Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
File:                     H38fQMjrspNo9ug7-d3QZ14H1O0.mft (raw, json)
Hash identifier:          6sFfGwyJ0fsyJV7nhRtpxDgB62++M7wE0650ij0xuuo=
Subject key identifier:   55:FB:D4:66:74:76:53:A7:B2:2D:73:87:A6:DC:32:9E:B3:A7:8F:46
Authority key identifier: 1F:7F:1F:40:C8:EB:B2:93:68:F6:E8:3B:F9:DD:D0:67:5E:07:D4:ED
Certificate issuer:       /CN=1f7f1f40c8ebb29368f6e83bf9ddd0675e07d4ed
Certificate serial:       019773099DA64358CF2D934D5F7F7CB74233
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
Manifest number:          0E52
Signing time:             Sun 15 Jun 2025 10:01:39 +0000
Manifest this update:     Sun 15 Jun 2025 10:01:39 +0000
Manifest next update:     Mon 16 Jun 2025 10:01:39 +0000
Files and hashes:         1: H38fQMjrspNo9ug7-d3QZ14H1O0.crl (hash: A48MAl1ljUsxKkX8E6t/uhb0QZSmnjG1hmt58qvGIaQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 04:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:09:9d:a6:43:58:cf:2d:93:4d:5f:7f:7c:b7:42:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1f7f1f40c8ebb29368f6e83bf9ddd0675e07d4ed
        Validity
            Not Before: Jun 15 10:01:39 2025 GMT
            Not After : Jun 16 10:01:39 2025 GMT
        Subject: CN=55fbd466747653a7b22d7387a6dc329eb3a78f46
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fe:cc:5d:24:c1:92:b5:de:11:07:1d:b1:ef:d3:
                    d8:de:d0:39:6b:c9:86:e0:b2:b3:63:05:92:5c:7a:
                    04:07:1f:10:11:35:57:b1:09:2c:e9:63:ce:61:b5:
                    40:29:d0:cc:22:61:e8:ee:5a:0a:e7:63:dd:fa:a3:
                    6b:5a:ca:2a:ca:72:cc:6d:99:d0:79:cc:67:ec:0d:
                    13:6c:dd:24:4a:69:f3:48:53:ad:a9:ef:bc:e2:ee:
                    6a:1b:f1:f3:42:a0:51:46:02:37:89:2c:b4:6e:72:
                    bb:d3:d3:bf:b6:c7:1c:e5:43:2c:9d:26:d5:55:6e:
                    d8:5b:18:08:fe:39:43:96:98:0c:56:db:0d:f4:85:
                    72:43:6b:6b:c2:4f:88:85:4f:d8:8d:28:d8:6b:86:
                    d0:98:98:9a:4b:cd:c8:97:bd:79:03:f7:58:7a:ea:
                    84:b1:ec:ff:e1:4f:79:75:5e:9f:a4:88:5a:e1:1c:
                    c2:cb:34:c0:0a:13:98:cc:ed:0f:2b:5d:25:f0:b4:
                    18:f9:12:58:8c:d2:64:f7:cf:2e:93:aa:4d:bc:88:
                    15:18:98:0a:d4:f7:cc:85:f0:8a:52:3f:1b:9c:d0:
                    53:8e:2f:86:ec:22:fb:d6:28:3b:d7:bd:1d:f0:4b:
                    ed:89:c8:fd:c3:46:0c:9f:8e:20:2d:67:f9:b5:d9:
                    ed:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:FB:D4:66:74:76:53:A7:B2:2D:73:87:A6:DC:32:9E:B3:A7:8F:46
            X509v3 Authority Key Identifier:
                keyid:1F:7F:1F:40:C8:EB:B2:93:68:F6:E8:3B:F9:DD:D0:67:5E:07:D4:ED

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:e3:eb:fb:e5:16:ac:56:fb:f1:e2:7b:8a:2e:fa:d6:57:e7:
         3e:db:83:39:e3:d6:f9:1b:93:47:a8:35:12:61:44:34:de:fe:
         20:15:9b:24:c3:15:bb:74:ec:45:11:99:d3:0b:31:4b:87:63:
         ef:bf:07:74:de:74:7d:80:19:da:ff:4e:b5:90:98:fb:84:2e:
         c7:3d:da:07:a0:ab:6e:82:6e:81:61:4f:69:05:96:12:43:cd:
         39:22:1b:59:85:2b:5e:48:b0:2b:d6:68:45:51:9c:c2:29:bb:
         db:1d:a1:5a:ac:3a:77:6f:0c:b0:40:05:e4:c6:dd:bc:60:69:
         99:38:5b:56:88:4e:c2:f3:40:9b:a0:c6:6e:6e:b4:6f:1d:7b:
         46:a1:8c:58:ea:53:bd:06:c2:02:8a:0a:56:ea:57:c1:0f:eb:
         44:52:27:94:f3:3c:e2:dd:41:cd:8a:14:95:b1:57:b3:3e:6c:
         e1:b5:9f:9d:fe:ef:cd:eb:ba:b8:d9:78:7b:01:75:0b:84:66:
         f5:fc:8a:a8:82:10:38:55:76:2b:64:52:66:ff:72:d8:ea:1d:
         73:21:6f:61:78:4d:7a:f5:a2:5a:70:7c:eb:a2:19:20:68:d4:
         80:04:d7:e2:78:52:77:69:65:3f:9b:b9:d4:be:ad:e6:c6:75:
         44:99:0e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----