Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft
File:                     y3yVUPThoer5UHL7G5q7JpVNJj0.mft (raw, json)
Hash identifier:          f0J0Qui+LqDsqk6Zpad5hdR+4XgXiCxeBuWpA4OTfOM=
Subject key identifier:   7B:78:86:95:48:0D:48:A4:76:F1:3A:24:3C:2D:1F:C7:0B:01:25:54
Authority key identifier: CB:7C:95:50:F4:E1:A1:EA:F9:50:72:FB:1B:9A:BB:26:95:4D:26:3D
Certificate issuer:       /CN=cb7c9550f4e1a1eaf95072fb1b9abb26954d263d
Certificate serial:       019773E4DD5FA6A34DD261BDE9A520770B0C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/y3yVUPThoer5UHL7G5q7JpVNJj0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft
Manifest number:          0C3A
Signing time:             Sun 15 Jun 2025 14:01:08 +0000
Manifest this update:     Sun 15 Jun 2025 14:01:08 +0000
Manifest next update:     Mon 16 Jun 2025 14:01:08 +0000
Files and hashes:         1: y3yVUPThoer5UHL7G5q7JpVNJj0.crl (hash: 8oRweIsJIleFRf/EFoAB1wNPApxhqErYbV9hE17oGng=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/y3yVUPThoer5UHL7G5q7JpVNJj0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 13:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:e4:dd:5f:a6:a3:4d:d2:61:bd:e9:a5:20:77:0b:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cb7c9550f4e1a1eaf95072fb1b9abb26954d263d
        Validity
            Not Before: Jun 15 14:01:08 2025 GMT
            Not After : Jun 16 14:01:08 2025 GMT
        Subject: CN=7b788695480d48a476f13a243c2d1fc70b012554
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:5d:bd:6c:8e:66:22:fc:27:7c:7b:b1:68:08:
                    8e:ad:53:60:a8:0c:ca:b5:80:11:ee:c9:ae:9d:89:
                    8d:02:3f:e6:9d:62:a1:94:56:1b:8e:5d:34:ab:71:
                    3b:6a:b0:a9:d7:22:e6:35:4e:be:b5:83:bd:1b:f0:
                    7f:d0:25:94:a8:67:ad:e6:48:98:8d:38:36:ee:ab:
                    21:d7:49:21:9a:1b:5f:f3:43:5f:75:13:e1:5f:ad:
                    79:58:4a:6e:cf:14:32:24:93:a2:91:60:9b:4c:e8:
                    73:78:9e:46:68:bb:e4:4e:58:f9:02:8e:03:77:8d:
                    c1:53:a5:15:c4:14:05:b8:19:d9:5d:3f:bd:bd:2e:
                    57:d1:53:d1:3f:2e:38:9e:66:19:ff:6b:f8:36:1d:
                    e7:72:3c:f9:91:52:90:f1:42:67:26:90:e8:42:21:
                    ee:65:61:40:7f:f0:86:73:74:62:10:f8:0c:81:28:
                    19:85:a7:ff:4f:19:78:7d:10:08:97:4e:67:d2:21:
                    21:3b:e8:dd:41:cb:ec:5e:dc:e1:82:c3:91:2a:c8:
                    8c:83:38:da:63:82:74:3a:2a:b3:33:b9:99:a5:87:
                    91:60:25:cd:76:fd:57:13:02:6a:43:94:84:31:ad:
                    2a:08:21:75:0e:df:6e:84:d4:ab:da:b2:c0:6c:7d:
                    d7:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:78:86:95:48:0D:48:A4:76:F1:3A:24:3C:2D:1F:C7:0B:01:25:54
            X509v3 Authority Key Identifier:
                keyid:CB:7C:95:50:F4:E1:A1:EA:F9:50:72:FB:1B:9A:BB:26:95:4D:26:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y3yVUPThoer5UHL7G5q7JpVNJj0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:ba:1b:0b:1c:3c:16:26:3c:63:90:75:7a:d0:7e:09:90:50:
         d3:21:e5:15:b3:e0:d6:78:bd:76:b9:b3:1e:db:79:00:90:b8:
         ea:d6:25:2d:3a:1e:f7:65:d0:bf:8c:89:50:fa:24:6f:6d:ca:
         a9:26:40:42:d1:08:9e:53:db:47:5a:fd:73:c0:31:53:ce:42:
         4a:e3:e8:94:e7:a8:59:a7:7a:4a:7c:56:f1:94:05:74:ef:bb:
         eb:a1:25:b2:ff:f6:62:c9:26:ef:eb:5d:85:09:74:17:ff:82:
         98:d1:ad:35:eb:38:48:18:85:52:f3:94:6c:12:de:13:19:82:
         c1:81:59:d3:d9:06:24:e7:be:d0:21:ac:e9:09:a9:5c:77:86:
         32:96:5c:88:0a:d2:9b:92:7e:76:ec:84:7c:41:6f:c3:ce:6e:
         e7:0d:61:35:5a:fe:39:41:f9:82:a1:d6:0f:55:5a:85:fe:14:
         f8:cd:f6:7a:9b:f0:1b:61:be:46:63:dc:f5:38:3e:f9:dc:f8:
         7f:6a:dc:08:3b:5e:89:51:2e:bf:69:83:b7:24:46:a1:f9:b9:
         4c:48:3b:4e:f7:be:4b:a6:ad:be:b8:ad:3c:90:24:86:af:66:
         ac:33:fa:9a:7b:e3:07:37:e7:18:79:68:08:82:16:69:e5:7d:
         83:e7:c7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----