Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File:                     4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier:          qPsfuLtwv2AUkXGylpFAz3d8zrtOaZfU0Xd9ADdDVLk=
Subject key identifier:   5F:16:D2:02:6E:13:28:BB:05:EB:49:05:30:EB:AE:4F:74:8E:44:62
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer:       /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial:       01976DAB33E7F6CCED0396C84B8FDAFE9EC0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number:          0A69
Signing time:             Sat 14 Jun 2025 09:00:25 +0000
Manifest this update:     Sat 14 Jun 2025 09:00:25 +0000
Manifest next update:     Sun 15 Jun 2025 09:00:25 +0000
Files and hashes:         1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: kG2B63nPGmkPsqTjb1HYo3Lb6q64OfCgqQjoQY4HQ+U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:ab:33:e7:f6:cc:ed:03:96:c8:4b:8f:da:fe:9e:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
        Validity
            Not Before: Jun 14 09:00:25 2025 GMT
            Not After : Jun 15 09:00:25 2025 GMT
        Subject: CN=5f16d2026e1328bb05eb490530ebae4f748e4462
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:49:01:07:4d:3f:91:04:73:20:1f:7c:4d:38:
                    61:b6:fc:e3:1d:e7:9f:e9:36:cf:ee:f5:d9:18:92:
                    02:c2:7e:c7:ff:03:92:da:67:c9:3d:76:46:4a:1f:
                    6b:ea:b6:cb:b6:92:f7:ed:30:52:33:d8:c7:53:4a:
                    f8:b5:7b:cd:37:22:01:8e:50:42:6e:02:88:eb:b0:
                    73:8e:44:ac:22:2a:e0:95:a2:16:06:ca:a7:cb:5a:
                    f6:39:f0:91:1d:f1:cb:51:94:bb:39:85:02:4d:cf:
                    fe:14:4e:e3:14:ef:52:bc:08:bf:a5:9a:39:62:2f:
                    9c:b9:06:96:3b:36:df:bc:7d:65:4d:9d:e2:ce:40:
                    8b:e4:dc:c6:e9:64:36:54:10:05:ba:9d:a1:49:d3:
                    10:9b:3c:62:e5:de:b7:54:56:96:9e:30:6b:af:d4:
                    8c:38:8d:04:2e:78:73:78:6a:d3:20:5f:28:de:93:
                    65:f9:fe:dc:a9:32:d6:0d:5c:51:48:dc:a2:49:b8:
                    1d:19:f7:88:2c:4b:bb:26:32:34:c7:f9:68:dc:d5:
                    2b:c0:2d:01:83:ce:df:09:c6:c6:8b:f8:3f:e5:e6:
                    fa:a0:aa:10:5a:f0:46:dc:59:21:78:ac:ac:c7:1e:
                    ef:12:5c:72:87:8d:3d:c4:d3:0f:2d:d7:e4:15:0d:
                    ff:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:16:D2:02:6E:13:28:BB:05:EB:49:05:30:EB:AE:4F:74:8E:44:62
            X509v3 Authority Key Identifier:
                keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:16:09:64:1f:5f:c1:25:b1:0a:15:14:af:33:76:db:c2:78:
         0e:11:17:27:a2:6f:88:55:63:d2:ce:18:0b:c4:c4:87:3b:b4:
         06:28:e7:62:22:cb:2e:2d:c7:cb:a1:eb:bc:6b:13:f4:47:13:
         25:42:15:8a:5b:22:0b:e3:de:5c:59:85:6f:dd:da:9d:63:51:
         c1:2a:59:8a:e9:e4:48:3f:17:9f:53:9b:a0:22:38:66:7d:da:
         0a:d2:cd:2c:9a:2e:fa:dc:c4:c7:e0:97:a0:7c:65:cb:d2:e3:
         a7:5e:8b:db:f7:2a:cb:c4:6e:c6:12:fc:38:4e:23:87:e7:e3:
         68:92:93:d6:74:75:6a:73:26:e3:36:15:2f:bf:f8:af:a2:c9:
         c8:00:1e:ec:ee:56:43:b6:c7:43:91:34:7f:c9:3c:41:8c:87:
         d0:a9:c4:88:ce:61:49:67:ef:7c:47:db:60:a1:9e:25:d4:26:
         98:90:d9:95:f0:12:43:15:b8:30:59:ff:8e:10:3c:1c:30:30:
         e6:e0:ed:0a:35:44:0e:a9:1e:47:7b:48:8b:49:bf:de:4d:c2:
         01:5c:f7:42:59:ba:0a:66:85:43:21:48:c1:36:e6:1a:d3:95:
         05:df:9f:8a:e4:b1:67:19:40:8e:36:cc:df:07:9e:55:1a:a5:
         0c:f9:f0:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----