Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
File:                     iSWuMjSiyXwn9171HT_zJr4GDiw.mft (raw, json)
Hash identifier:          p5n00bE0Vf4M1FfWm9DfVmHbMLBiSiTbqTOnDNDaGE8=
Subject key identifier:   DA:F2:15:27:7D:8B:5B:91:3D:60:79:A2:F6:93:83:59:1F:5E:74:65
Authority key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
Certificate issuer:       /CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Certificate serial:       01976FD0FAEF174CEAFD264BB72A24A2187E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
Manifest number:          158C
Signing time:             Sat 14 Jun 2025 19:00:56 +0000
Manifest this update:     Sat 14 Jun 2025 19:00:56 +0000
Manifest next update:     Sun 15 Jun 2025 19:00:56 +0000
Files and hashes:         1: iSWuMjSiyXwn9171HT_zJr4GDiw.crl (hash: 2R5LaaWQGGRj7HkpSSfGWLG2OBvTUj5ObYwZdoa884U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:d0:fa:ef:17:4c:ea:fd:26:4b:b7:2a:24:a2:18:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
        Validity
            Not Before: Jun 14 19:00:56 2025 GMT
            Not After : Jun 15 19:00:56 2025 GMT
        Subject: CN=daf215277d8b5b913d6079a2f69383591f5e7465
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:23:f3:7a:f9:69:23:da:e8:86:09:b5:e3:63:
                    11:bd:5a:4a:95:6f:19:21:d3:8d:09:0a:e8:f6:db:
                    d9:8e:b7:ad:ec:e5:c9:6b:c0:f7:22:e2:c0:e5:8a:
                    9e:db:bb:c2:ca:8a:1f:0e:c8:b3:0a:58:08:92:68:
                    5c:ca:df:e7:5b:0f:43:df:02:07:5a:93:ae:43:5b:
                    15:61:6c:a6:7f:7b:d4:10:5b:94:91:4e:31:c5:a0:
                    be:a7:ac:15:8e:c9:75:a6:71:0f:c6:c1:03:d3:70:
                    82:30:1d:aa:cd:59:3b:90:3d:c9:b0:cb:53:8d:0c:
                    00:ec:f8:c8:c8:cd:94:d1:3d:29:b8:ce:ee:44:80:
                    54:d6:9a:29:e5:26:50:6a:4c:1b:c0:b6:68:d3:1f:
                    4e:11:71:39:de:c8:95:c6:97:2a:4f:32:22:4f:9e:
                    24:d4:a3:d5:d9:1f:57:f9:a0:fd:c7:23:5a:06:ee:
                    cf:c5:96:e4:d3:87:82:59:ad:32:61:59:62:a9:e8:
                    23:fc:6c:ab:84:9a:f1:68:59:d2:53:cb:8c:2a:54:
                    95:91:71:29:86:a6:b4:7b:6c:2e:9d:2c:45:0f:5e:
                    08:84:64:cf:5e:76:c2:d2:ae:bb:81:9d:35:43:6a:
                    99:5b:63:20:f0:cc:23:8c:c9:ad:37:8a:87:92:4d:
                    9f:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:F2:15:27:7D:8B:5B:91:3D:60:79:A2:F6:93:83:59:1F:5E:74:65
            X509v3 Authority Key Identifier:
                keyid:89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:88:72:2f:eb:d8:98:56:dd:41:c7:a0:9a:9e:ca:7a:e9:40:
         4a:64:1f:33:ee:05:34:f4:5d:14:85:fa:70:f4:d7:c0:c2:89:
         6c:38:6a:fe:27:5c:ea:2c:6c:8a:94:b9:7d:ee:a0:3c:4b:a8:
         53:8d:2c:de:3d:b7:3c:61:27:c8:20:01:e7:53:aa:63:92:8f:
         b6:3b:f1:55:35:87:c7:78:b7:7d:bd:d9:06:29:87:c8:fc:cc:
         c3:a6:b3:96:ae:94:44:d0:9d:dd:22:b9:c1:b5:c9:20:f9:3f:
         9b:d3:c7:fb:f6:c1:f5:21:6e:b2:f8:a6:d9:9b:80:45:f6:89:
         53:0f:ed:2c:a2:e9:b3:14:24:3a:2d:6a:66:16:20:83:42:15:
         bd:39:70:6b:87:7c:0f:ea:66:e1:d6:e4:d3:0e:e3:a0:3a:7e:
         6a:85:a2:1c:af:9f:54:58:23:c0:29:5e:d3:a4:19:97:e3:07:
         89:44:74:2d:d3:a0:20:3f:12:27:df:66:17:ba:f9:ff:75:d3:
         ce:bc:4d:3a:32:ea:f8:f0:b7:84:54:65:d5:25:46:cf:93:a4:
         eb:04:5b:c2:57:52:90:53:ee:f2:69:1e:ad:18:ca:de:35:d2:
         64:34:5c:95:18:ad:e3:5e:1a:bd:bf:eb:0a:1c:8a:30:b4:43:
         f7:35:88:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----