Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft
File:                     y_sCefzSOo5YPzRauQRyjm0OTGI.mft (raw, json)
Hash identifier:          VvJcCPO95Ro1i6jKmfuWBSXvk0KnYj/jOWxGytLEZs0=
Subject key identifier:   AA:DA:9A:EA:6A:5E:0C:6E:58:F1:07:5C:F2:3F:E5:E6:27:01:D3:60
Authority key identifier: CB:FB:02:79:FC:D2:3A:8E:58:3F:34:5A:B9:04:72:8E:6D:0E:4C:62
Certificate issuer:       /CN=cbfb0279fcd23a8e583f345ab904728e6d0e4c62
Certificate serial:       0197684E2465C42EB3DE09AE8E28E672F4B4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/y_sCefzSOo5YPzRauQRyjm0OTGI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft
Manifest number:          05B6
Signing time:             Fri 13 Jun 2025 08:00:40 +0000
Manifest this update:     Fri 13 Jun 2025 08:00:40 +0000
Manifest next update:     Sat 14 Jun 2025 08:00:40 +0000
Files and hashes:         1: y_sCefzSOo5YPzRauQRyjm0OTGI.crl (hash: deWdfQoKG8z85T429jvLTn6f2bFPyzn7vYj8t//kgnU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/y_sCefzSOo5YPzRauQRyjm0OTGI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 08:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4e:24:65:c4:2e:b3:de:09:ae:8e:28:e6:72:f4:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cbfb0279fcd23a8e583f345ab904728e6d0e4c62
        Validity
            Not Before: Jun 13 08:00:40 2025 GMT
            Not After : Jun 14 08:00:40 2025 GMT
        Subject: CN=aada9aea6a5e0c6e58f1075cf23fe5e62701d360
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:63:43:1c:a6:a0:e0:f1:97:84:37:7e:ae:de:
                    38:ee:e3:79:b7:34:ff:f0:fe:8b:f5:24:b1:af:f9:
                    a8:6f:9b:a2:dc:e1:db:2c:63:1b:26:c1:1b:af:17:
                    30:d9:95:e1:c2:ab:d7:4b:a5:e0:a1:0e:81:fe:3c:
                    38:e1:53:73:96:7c:a6:1d:b4:77:29:53:ac:a1:44:
                    92:e1:67:eb:8e:9f:1a:a1:8d:79:c7:64:1a:09:95:
                    4e:be:b4:0a:15:28:ca:8c:62:d1:34:8d:69:e7:16:
                    db:5e:0e:5f:b4:d0:a9:af:af:44:0b:b4:63:43:e8:
                    f9:99:49:5f:8e:cf:dc:fa:a5:41:11:b2:1b:b3:a9:
                    75:aa:44:82:56:c3:3e:3f:b0:da:cd:8e:c8:0b:f8:
                    94:2c:73:5b:5e:1f:43:01:ee:80:26:7c:da:a8:43:
                    04:67:99:40:1b:0c:f5:be:08:12:f2:fd:02:ac:e5:
                    0c:cc:7b:fb:bc:a0:be:e4:b9:76:26:11:27:3b:d9:
                    fc:8c:eb:58:ec:cf:05:73:de:8e:4d:a6:ae:a7:5d:
                    c4:44:9b:1c:63:a2:82:52:cf:ee:76:db:ed:37:63:
                    f0:f6:e1:25:60:01:6a:99:3b:69:59:ac:18:bb:7b:
                    1c:c3:02:b5:1a:a7:f0:6c:55:6a:50:fc:7f:9b:b9:
                    2a:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:DA:9A:EA:6A:5E:0C:6E:58:F1:07:5C:F2:3F:E5:E6:27:01:D3:60
            X509v3 Authority Key Identifier:
                keyid:CB:FB:02:79:FC:D2:3A:8E:58:3F:34:5A:B9:04:72:8E:6D:0E:4C:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_sCefzSOo5YPzRauQRyjm0OTGI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9677b1-d43e-466e-9bf8-80f8202714da/1/y_sCefzSOo5YPzRauQRyjm0OTGI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         e6:e2:d3:30:0e:e1:ab:80:e5:b0:b2:e1:3e:33:3e:1e:f9:6e:
         18:6e:cf:2a:44:d3:8c:00:94:5d:e4:42:7e:0c:bd:94:d5:eb:
         5f:5f:16:8f:9b:53:73:9e:fc:c1:60:82:c3:c9:a3:cb:3d:f3:
         96:11:73:fe:30:95:fa:f9:33:a8:38:67:ff:e5:32:1e:66:31:
         6b:0e:43:6e:1e:e8:1a:2f:d5:49:47:8b:77:c8:b4:64:d2:c5:
         94:33:72:36:00:fa:67:2c:65:71:ec:f8:50:50:c3:38:31:2b:
         86:a1:5a:7e:9b:36:3e:18:05:06:f0:6b:6b:34:8e:4a:c8:a5:
         db:25:08:24:06:3d:b0:b0:7f:5d:3f:9d:ab:e6:a0:97:7a:13:
         b6:97:fd:63:a1:9d:20:6e:6e:2f:b6:c4:aa:0e:8d:b3:8e:c4:
         3f:2e:0d:20:6c:12:18:81:4d:af:4d:d5:ff:e7:6b:1a:06:fc:
         f2:8b:79:8f:7c:39:f7:ec:5d:ef:90:71:39:42:6c:70:d3:71:
         d9:0b:dd:ef:3a:54:50:98:c9:9e:f6:15:df:6f:5a:a7:36:8a:
         ad:86:96:84:92:aa:82:cc:32:26:00:c8:50:d4:3e:de:78:e3:
         18:ea:ab:2e:db:17:0a:3b:3d:0d:bb:e3:fe:2c:aa:00:7c:cd:
         ea:93:9b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----