Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
File:                     bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft (raw, json)
Hash identifier:          hqFXlnpzZYgghcoxXbGYElaZaWjBnvjwbz4/MFG9fqE=
Subject key identifier:   75:FD:A0:53:34:55:80:54:A6:EB:AD:A5:EF:73:F8:70:64:29:89:9D
Authority key identifier: 6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7
Certificate issuer:       /CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
Certificate serial:       019881D54B3B8D2C003E2CE3C32477D516C7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
Manifest number:          12B0
Signing time:             Thu 07 Aug 2025 00:01:35 +0000
Manifest this update:     Thu 07 Aug 2025 00:01:35 +0000
Manifest next update:     Fri 08 Aug 2025 00:01:35 +0000
Files and hashes:         1: bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl (hash: D7BFxhVl6KEX6LOq9RnUEDPrgdVMxa1jMHJ/tYC6zhU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:d5:4b:3b:8d:2c:00:3e:2c:e3:c3:24:77:d5:16:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
        Validity
            Not Before: Aug  7 00:01:35 2025 GMT
            Not After : Aug  8 00:01:35 2025 GMT
        Subject: CN=75fda05334558054a6ebada5ef73f8706429899d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:57:15:de:8a:16:08:b2:22:d9:0c:8f:60:7c:
                    cf:d0:6b:23:ec:62:a9:d4:97:c4:4c:8a:41:fe:90:
                    c0:b0:22:dc:9b:0f:47:a6:d7:fe:bb:69:83:e4:dc:
                    b1:3d:70:1e:f2:d6:94:b3:77:30:46:87:a5:05:46:
                    dd:f9:6d:8e:32:0c:1f:aa:27:e6:f7:19:16:1f:38:
                    45:1f:91:d3:07:5c:fd:17:1a:53:4c:ee:8f:38:e9:
                    ce:56:d6:b6:56:bb:ee:7e:a9:3e:a5:79:54:5d:58:
                    e0:e3:30:b4:f3:03:94:37:10:2d:65:59:a9:7e:fc:
                    1c:ff:96:60:5d:4d:80:3a:9d:9e:80:56:33:d6:04:
                    d4:45:35:eb:f2:87:22:f4:a4:1d:33:b1:26:2c:24:
                    c3:ba:a3:09:8f:87:f9:45:31:a2:49:25:c4:f5:8f:
                    fd:75:7c:91:3b:6d:48:32:96:90:c6:f2:0c:c1:cb:
                    f3:8b:77:c4:18:7f:aa:ab:2d:18:78:4d:bd:f4:6c:
                    c2:b5:4f:ea:3b:6f:b6:1d:86:3e:1b:de:07:14:9a:
                    09:19:3a:42:31:84:cd:67:85:64:fc:06:c3:78:43:
                    ac:bb:54:0a:ab:b2:1b:39:bc:e9:d5:07:0c:66:a8:
                    49:99:b2:e8:b4:ec:22:d9:bc:4d:c5:77:af:0d:17:
                    7f:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:FD:A0:53:34:55:80:54:A6:EB:AD:A5:EF:73:F8:70:64:29:89:9D
            X509v3 Authority Key Identifier:
                keyid:6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b3:05:1f:e4:3c:fb:94:bf:7b:5d:c3:0b:9d:3b:a1:db:96:b8:
         7a:2e:c3:87:c4:69:d1:5f:ba:60:96:0b:f6:71:04:fb:89:64:
         5a:c2:ce:80:c7:50:a5:d4:62:31:bd:33:09:78:aa:1f:e7:08:
         a9:a2:17:53:15:65:6c:89:ec:7a:25:7c:43:70:3f:88:8a:fa:
         ac:78:d2:a8:e4:68:90:1d:9a:81:32:17:b4:b9:d4:ed:3e:a7:
         0d:77:c1:61:41:1e:79:62:c6:a4:59:b7:e1:0d:e1:1d:c4:11:
         32:ce:e7:49:2c:14:bb:00:8f:d2:f1:06:1f:b4:41:14:b0:2d:
         ff:a1:6c:83:f0:a0:57:99:fa:29:30:f3:34:7a:12:35:96:ef:
         28:a8:fc:e8:eb:b9:5b:2b:dd:b3:95:30:b3:6c:7b:e5:71:0b:
         85:00:a2:dc:05:89:ab:42:38:7e:6c:11:1d:b1:48:40:8a:ab:
         4d:40:64:ef:04:a4:63:20:bf:ce:68:c2:1f:96:f6:94:cb:4c:
         32:42:84:ce:93:53:47:e1:8b:fc:e4:a5:f8:97:5c:ab:3e:86:
         90:21:94:48:30:1f:4a:b9:8c:8d:80:38:25:98:12:46:18:35:
         b6:e6:6c:73:8d:41:e0:71:79:59:7b:a6:24:69:e2:b7:c1:06:
         ec:e3:e0:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----