Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1b28eb-b5ac-46fc-896b-51f73cd125bf/1/hzi_HME4FngDjvXaZ2QjmOPZgZ8.mft
File:                     hzi_HME4FngDjvXaZ2QjmOPZgZ8.mft (raw, json)
Hash identifier:          XDd+r0oLowNtdSMEYd4x4Ya0f5FI9fV0nuN1dQq1O5I=
Subject key identifier:   9D:69:6B:EA:2E:2F:2E:04:AA:68:83:E8:99:2A:FC:A4:39:7A:98:40
Authority key identifier: 87:38:BF:1C:C1:38:16:78:03:8E:F5:DA:67:64:23:98:E3:D9:81:9F
Certificate issuer:       /CN=8738bf1cc1381678038ef5da67642398e3d9819f
Certificate serial:       01978320BE8C6A20FA25FF9EC59D1E89824B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hzi_HME4FngDjvXaZ2QjmOPZgZ8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/1b28eb-b5ac-46fc-896b-51f73cd125bf/1/hzi_HME4FngDjvXaZ2QjmOPZgZ8.mft
Manifest number:          E6
Signing time:             Wed 18 Jun 2025 13:00:50 +0000
Manifest this update:     Wed 18 Jun 2025 13:00:50 +0000
Manifest next update:     Thu 19 Jun 2025 13:00:50 +0000
Files and hashes:         1: hzi_HME4FngDjvXaZ2QjmOPZgZ8.crl (hash: 7Bbx3+KxtbR1k5UtjVu0JlZRqisTktGtWmD1+TUD6Yc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/1b28eb-b5ac-46fc-896b-51f73cd125bf/1/hzi_HME4FngDjvXaZ2QjmOPZgZ8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/1b28eb-b5ac-46fc-896b-51f73cd125bf/1/hzi_HME4FngDjvXaZ2QjmOPZgZ8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hzi_HME4FngDjvXaZ2QjmOPZgZ8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 19 Jun 2025 13:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:83:20:be:8c:6a:20:fa:25:ff:9e:c5:9d:1e:89:82:4b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8738bf1cc1381678038ef5da67642398e3d9819f
        Validity
            Not Before: Jun 18 13:00:50 2025 GMT
            Not After : Jun 19 13:00:50 2025 GMT
        Subject: CN=9d696bea2e2f2e04aa6883e8992afca4397a9840
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:db:d6:bf:7f:44:25:a5:e5:53:8b:84:72:ec:
                    8c:64:32:12:89:6d:38:04:89:33:e8:49:d5:7c:da:
                    6a:b7:48:e1:f1:f0:d9:d1:53:f7:de:ac:d1:a5:bf:
                    39:28:f2:66:d3:3a:e6:19:7f:1f:24:11:45:00:ea:
                    05:30:22:7b:57:b7:aa:38:e4:fe:72:2a:79:98:57:
                    98:b0:8c:cf:f6:8c:6b:f4:66:04:03:c6:10:83:a1:
                    67:fc:e5:13:ca:cb:a5:5c:55:e8:4c:42:91:84:c6:
                    14:af:22:6b:74:2a:4b:6d:43:0b:d6:32:76:81:c2:
                    9d:a4:88:6f:52:d1:4c:af:f4:36:ea:00:13:9d:06:
                    bd:0e:42:4e:e5:84:b3:13:9a:34:61:c0:0b:ba:ec:
                    3e:59:97:58:40:cc:b7:00:ab:2d:02:24:20:e8:47:
                    2c:10:6c:3b:0d:f2:7c:ef:d9:ec:c4:ca:62:e3:26:
                    1e:f2:46:f2:90:3a:a0:d4:f6:13:49:5a:6a:f6:1e:
                    d0:96:52:48:44:c7:16:16:00:74:74:27:a8:e1:26:
                    cd:49:8d:f4:8c:eb:e9:1e:bd:b8:31:de:af:81:e6:
                    5e:4e:c8:92:40:a9:5e:7e:6c:f0:53:8c:38:35:4f:
                    42:0d:47:77:50:8b:a1:3a:07:cc:1b:c9:ae:4a:c4:
                    a6:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:69:6B:EA:2E:2F:2E:04:AA:68:83:E8:99:2A:FC:A4:39:7A:98:40
            X509v3 Authority Key Identifier:
                keyid:87:38:BF:1C:C1:38:16:78:03:8E:F5:DA:67:64:23:98:E3:D9:81:9F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hzi_HME4FngDjvXaZ2QjmOPZgZ8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1b28eb-b5ac-46fc-896b-51f73cd125bf/1/hzi_HME4FngDjvXaZ2QjmOPZgZ8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1b28eb-b5ac-46fc-896b-51f73cd125bf/1/hzi_HME4FngDjvXaZ2QjmOPZgZ8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:0c:ea:9f:b7:3e:c0:cb:26:9c:e1:3e:3f:0a:fa:39:fe:8b:
         ef:08:b2:a9:42:84:c1:42:6f:aa:87:a9:40:dd:f3:57:ba:ef:
         c5:d9:aa:b3:1d:bb:6f:eb:90:dd:7f:45:1f:59:47:3a:9d:31:
         a7:64:9f:4d:cc:49:fe:b6:93:21:29:26:71:87:06:19:e5:fa:
         79:1a:0f:3b:89:a4:53:9e:97:58:9a:d9:f1:91:28:a1:ef:23:
         64:f0:5a:bd:6f:73:12:86:58:81:ba:1e:46:9f:2a:a2:21:68:
         4b:d8:9e:10:9f:dc:d7:41:2d:67:22:49:bd:c2:99:68:ea:a6:
         fc:79:1b:91:68:ad:b8:ae:7f:34:4c:47:57:35:01:94:75:30:
         9c:32:16:7e:da:75:ae:17:0c:3e:e8:20:44:bd:eb:0c:af:6c:
         f6:11:c2:5f:38:d0:50:8c:81:16:7b:9c:97:da:6e:f1:1a:e6:
         a3:02:e0:03:0d:6d:53:7a:89:b3:0e:7f:aa:01:b6:ec:a5:4a:
         d7:c1:69:48:7a:33:92:9c:70:d3:3e:49:71:29:6f:7b:f5:4f:
         72:db:27:a6:78:0a:1d:12:9d:17:3f:d2:65:48:96:45:8b:1e:
         ff:29:dd:6e:59:14:72:45:81:6f:b9:0c:f8:5f:00:0a:1d:98:
         77:b2:1c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----