Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
File:                     RmSgU4XAYmgVApGX6xUGSF09bRw.mft (raw, json)
Hash identifier:          N9h5Iqq1ctFDCNBvR9wSuNo1esJQc7Z0o0as8axW54E=
Subject key identifier:   53:BD:AD:45:7C:AD:C8:1E:C1:00:6B:76:9D:35:06:6E:3E:8C:AC:8E
Authority key identifier: 46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C
Certificate issuer:       /CN=4664a05385c0626815029197eb1506485d3d6d1c
Certificate serial:       01977075E3E12533C312428B81BC1D8A9901
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
Manifest number:          06E6
Signing time:             Sat 14 Jun 2025 22:01:03 +0000
Manifest this update:     Sat 14 Jun 2025 22:01:03 +0000
Manifest next update:     Sun 15 Jun 2025 22:01:03 +0000
Files and hashes:         1: RmSgU4XAYmgVApGX6xUGSF09bRw.crl (hash: 3pWO++pc0ODigLw3hxur43hl0PZSu6Sy2MVKVrGCV80=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:75:e3:e1:25:33:c3:12:42:8b:81:bc:1d:8a:99:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4664a05385c0626815029197eb1506485d3d6d1c
        Validity
            Not Before: Jun 14 22:01:03 2025 GMT
            Not After : Jun 15 22:01:03 2025 GMT
        Subject: CN=53bdad457cadc81ec1006b769d35066e3e8cac8e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:5b:7f:6d:6c:7c:35:97:85:07:4d:45:e5:23:
                    2e:63:09:aa:81:91:52:98:67:26:25:b5:4f:b7:20:
                    95:bd:10:17:29:a4:e6:21:e4:cf:67:0f:e6:13:35:
                    71:fc:a6:a8:37:53:f9:09:c0:4c:f7:bb:37:ed:1f:
                    7c:1c:a6:8f:5c:b3:03:cc:71:06:4a:76:4a:8d:cd:
                    20:b3:70:b0:e3:58:ba:9a:6f:14:26:1b:a3:35:f6:
                    97:80:02:9a:1d:af:a7:cf:a8:7e:68:3b:d3:83:b0:
                    1c:99:ac:0b:77:69:6b:97:b2:eb:9b:54:b9:20:ef:
                    6d:7a:18:35:55:82:9b:e5:57:8a:f4:a7:33:ee:1b:
                    ea:00:d8:cb:4d:25:ff:10:e2:62:62:0e:d3:c9:f9:
                    bc:c2:4e:35:cf:3f:ba:12:95:29:e4:ba:46:9f:c3:
                    a4:c5:71:d7:c6:45:0e:5b:54:88:50:65:73:1c:6c:
                    92:4f:e1:67:b1:0c:2b:17:cb:d3:be:55:35:6b:01:
                    35:14:13:5f:74:c8:4b:c6:64:ce:46:d5:f9:83:00:
                    1a:14:24:7f:31:d2:35:6e:7b:dc:48:42:4f:a1:0b:
                    dd:9b:2f:28:fe:90:01:11:09:c8:7d:a4:6b:ef:96:
                    97:31:ea:aa:6e:cf:2a:f8:06:fa:a5:6f:b9:84:72:
                    ee:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:BD:AD:45:7C:AD:C8:1E:C1:00:6B:76:9D:35:06:6E:3E:8C:AC:8E
            X509v3 Authority Key Identifier:
                keyid:46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:e8:dc:49:ca:c7:ca:ac:8e:83:be:d2:70:70:2c:6c:19:2f:
         cf:ed:e7:e3:73:03:97:e5:87:06:de:f5:97:0b:df:3a:19:47:
         2b:f0:2a:bb:df:99:1a:5c:95:12:b1:9f:60:b8:cb:a9:a6:ae:
         03:aa:75:52:a8:10:5b:62:ee:f5:43:1c:83:46:33:f0:f3:46:
         59:6c:b0:83:48:e6:95:96:ed:3a:70:e2:c6:8b:d9:51:94:3f:
         e7:8b:91:0d:5f:20:1d:7c:33:7f:bf:59:3d:dd:44:55:ac:e6:
         84:80:be:a2:1c:bf:66:bd:31:1f:30:12:4f:20:66:2b:6b:6d:
         01:a6:7c:48:a7:f9:cb:c3:87:2c:fc:8b:96:a9:ca:fa:cb:ca:
         69:cb:38:59:06:d7:0c:ce:f5:e8:9d:2c:cf:db:03:83:54:6b:
         55:d6:c5:0d:bd:35:f8:ae:62:d6:11:3a:ea:75:09:8d:d5:d5:
         a6:69:59:9e:50:7d:9f:1a:92:bb:52:0a:f5:9d:33:03:41:5d:
         40:60:7f:a0:07:96:e3:27:99:0a:e4:e8:82:a7:66:e3:31:ae:
         45:62:77:b5:1b:81:bb:8d:ec:ae:08:97:4f:e8:bf:a3:dd:fa:
         fc:30:e3:db:6a:09:ec:5b:6b:76:96:d7:ba:45:24:4f:53:96:
         ee:a3:51:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----