Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
File:                     G8qoP8mkEL2z4P0thIcgE0dxvs8.mft (raw, json)
Hash identifier:          gcXim9cQOw/h1HctFRZYyLQIMg1VhQ7mfpzJszjHQV0=
Subject key identifier:   FA:F3:DD:C5:E9:59:D6:9F:AE:08:14:8E:AE:61:AB:9B:B1:A5:98:1B
Authority key identifier: 1B:CA:A8:3F:C9:A4:10:BD:B3:E0:FD:2D:84:87:20:13:47:71:BE:CF
Certificate issuer:       /CN=1bcaa83fc9a410bdb3e0fd2d848720134771becf
Certificate serial:       019771F62E3ABD463DFAB980D857FFCD635A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
Manifest number:          151F
Signing time:             Sun 15 Jun 2025 05:00:48 +0000
Manifest this update:     Sun 15 Jun 2025 05:00:48 +0000
Manifest next update:     Mon 16 Jun 2025 05:00:48 +0000
Files and hashes:         1: G8qoP8mkEL2z4P0thIcgE0dxvs8.crl (hash: faQ4qMaZTehfPR8PakxjqGaW6e/LM9ZI1uvXG+6TegY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 04:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:f6:2e:3a:bd:46:3d:fa:b9:80:d8:57:ff:cd:63:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1bcaa83fc9a410bdb3e0fd2d848720134771becf
        Validity
            Not Before: Jun 15 05:00:48 2025 GMT
            Not After : Jun 16 05:00:48 2025 GMT
        Subject: CN=faf3ddc5e959d69fae08148eae61ab9bb1a5981b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:8f:d8:66:5b:90:ef:05:0d:c8:db:98:95:91:
                    6a:ed:4e:d7:8f:0f:90:78:b3:e7:85:36:0f:cd:2a:
                    49:fb:a4:f9:70:d4:d4:d0:cc:fa:04:d5:b2:5e:5e:
                    be:c1:d8:49:80:ef:13:fb:82:ce:07:91:2c:35:06:
                    90:0a:9e:f4:7c:b7:dd:73:43:ca:97:55:ff:b5:3f:
                    7f:72:16:e7:31:2a:06:1f:a9:89:01:a3:23:41:ae:
                    c1:4a:91:95:25:5e:83:16:ba:34:0a:f9:84:54:66:
                    5a:cc:de:14:57:56:f3:ae:0d:93:60:e7:c1:00:64:
                    e1:ad:89:1d:19:0d:fa:29:57:90:bf:41:30:32:b0:
                    c8:bd:21:56:3c:67:5f:29:de:79:8f:19:e4:ca:88:
                    b4:44:bf:96:06:d8:b3:e4:c6:d6:33:e0:54:40:84:
                    de:38:9c:4e:33:9a:3e:98:82:d8:1b:00:e4:d8:ab:
                    e5:33:4d:bd:5a:59:0e:00:eb:d5:e1:eb:fe:96:a4:
                    9c:f8:e4:68:ad:0e:51:98:df:9a:fb:3f:48:90:17:
                    da:b3:5c:9f:58:e0:23:ab:d7:21:cc:71:63:2f:81:
                    95:cd:80:f6:a2:f9:1a:6d:b6:ec:03:ce:fa:70:ac:
                    e5:23:57:1c:0c:e9:f1:cd:c8:96:4f:dd:9a:45:ca:
                    71:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:F3:DD:C5:E9:59:D6:9F:AE:08:14:8E:AE:61:AB:9B:B1:A5:98:1B
            X509v3 Authority Key Identifier:
                keyid:1B:CA:A8:3F:C9:A4:10:BD:B3:E0:FD:2D:84:87:20:13:47:71:BE:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:ad:ce:ee:61:9e:f0:cf:b1:7d:4b:c4:d6:7c:21:ef:52:60:
         ac:e9:0a:8e:fd:52:23:5b:33:bc:5b:97:90:eb:22:53:b9:78:
         b9:b4:92:b0:d9:1a:f3:f6:8d:88:33:f1:c8:39:fe:2f:5c:3a:
         9e:8f:f0:f6:c6:73:aa:85:1c:0e:53:88:46:6b:b7:f8:86:52:
         2d:83:75:6f:3e:a3:e1:f6:3e:28:79:01:c7:91:06:f4:d7:2f:
         b9:16:35:90:87:68:db:a7:02:78:4d:71:4f:0c:ed:1c:92:4d:
         39:9f:6d:80:ce:aa:e3:fc:4a:45:ad:25:9b:c9:f0:e9:ae:db:
         58:d5:03:b2:c7:46:b7:72:18:24:fe:c3:aa:4d:14:dc:61:0c:
         5a:26:3d:f4:58:be:93:5b:b8:c8:36:2d:3a:af:00:e8:10:67:
         2d:ca:b7:d2:d8:6c:01:0b:93:31:b5:02:3d:bf:4e:26:ac:61:
         ee:fe:be:77:98:4b:2d:bf:49:09:49:66:74:8c:df:76:b0:87:
         7f:a6:6a:f9:f7:8a:e4:dd:bc:62:47:50:e6:61:7f:86:07:91:
         f9:2f:30:80:0b:99:29:73:c3:f6:3a:94:72:49:77:17:2d:c8:
         94:6c:2e:c0:05:e0:d0:fb:30:ec:70:3a:66:12:57:89:cc:77:
         f6:98:6c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----