89:fd:a3:b3:d8:68:f1:33:e1:09:d9:20:
                    eb:38:7d:f7:3a:ef:45:ea:3b:68:55:6d:6a:54:ad:
                    af:49:44:e6:45:6f:6a:6e:59:f9:30:87:4a:90:ac:
                    97:11:9e:cd:0e:d5:6d:6e:54:35:2c:49:fa:ea:b0:
                    90:e2:72:af:be:58:48:50:73:f9:2c:89:9b:32:f4:
                    14:dd:07:ea:0a:38:b8:c1:85:58:f3:12:86:8c:fc:
                    38:9f:e1:ab:0e:68:60:b2:4c:27:40:29:52:6d:b6:
                    2a:64:89:6a:ae:f3:47:80:23:26:fe:d2:8e:20:76:
                    e2:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:60:9F:06:93:87:F6:83:6C:01:52:C6:BC:E6:55:7B:5B:FE:B2:E7
            X509v3 Authority Key Identifier:
                keyid:68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:df:2c:1c:71:16:f4:c0:d7:bb:d1:70:66:92:94:48:93:df:
         83:a0:97:8a:f9:2b:ee:27:c5:df:89:76:2b:4d:f3:d1:17:eb:
         2b:23:4e:7a:f2:88:54:3a:62:18:7a:a7:25:34:e2:b2:93:61:
         51:c1:4e:12:10:54:31:f6:7c:ea:9f:33:7b:d3:f3:a3:aa:15:
         57:11:0c:dd:36:1e:ce:89:29:a1:27:7d:1d:de:53:f2:f0:58:
         c4:e5:4d:ad:90:59:89:22:a3:65:f2:f0:ae:33:0e:a3:1c:db:
         28:cc:74:4f:8d:56:55:60:7e:fc:16:62:e1:88:73:f6:64:ce:
         0a:1f:1e:02:1f:cf:1c:e6:e6:11:9b:d0:f2:53:a3:16:7c:83:
         56:f0:58:00:1d:11:04:32:f3:56:b7:26:86:74:6e:6e:a4:22:
         80:31:89:21:43:d5:26:0e:cd:32:98:6a:bb:ef:b1:f1:91:fe:
         5c:85:11:8e:5a:e6:d8:cd:68:ae:86:19:d0:af:54:e8:2f:01:
         46:1d:31:58:6e:90:af:fb:4e:a1:55:9f:c9:43:53:d8:6a:e6:
         fa:62:db:a0:28:2d:aa:ae:13:06:1a:12:53:de:28:17:59:0a:
         3c:e1:19:83:db:31:9c:e2:d2:b7:a0:bb:68:2d:ce:11:d4:e5:
         d8:3a:49:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----