Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
File:                     7ix0WZPMS28UcK6rRhTwhdSuQKk.mft (raw, json)
Hash identifier:          2Sq5bIOjdv/B8Y0p+tnpDQgNqsk9iX57nKxZAfi8meQ=
Subject key identifier:   F5:9C:39:59:A6:26:6D:FC:DC:80:2B:78:14:C0:B3:C3:EF:48:1E:72
Authority key identifier: EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9
Certificate issuer:       /CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9
Certificate serial:       019770079183781BEAB6A62EF66953C5410E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
Manifest number:          1223
Signing time:             Sat 14 Jun 2025 20:00:33 +0000
Manifest this update:     Sat 14 Jun 2025 20:00:33 +0000
Manifest next update:     Sun 15 Jun 2025 20:00:33 +0000
Files and hashes:         1: 7ix0WZPMS28UcK6rRhTwhdSuQKk.crl (hash: jsQMilyMr4paEGuiCMNdc3XWoyCwQe++cTFOK6hAODw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:07:91:83:78:1b:ea:b6:a6:2e:f6:69:53:c5:41:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9
        Validity
            Not Before: Jun 14 20:00:33 2025 GMT
            Not After : Jun 15 20:00:33 2025 GMT
        Subject: CN=f59c3959a6266dfcdc802b7814c0b3c3ef481e72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:4a:b4:25:a7:e4:95:45:f5:0d:06:0b:e3:61:
                    75:dd:18:af:48:9b:75:69:9c:3e:ec:30:95:92:be:
                    25:9d:86:b7:8f:4e:df:7f:bc:1a:74:6a:bf:02:15:
                    1c:00:e4:c8:26:f3:6d:ab:47:14:33:8a:c4:2f:22:
                    b8:a6:32:c8:80:69:72:08:43:76:c0:5a:20:4b:58:
                    c7:d0:71:98:66:0e:a1:6d:ab:bc:a5:c7:15:4e:a5:
                    f7:f5:9d:73:8e:0c:3d:20:86:a9:8c:ec:60:26:a0:
                    fe:03:72:7f:b9:21:af:70:ed:3c:cc:62:b0:cc:5f:
                    43:db:5b:92:04:56:f7:44:4c:fe:e8:df:fe:90:37:
                    24:ec:82:de:de:ac:0e:ef:54:3d:b4:1e:e5:dc:2b:
                    b7:e8:cc:11:90:7a:87:63:c6:6b:a8:c3:d8:d6:17:
                    44:b5:af:83:a8:e5:48:15:69:31:df:cc:84:81:31:
                    59:2e:93:18:eb:a0:d4:13:55:08:68:5d:c3:e8:f8:
                    87:5b:cf:e9:5e:a3:ec:a4:15:f3:4e:ee:7d:b9:ab:
                    67:d6:fb:ec:dd:85:68:50:5d:4b:d8:4b:73:c3:99:
                    0a:53:c4:2c:d9:ab:6e:a8:76:a9:36:17:e5:67:c9:
                    72:8c:e3:f6:6b:b2:ad:15:e2:b2:54:94:83:9a:3f:
                    19:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:9C:39:59:A6:26:6D:FC:DC:80:2B:78:14:C0:B3:C3:EF:48:1E:72
            X509v3 Authority Key Identifier:
                keyid:EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         db:56:3b:de:68:bc:ac:ae:82:5d:fa:19:36:33:32:8d:33:07:
         8b:67:28:6b:5b:ed:4d:72:a2:45:6a:ff:b4:33:8e:38:71:51:
         3e:0b:84:39:16:2a:06:9a:31:60:6a:1c:d1:b7:38:f8:d5:f4:
         5b:7e:07:6f:b4:1f:7c:47:eb:b7:fd:46:08:63:c7:22:f4:f1:
         5f:1b:47:87:3b:27:57:8b:5f:98:12:90:1b:cc:76:c7:33:fd:
         20:c3:4b:76:59:d8:f3:4f:fc:80:4b:70:dc:26:67:f0:ed:f9:
         02:49:8c:89:ce:51:4d:8b:8f:45:e8:05:55:a6:5c:39:ba:c6:
         19:ac:66:59:fb:86:ed:e9:34:89:19:75:1c:71:a8:57:bf:94:
         8c:da:da:96:7b:76:13:d3:32:ef:48:d9:a1:2c:07:ab:79:13:
         09:77:46:07:45:30:db:ee:65:dd:35:82:a4:15:46:b1:43:1f:
         65:ad:61:3b:10:e0:10:82:9e:1a:ae:13:76:fb:ce:94:26:2c:
         b3:97:b5:61:fd:b9:80:0d:fa:4c:88:74:0a:7f:75:09:b1:89:
         78:62:1e:8f:74:a3:49:31:ff:c3:4a:78:f5:80:a7:80:a6:33:
         78:39:60:28:6f:e0:12:8c:f1:76:e7:56:bc:63:82:3f:21:e3:
         d9:8f:3e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----