Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.mft
File:                     OFYFj7mk9--XizgCGuFSwk6_zkA.mft (raw, json)
Hash identifier:          HpJEcfu0IEm5NVh5jC7dMJZwQ9NxlH0ZEoqkxWzWYJ8=
Subject key identifier:   66:51:41:77:C3:F3:46:FD:7C:67:F3:DA:C3:B1:1B:22:50:7D:94:03
Authority key identifier: 38:56:05:8F:B9:A4:F7:EF:97:8B:38:02:1A:E1:52:C2:4E:BF:CE:40
Certificate issuer:       /CN=3856058fb9a4f7ef978b38021ae152c24ebfce40
Certificate serial:       01976997D5DC0631DD3E3782D5D498F2C65F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OFYFj7mk9--XizgCGuFSwk6_zkA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.mft
Manifest number:          0293
Signing time:             Fri 13 Jun 2025 14:00:47 +0000
Manifest this update:     Fri 13 Jun 2025 14:00:47 +0000
Manifest next update:     Sat 14 Jun 2025 14:00:47 +0000
Files and hashes:         1: OFYFj7mk9--XizgCGuFSwk6_zkA.crl (hash: wdxAY5c8m21e35luOAc2fR05oq2pbBgftzdgec4kl3A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OFYFj7mk9--XizgCGuFSwk6_zkA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:97:d5:dc:06:31:dd:3e:37:82:d5:d4:98:f2:c6:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3856058fb9a4f7ef978b38021ae152c24ebfce40
        Validity
            Not Before: Jun 13 14:00:47 2025 GMT
            Not After : Jun 14 14:00:47 2025 GMT
        Subject: CN=66514177c3f346fd7c67f3dac3b11b22507d9403
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:bb:ab:c8:18:65:85:20:5a:20:fd:19:39:22:
                    f8:35:1c:07:4c:a8:9e:a8:d2:20:11:23:10:da:be:
                    62:64:55:22:cd:df:8b:b6:42:e4:23:09:33:63:ce:
                    84:3b:53:4a:8c:df:03:4e:c3:e5:8c:4e:0c:84:14:
                    90:fe:17:8c:29:5a:51:93:0f:e7:5d:8c:a8:58:93:
                    b3:e3:76:25:a0:35:74:1d:3d:8b:ef:0f:8b:06:fc:
                    a7:d4:b0:09:73:24:62:e7:30:a8:55:b5:de:ba:51:
                    4f:b8:fd:05:3d:fb:5a:99:10:79:18:c8:d6:49:c9:
                    8c:f8:f6:84:51:38:83:1a:61:6b:5e:c2:eb:a3:49:
                    be:66:13:9e:0a:ff:9e:c1:f0:71:7d:f6:16:ff:60:
                    85:f8:44:05:53:eb:23:ad:8a:41:e7:81:f5:23:c7:
                    0f:ea:ad:d2:e4:1d:7b:fe:d2:bf:1d:d4:65:44:02:
                    42:25:1c:43:f9:3f:9e:fa:b6:2c:d3:8b:36:92:db:
                    11:48:93:c1:49:aa:c7:00:57:de:be:cf:3c:26:f7:
                    88:0e:39:4e:f2:54:73:cc:cb:6c:fd:e5:75:d1:a0:
                    9e:86:0e:23:ba:dd:76:b1:e6:5a:87:6a:8d:3c:a1:
                    a8:26:4f:42:2a:4e:d4:16:14:57:5e:0b:94:1b:d8:
                    21:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:51:41:77:C3:F3:46:FD:7C:67:F3:DA:C3:B1:1B:22:50:7D:94:03
            X509v3 Authority Key Identifier:
                keyid:38:56:05:8F:B9:A4:F7:EF:97:8B:38:02:1A:E1:52:C2:4E:BF:CE:40

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFYFj7mk9--XizgCGuFSwk6_zkA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:cb:fa:ee:c7:30:0d:4c:ed:9e:78:2f:c7:82:32:79:1b:13:
         a2:ef:a6:16:df:63:07:17:d9:1f:5d:80:09:bc:d0:cf:c3:f4:
         a3:af:f4:18:51:93:f2:c5:c6:e2:45:99:44:87:b3:bf:67:a7:
         b4:92:83:78:c3:01:3f:f6:b3:fe:bd:49:14:b0:9a:4e:d6:e2:
         e7:7d:9f:7e:dc:ec:b8:74:47:a0:0d:93:ff:c1:49:d5:58:d4:
         53:40:4e:c2:cb:53:66:a3:68:ac:fd:48:c5:f5:cb:b1:0f:f8:
         03:ef:5a:a2:d4:e3:6a:79:e4:48:20:03:6d:c7:48:df:c5:c4:
         5e:e9:f2:9f:c8:32:2d:c1:e7:d7:fd:e6:d5:55:48:c6:47:a5:
         e0:05:8e:55:9a:43:59:a4:3b:a3:fe:a4:65:57:2d:83:18:4f:
         09:17:b9:d5:ca:d2:dd:b3:6f:89:44:db:49:bf:41:0f:8e:71:
         87:b4:62:aa:1b:9d:ba:8d:9c:81:df:95:36:3f:8c:1b:4f:8e:
         01:e3:c9:aa:bd:9c:ac:d2:c8:f9:e1:30:0b:0d:03:95:c5:d9:
         a0:0f:e0:61:d6:f0:1a:a1:c6:49:b9:ae:f2:19:9f:2f:10:72:
         96:44:a4:f9:fc:cc:46:a4:4d:f3:6c:68:df:19:1e:02:d7:c6:
         5c:52:74:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----