Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
File:                     0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json)
Hash identifier:          EPkSy7ovMa2uRzD52Sxhc8CBxhov0a/xijR+zQS/V0c=
Subject key identifier:   CB:E5:77:4F:99:0E:5B:A1:E8:BC:93:97:39:59:75:4D:CA:7A:AC:1A
Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
Certificate issuer:       /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Certificate serial:       01976C2B5738D48984A8276B8CD15A41FCDC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
Manifest number:          1589
Signing time:             Sat 14 Jun 2025 02:01:09 +0000
Manifest this update:     Sat 14 Jun 2025 02:01:09 +0000
Manifest next update:     Sun 15 Jun 2025 02:01:09 +0000
Files and hashes:         1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: t/PTTa+HupjuU+uXxnleyOgy5wNNN8NwWYFq8/2DlYM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2b:57:38:d4:89:84:a8:27:6b:8c:d1:5a:41:fc:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
        Validity
            Not Before: Jun 14 02:01:09 2025 GMT
            Not After : Jun 15 02:01:09 2025 GMT
        Subject: CN=cbe5774f990e5ba1e8bc93973959754dca7aac1a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:17:05:6f:48:f7:78:dc:93:c1:ba:4b:7f:7b:
                    2a:9b:90:64:f8:a5:b1:29:d4:2a:31:6b:b2:51:66:
                    29:ee:6e:21:87:75:72:a8:26:68:b4:33:d4:b4:bd:
                    32:80:8b:dc:21:9a:7d:e1:e8:e5:af:98:ac:99:6f:
                    cd:24:7f:f3:cf:d4:c5:95:7a:f4:84:cb:3d:cb:44:
                    60:e5:36:59:5c:8d:e8:24:b3:f3:d6:1e:1c:3a:48:
                    fa:6c:c0:41:94:45:c7:24:73:31:c7:a1:70:e9:b3:
                    51:46:68:72:f8:6f:73:15:4b:67:2d:12:a7:99:25:
                    d7:a5:a5:95:d6:f9:70:26:ce:28:2b:42:2b:45:b1:
                    52:ef:61:57:1c:9e:02:63:45:b1:00:94:77:48:b4:
                    6f:95:11:3a:42:06:a6:d7:89:b8:24:f9:82:e6:5a:
                    c8:c0:1c:09:e5:72:64:50:63:da:70:93:8b:0d:ea:
                    66:3f:6a:f2:de:27:68:44:57:c6:68:87:37:92:7b:
                    4a:af:c4:c4:93:59:28:cc:c4:6f:17:9b:ed:0c:fa:
                    74:4d:7e:0d:a4:26:a4:f7:00:f7:b5:0b:61:c8:68:
                    6d:79:a1:5e:19:92:e2:48:95:f9:4d:f3:c6:b7:dd:
                    27:9c:da:4a:c0:a4:2d:40:85:c3:71:cf:3a:b6:82:
                    ba:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:E5:77:4F:99:0E:5B:A1:E8:BC:93:97:39:59:75:4D:CA:7A:AC:1A
            X509v3 Authority Key Identifier:
                keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:3d:1f:19:dc:17:95:46:80:c3:17:2b:6a:07:4f:16:2b:f7:
         a8:ac:14:f1:d2:16:19:20:b1:86:35:f0:20:11:29:01:c4:ed:
         8e:69:bb:26:05:39:9d:6f:3e:55:6b:9c:32:9d:3b:f1:55:f7:
         14:b9:d8:70:df:d1:d2:db:19:38:2f:8d:3d:32:86:46:9d:e1:
         d7:24:e8:d6:7b:0e:0e:7a:35:0f:f8:19:75:2e:db:3e:35:f0:
         b3:0c:a2:91:0e:5f:eb:5e:ea:49:2e:b6:e1:a3:35:38:23:b0:
         7f:9f:be:a8:b8:ba:79:a5:97:58:fa:d8:7d:73:d8:f0:94:a2:
         f7:b7:90:a2:18:52:1f:ae:8b:50:bb:57:e7:f1:ea:c9:76:86:
         cc:17:ad:ec:85:e7:87:07:d2:64:4d:4c:b8:48:6b:c3:51:0e:
         c6:1a:bc:13:fe:dc:e3:a4:c5:dc:46:57:f6:b3:01:a5:9e:19:
         b1:51:cb:85:be:7a:60:23:46:fe:ea:b0:3e:f8:b0:58:40:09:
         39:9d:62:9f:e0:51:bc:12:58:86:de:f9:3d:6f:32:7d:98:07:
         56:67:8e:84:2f:e2:fa:c0:f1:96:ba:d4:5e:9a:01:05:65:8a:
         be:4a:cd:37:76:50:d8:53:df:5a:c1:4d:16:8f:19:1b:0f:ec:
         12:e8:48:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----