Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft
File:                     D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft (raw, json)
Hash identifier:          F5VO0IgS+tdYWHOgMqekfxeDVI33teOisGHeh41uVNk=
Subject key identifier:   E1:81:2C:37:A9:73:F3:30:95:26:59:9D:4E:2A:CA:1A:1C:56:DA:7C
Authority key identifier: 0F:49:C4:9A:75:CF:6E:24:8C:9B:51:C7:05:4D:B2:F8:D9:DC:ED:CB
Certificate issuer:       /CN=0f49c49a75cf6e248c9b51c7054db2f8d9dcedcb
Certificate serial:       0197711A2CC2AA85751CB362012BED4EB5F9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft
Manifest number:          0A9C
Signing time:             Sun 15 Jun 2025 01:00:30 +0000
Manifest this update:     Sun 15 Jun 2025 01:00:30 +0000
Manifest next update:     Mon 16 Jun 2025 01:00:30 +0000
Files and hashes:         1: D0nEmnXPbiSMm1HHBU2y-Nnc7cs.crl (hash: lTd+RivpE4imVkeCW9zEwAskyBIHsOsUDpBWEGPKcGc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:1a:2c:c2:aa:85:75:1c:b3:62:01:2b:ed:4e:b5:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f49c49a75cf6e248c9b51c7054db2f8d9dcedcb
        Validity
            Not Before: Jun 15 01:00:30 2025 GMT
            Not After : Jun 16 01:00:30 2025 GMT
        Subject: CN=e1812c37a973f3309526599d4e2aca1a1c56da7c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:10:bb:0f:12:33:72:fb:94:56:58:2f:17:41:
                    0a:4d:fc:cc:12:e5:b0:80:78:0c:a7:14:c2:87:7b:
                    ad:39:f6:b2:51:d9:4c:0d:b1:41:73:6d:57:30:1f:
                    92:0c:9d:84:e6:14:e7:22:2f:d7:27:9c:bd:3e:41:
                    39:2e:a4:a4:8e:c7:3d:c7:77:73:ce:e4:09:8f:eb:
                    af:71:d9:8c:0e:49:db:14:b1:d4:a0:09:2e:86:a6:
                    cd:7e:78:7b:cc:65:1e:7a:c3:7c:f3:d4:7a:e3:61:
                    24:48:b9:e5:fa:01:c4:41:42:30:38:72:9b:e7:be:
                    9b:49:b6:f8:6f:41:c6:f0:9a:cd:24:d7:ca:be:c2:
                    d9:ad:ae:d2:ee:eb:cb:d7:f0:72:94:70:1b:2c:a5:
                    98:55:bd:37:af:01:8a:a9:b8:64:ed:79:f4:c8:94:
                    22:28:5b:e7:73:b4:41:3e:46:f6:75:30:bb:3b:94:
                    55:da:32:35:4f:5a:de:91:e3:61:42:99:d0:99:7a:
                    c3:b3:b5:3b:d0:4a:5c:fe:53:e0:04:e0:c6:03:f5:
                    9e:8a:30:93:06:61:77:1b:7e:7a:69:37:56:46:c5:
                    e4:23:d6:a1:63:43:4e:93:81:d7:60:13:8e:6b:69:
                    27:17:82:e9:55:a9:68:dc:02:9e:f2:e8:be:fd:7c:
                    11:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:81:2C:37:A9:73:F3:30:95:26:59:9D:4E:2A:CA:1A:1C:56:DA:7C
            X509v3 Authority Key Identifier:
                keyid:0F:49:C4:9A:75:CF:6E:24:8C:9B:51:C7:05:4D:B2:F8:D9:DC:ED:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         e6:06:1c:33:50:08:cf:9b:5c:d1:3c:7b:e3:99:a2:67:65:6d:
         8b:b7:25:75:d1:e1:e9:d2:55:be:cf:d0:cb:76:f6:c2:96:dd:
         62:cf:98:72:b8:be:47:a3:8a:a7:3c:68:c4:75:df:bb:9f:f0:
         d1:04:19:d9:59:fc:ee:0b:8d:df:4a:6f:d1:66:d7:fc:75:dc:
         2a:36:25:cd:fb:8a:91:18:a2:d5:e4:76:5c:46:8f:fd:39:3d:
         54:2a:b2:d2:45:5d:88:3f:51:fb:ed:8c:9e:77:de:ad:2d:10:
         a4:eb:d4:f9:fd:6a:44:3b:6c:70:5b:bc:8c:32:62:79:81:22:
         8e:ff:8f:ba:ac:4b:3b:c2:8c:d7:62:6c:c3:69:73:2b:91:65:
         9e:dd:ca:b6:cd:33:97:d2:b9:0f:2d:d6:8f:3a:26:cd:56:74:
         cc:79:af:c4:3a:e1:05:0e:0c:ff:85:7c:88:c3:b0:93:68:d1:
         a0:60:f5:5f:c3:78:b3:d8:f0:4f:49:aa:68:96:d1:b4:43:0b:
         2d:bf:62:38:25:73:58:61:86:57:88:f5:34:58:6e:c0:42:19:
         f0:27:e1:79:ab:4c:14:d0:ec:97:82:ea:39:f5:43:8c:86:0c:
         18:d1:67:9f:2f:46:04:a3:29:dc:1c:cd:e2:5f:3e:d9:b5:cd:
         42:d4:d9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----