Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
File:                     Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft (raw, json)
Hash identifier:          cXW0QSh/9kDJpddkRAp1lDQNrzV9911WCvWZPR1iDPs=
Subject key identifier:   D3:14:9E:12:2F:29:30:FD:3F:BF:E0:36:68:94:E8:3D:89:73:6A:49
Authority key identifier: 0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40
Certificate issuer:       /CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
Certificate serial:       01976D3E5B1E7D0CE5BFEEFDDA8FA7E152EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
Manifest number:          13CC
Signing time:             Sat 14 Jun 2025 07:01:32 +0000
Manifest this update:     Sat 14 Jun 2025 07:01:32 +0000
Manifest next update:     Sun 15 Jun 2025 07:01:32 +0000
Files and hashes:         1: Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl (hash: gVxT6voEFdOE3t79WFpfLJf4bpbH+70heN2OFkzykns=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3e:5b:1e:7d:0c:e5:bf:ee:fd:da:8f:a7:e1:52:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
        Validity
            Not Before: Jun 14 07:01:32 2025 GMT
            Not After : Jun 15 07:01:32 2025 GMT
        Subject: CN=d3149e122f2930fd3fbfe0366894e83d89736a49
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:e3:fd:f3:fd:e0:7b:b6:b5:3a:48:ec:72:fa:
                    cf:c3:72:0e:54:d8:fd:67:c0:f1:2a:27:eb:02:63:
                    d1:a9:1d:18:7d:fe:ea:33:d3:ad:c2:44:f8:f7:74:
                    9b:1d:bf:43:65:78:f4:3c:6d:90:0a:e8:81:e6:d0:
                    27:7c:8f:ba:e7:8b:9f:b1:c0:7d:ec:6c:c5:4e:80:
                    25:ef:ca:6e:2e:bb:2b:a3:6b:56:b0:78:a9:d2:10:
                    c8:42:60:f0:b3:3a:37:a3:64:60:e0:a6:7c:5a:d6:
                    1a:01:4f:94:a6:7d:25:f1:66:3f:53:0b:f1:93:0b:
                    09:c9:1a:0c:ab:32:5d:3b:44:c4:77:1c:f5:34:e3:
                    4c:e9:79:3e:cc:04:69:83:a1:ce:99:5c:03:ab:69:
                    d1:70:76:12:35:36:1a:20:5b:f3:bd:1e:8f:27:eb:
                    af:37:a8:2a:0f:9c:13:0e:aa:68:75:9d:92:0c:ce:
                    6a:8a:9f:e2:93:b7:e0:52:0d:db:01:c5:fe:7a:17:
                    dc:02:c1:1b:cd:e9:34:c6:08:1b:fd:c7:85:f1:7b:
                    9c:30:bd:f8:fd:1b:08:4d:d6:2d:a4:e3:e0:21:14:
                    2f:b2:18:81:57:d6:8d:76:0e:a9:05:69:14:6c:22:
                    13:37:33:da:b0:73:a1:79:ab:3a:f8:db:0d:e7:a6:
                    87:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:14:9E:12:2F:29:30:FD:3F:BF:E0:36:68:94:E8:3D:89:73:6A:49
            X509v3 Authority Key Identifier:
                keyid:0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:2c:74:d6:7e:aa:f0:6d:6f:8e:a1:e5:db:e9:15:e9:93:a0:
         d1:24:6b:08:96:a5:37:77:f0:18:b4:93:11:f5:ef:44:09:13:
         0a:50:3a:f3:c9:95:70:af:ff:14:0a:16:f5:27:24:cc:99:3d:
         5f:56:af:fb:bf:cd:f1:f4:ca:71:d6:68:1e:9d:9c:95:d6:d5:
         71:ba:a8:34:7d:22:0b:d0:33:8a:4d:1b:36:f0:d3:38:9c:82:
         dc:53:04:ae:1e:39:44:0e:46:7f:ae:73:fc:a7:3c:76:16:d6:
         97:7e:be:79:48:13:25:d9:10:f1:b3:3d:f7:83:6a:57:5d:ec:
         5d:a4:a4:41:e7:a0:ea:1a:ff:0c:5a:21:10:cf:21:e1:42:3f:
         c6:4d:b0:76:f3:fe:12:54:56:33:71:38:0a:2c:45:ba:7d:6a:
         a1:38:90:1b:24:cb:0b:9c:43:88:2a:a2:f8:ff:eb:e7:d3:59:
         65:86:b0:27:dc:82:32:96:76:29:51:1e:aa:bf:b3:6d:8b:8b:
         57:6f:31:ca:1a:ea:7d:29:e9:c5:14:95:2b:a6:18:e7:5f:c5:
         3f:da:ec:87:be:a0:d8:ea:fa:b5:2c:23:e0:2f:79:00:cf:50:
         d9:36:d7:29:99:77:13:e1:e7:7a:ec:6b:ec:18:be:8d:06:f3:
         c8:7a:4f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----