Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
File:                     ZpDQciFADjewHnSnEvrnxtcDFZU.mft (raw, json)
Hash identifier:          nM13+gcNehduCHR+3ON9Zj2mfiJSmJm37fHJXy6Nxd8=
Subject key identifier:   43:57:4E:59:7D:94:CA:E1:2A:2B:A8:7E:2C:B2:62:8B:72:08:3F:AE
Authority key identifier: 66:90:D0:72:21:40:0E:37:B0:1E:74:A7:12:FA:E7:C6:D7:03:15:95
Certificate issuer:       /CN=6690d07221400e37b01e74a712fae7c6d7031595
Certificate serial:       01977264148D4A62F674E3C1343CDD769C43
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
Manifest number:          103F
Signing time:             Sun 15 Jun 2025 07:00:50 +0000
Manifest this update:     Sun 15 Jun 2025 07:00:50 +0000
Manifest next update:     Mon 16 Jun 2025 07:00:50 +0000
Files and hashes:         1: ZpDQciFADjewHnSnEvrnxtcDFZU.crl (hash: THfO7pNjrqyNzn3ZtAaJ503gfWKr/KuhNekj8PQwS8I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 04:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:72:64:14:8d:4a:62:f6:74:e3:c1:34:3c:dd:76:9c:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6690d07221400e37b01e74a712fae7c6d7031595
        Validity
            Not Before: Jun 15 07:00:50 2025 GMT
            Not After : Jun 16 07:00:50 2025 GMT
        Subject: CN=43574e597d94cae12a2ba87e2cb2628b72083fae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:41:54:af:7b:59:bc:ad:81:82:cd:68:64:49:
                    b9:bd:7f:ab:ae:38:3c:a7:b7:1c:5f:f8:f3:a5:18:
                    97:22:1c:83:9f:5a:2a:6c:1d:79:fc:61:0d:b4:39:
                    dc:b6:33:93:c8:0d:41:59:64:cc:36:f9:d5:1c:da:
                    27:ea:9b:85:fa:96:5f:29:81:9c:48:e4:94:e2:e9:
                    cd:32:60:8d:3c:f6:5e:f3:83:78:1b:33:ea:33:64:
                    09:81:cf:6a:73:9a:7e:36:c4:c6:30:0a:b7:39:a0:
                    d8:34:e0:59:ce:5b:47:14:66:f4:b3:40:8c:ec:1d:
                    c0:a0:83:88:03:12:7d:b4:54:d8:70:6f:50:26:50:
                    53:17:eb:af:fc:19:9b:9e:b8:24:6f:80:f3:98:4e:
                    bd:ce:e3:10:6f:79:2c:cd:d4:42:de:0c:b6:b6:c5:
                    ac:65:c7:95:69:ac:e6:e2:cd:cd:8d:7b:1e:93:6c:
                    5a:03:aa:65:77:c5:2f:19:e3:f8:1a:e7:b8:e6:5b:
                    03:16:c6:90:96:95:b0:e8:81:8e:d2:fa:a0:cc:91:
                    e3:59:84:54:82:0c:95:93:11:bc:48:9e:88:a5:6a:
                    08:89:ce:aa:2a:f4:9c:0e:d8:4c:b1:55:bf:2b:ef:
                    fb:57:b5:21:8b:4b:53:7c:05:02:91:b2:10:68:9d:
                    9f:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:57:4E:59:7D:94:CA:E1:2A:2B:A8:7E:2C:B2:62:8B:72:08:3F:AE
            X509v3 Authority Key Identifier:
                keyid:66:90:D0:72:21:40:0E:37:B0:1E:74:A7:12:FA:E7:C6:D7:03:15:95

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:f7:2a:ba:99:5d:e6:0b:88:3d:97:1d:ac:5d:54:d4:45:9d:
         f1:62:e4:a6:7e:06:6b:04:2a:d1:36:85:99:35:0c:f1:59:a5:
         2b:95:c0:d7:b9:3c:7f:52:e3:a5:49:a8:59:ff:9f:f9:20:de:
         43:fa:6c:bd:3a:8d:e3:01:ae:dd:c9:ec:e1:c9:85:2b:72:a0:
         79:d5:6e:9f:45:80:64:e0:bc:92:40:d0:9a:c6:a4:27:2c:4a:
         6a:5e:8c:69:8d:18:10:50:82:f6:a0:72:4f:87:82:ad:4e:b6:
         29:a3:13:8b:4a:95:38:5d:48:07:6b:d2:94:18:cf:b4:3a:b1:
         b1:71:62:1f:9d:21:55:d1:6c:49:97:97:d8:38:7a:db:59:f3:
         9d:5b:9d:98:08:81:b7:c1:4f:8e:62:04:fe:76:b5:0f:97:42:
         1b:bb:fe:d3:8a:1f:da:d5:a4:78:15:3b:77:eb:d1:8c:43:a5:
         85:ba:7e:63:1c:b4:88:34:a2:bc:6d:69:07:41:04:97:02:8a:
         96:37:2f:72:d9:eb:31:f4:d4:6f:b9:f5:8d:8d:30:97:cc:33:
         55:d7:e7:ab:7f:84:67:ff:2e:2e:d1:f4:81:24:21:14:9b:a2:
         3c:1f:68:b7:cd:7e:a3:d2:57:07:d5:d9:2a:7c:94:aa:06:3a:
         da:fa:a5:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----