Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
File:                     4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft (raw, json)
Hash identifier:          gI6AJipIlbcHXN++m1tE1EeALVwFgZdJgfw0R5Y05fc=
Subject key identifier:   30:0E:14:E2:C9:AC:C1:54:8F:7C:6A:88:A7:FB:7D:2E:EB:37:C5:A8
Authority key identifier: E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60
Certificate issuer:       /CN=e33779b8388d001fdcbddc48ace227f009850660
Certificate serial:       01976961283482F832601FD240553450A655
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
Manifest number:          1588
Signing time:             Fri 13 Jun 2025 13:01:04 +0000
Manifest this update:     Fri 13 Jun 2025 13:01:04 +0000
Manifest next update:     Sat 14 Jun 2025 13:01:04 +0000
Files and hashes:         1: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl (hash: RpTX/yXuXheIYx8LVeK7yvsa9a29H9tdrmhih55p3oE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:01:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:61:28:34:82:f8:32:60:1f:d2:40:55:34:50:a6:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e33779b8388d001fdcbddc48ace227f009850660
        Validity
            Not Before: Jun 13 13:01:04 2025 GMT
            Not After : Jun 14 13:01:04 2025 GMT
        Subject: CN=300e14e2c9acc1548f7c6a88a7fb7d2eeb37c5a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:bb:d2:60:5f:35:ad:3f:31:c9:7d:05:cd:da:
                    cd:7b:fb:22:3d:1d:50:26:07:ca:31:a4:4c:2f:2e:
                    cf:db:90:c1:35:67:4a:ff:ec:dd:5a:43:35:34:a9:
                    81:c0:74:ad:2c:41:de:62:ab:1f:dc:17:9b:42:36:
                    44:de:90:90:2e:9a:1a:20:24:7d:dd:8a:89:59:fb:
                    f9:11:a3:91:67:2d:de:24:10:65:80:3c:0a:6a:04:
                    98:1a:41:3d:05:79:37:02:82:cc:df:46:c7:12:62:
                    67:46:6a:cc:74:f8:79:1c:45:f1:3e:a6:fa:b9:5f:
                    8f:b6:c0:87:8b:b1:e3:08:22:a2:77:ba:5e:f3:fa:
                    f6:d7:bd:45:40:01:25:ed:70:3a:e9:4e:7c:f8:8d:
                    f6:f2:8a:f2:d1:bf:5f:30:48:15:d3:77:91:1f:bd:
                    4c:fe:df:cb:52:6e:e2:8c:57:85:71:67:d2:fd:58:
                    d2:31:41:c7:57:73:61:8a:3a:35:94:64:22:8a:8a:
                    fc:8e:79:e7:5e:ae:84:f6:c5:f0:07:3f:8f:39:50:
                    01:58:ea:be:18:18:9b:bb:82:d3:1a:27:29:5f:78:
                    7c:cc:97:a3:f8:f9:79:46:4a:34:7b:bb:1a:22:86:
                    4f:87:17:2f:d8:29:e4:1a:61:c5:f2:f4:ef:75:32:
                    3e:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:0E:14:E2:C9:AC:C1:54:8F:7C:6A:88:A7:FB:7D:2E:EB:37:C5:A8
            X509v3 Authority Key Identifier:
                keyid:E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:f9:a3:d6:68:30:c2:7d:f5:9e:e6:37:83:8f:c5:4d:a4:c2:
         55:bd:05:be:0e:b4:da:51:5d:f9:f9:e5:e7:70:c9:3b:a5:8e:
         1e:cc:e2:e7:3f:57:d2:14:9b:07:fb:06:9e:92:30:c6:e7:a0:
         3c:cc:ce:44:44:ca:8c:0c:c6:1a:8b:0c:88:f1:ea:37:b5:c5:
         5d:0b:6a:01:e6:a0:7b:37:79:3e:8f:d8:a8:24:91:7b:ef:94:
         4d:37:e4:b0:5e:1c:55:f7:20:b2:fd:64:12:3f:6c:f0:5b:3f:
         c2:8b:36:20:77:c1:9b:f0:2e:cc:df:ce:0a:a0:ee:1e:b0:4d:
         c7:21:fa:00:22:61:5a:f9:33:e9:2f:7c:15:ea:f3:52:19:28:
         4f:c2:54:e3:9e:96:3b:57:01:0d:44:36:35:ff:2d:a2:64:60:
         99:6d:a9:6e:1e:4f:a3:ff:26:67:bd:e7:8a:dd:19:75:09:01:
         6c:ac:43:58:a5:73:03:c1:2f:08:11:db:6e:c9:cf:e4:de:bb:
         cb:ac:18:ba:78:ad:25:7f:e6:68:fc:ac:3b:fb:38:f6:b7:76:
         ce:61:48:08:37:dc:47:63:c0:8a:d0:05:5d:92:d1:7a:e1:2a:
         46:45:cc:7f:4b:ee:f1:b8:b6:da:90:02:f2:b8:15:66:d5:e1:
         70:d0:a1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----