Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
File:                     JGJNNpZGiPmJxkSsIBH0Fl086wc.mft (raw, json)
Hash identifier:          xMFAUHVOwiv7LFRKDMOwpgE+kkuqnUkx+UJv/dfGKM0=
Subject key identifier:   6B:99:0B:97:75:AD:5A:6D:80:A7:03:82:21:0C:3F:18:74:55:45:29
Authority key identifier: 24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07
Certificate issuer:       /CN=24624d36964688f989c644ac2011f4165d3ceb07
Certificate serial:       01976F2BCE37D3E9CEB83CB5831D17300994
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
Manifest number:          08E8
Signing time:             Sat 14 Jun 2025 16:00:31 +0000
Manifest this update:     Sat 14 Jun 2025 16:00:31 +0000
Manifest next update:     Sun 15 Jun 2025 16:00:31 +0000
Files and hashes:         1: JGJNNpZGiPmJxkSsIBH0Fl086wc.crl (hash: 3CxQCoUVFJAMAFLSOjYUbbht8GrH2Tzh32BSL4Cz8xo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2b:ce:37:d3:e9:ce:b8:3c:b5:83:1d:17:30:09:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24624d36964688f989c644ac2011f4165d3ceb07
        Validity
            Not Before: Jun 14 16:00:31 2025 GMT
            Not After : Jun 15 16:00:31 2025 GMT
        Subject: CN=6b990b9775ad5a6d80a70382210c3f1874554529
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:f8:27:07:81:9c:61:fb:c6:c5:b1:01:d5:b0:
                    a4:28:09:e0:cc:5a:57:71:99:5c:27:f0:c7:b3:7d:
                    bb:81:f6:8e:6e:90:68:99:48:da:c1:19:60:80:da:
                    3b:7c:88:84:ad:bf:cb:49:f9:d4:ae:64:13:ca:a7:
                    11:68:46:4f:66:2f:25:ba:e4:08:ba:57:0d:9e:1e:
                    a7:bf:fb:43:fd:c8:4b:5f:b4:94:53:a2:6e:ca:28:
                    9e:b8:d6:92:47:8d:23:39:5c:d7:7d:11:4b:8a:62:
                    e4:38:20:b7:40:79:5e:f3:69:38:81:b0:56:bf:e3:
                    5f:5e:58:ba:db:38:16:f7:fd:03:f7:f4:a8:24:12:
                    80:91:59:b5:57:6f:1e:a4:56:06:4b:b0:ef:5c:57:
                    4c:7c:90:e8:d5:1f:f8:50:ee:d6:05:d5:9f:fa:4b:
                    32:4d:ce:37:12:01:22:49:04:e1:be:d9:d0:bd:7a:
                    eb:af:9f:3d:cb:38:66:67:98:7c:bc:6d:10:3d:14:
                    d8:a8:62:43:75:4b:66:15:48:65:e6:fd:e5:21:57:
                    f1:e5:88:eb:3a:31:9c:49:d7:ff:7c:07:b6:f9:de:
                    db:67:3b:17:ca:2a:b7:9b:38:0d:83:4a:b8:b8:a0:
                    50:25:57:af:ed:bc:de:88:1a:8a:6d:fa:f3:19:33:
                    86:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:99:0B:97:75:AD:5A:6D:80:A7:03:82:21:0C:3F:18:74:55:45:29
            X509v3 Authority Key Identifier:
                keyid:24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:18:c9:1e:05:8d:fb:05:78:88:56:54:c3:93:db:44:83:e3:
         4d:d7:60:35:18:24:2e:46:1f:75:96:6f:72:c1:5c:a0:d6:18:
         b2:d2:eb:41:fb:16:c4:79:41:e3:60:bc:1c:b0:a4:d6:17:94:
         aa:db:b2:a0:85:6e:fc:0a:c9:1b:90:cb:eb:50:35:4d:74:17:
         a0:7f:d8:9a:10:0e:b5:b0:d2:96:5b:af:0e:45:6e:db:71:29:
         28:d0:18:8c:49:f7:0e:01:5d:ee:d7:5f:f4:ce:72:59:f5:98:
         b2:82:b9:70:86:23:08:cd:b8:90:dd:12:f8:98:e2:63:31:d4:
         08:de:83:30:0c:2c:54:4e:51:df:e6:0b:db:75:71:28:ac:1a:
         1f:e2:c5:30:6c:33:11:bc:2e:48:95:f3:38:6c:e7:2d:52:a0:
         cd:be:13:9a:31:5e:12:d7:19:7b:ce:54:8b:34:b1:d2:c2:88:
         c9:e6:5c:a5:41:2f:0f:ee:f1:11:b1:27:36:be:58:1a:9d:44:
         24:c9:76:96:2d:0d:18:ba:d6:fb:72:f6:aa:a6:b0:8d:77:bb:
         5b:70:f8:ad:65:72:63:af:3c:27:6a:bf:28:f3:1b:56:d6:f6:
         d6:b7:26:0f:cf:fa:03:28:d2:c3:50:6f:e1:7b:03:2b:21:b0:
         de:dd:ef:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----