Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft
File:                     tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft (raw, json)
Hash identifier:          85p0svk2CtdECuGi7Q1B50fML3RZuMAF5mZ6Wl/juhE=
Subject key identifier:   AB:7C:6D:52:93:27:41:2B:7A:E7:26:A8:49:8B:EB:1D:23:C5:72:24
Authority key identifier: B7:3D:88:D7:46:8A:F6:01:AF:14:C5:E1:ED:90:3C:4F:36:CA:F5:FA
Certificate issuer:       /CN=b73d88d7468af601af14c5e1ed903c4f36caf5fa
Certificate serial:       01977CB0D6FFA0BCDC77E723C4147FE22107
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tz2I10aK9gGvFMXh7ZA8TzbK9fo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft
Manifest number:          1593
Signing time:             Tue 17 Jun 2025 07:00:53 +0000
Manifest this update:     Tue 17 Jun 2025 07:00:53 +0000
Manifest next update:     Wed 18 Jun 2025 07:00:53 +0000
Files and hashes:         1: tz2I10aK9gGvFMXh7ZA8TzbK9fo.crl (hash: /6hx8X+JGRD30H9RM6xrcGe2dAsxTxTZ64+6vHqbpSI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tz2I10aK9gGvFMXh7ZA8TzbK9fo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 18 Jun 2025 07:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:7c:b0:d6:ff:a0:bc:dc:77:e7:23:c4:14:7f:e2:21:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b73d88d7468af601af14c5e1ed903c4f36caf5fa
        Validity
            Not Before: Jun 17 07:00:53 2025 GMT
            Not After : Jun 18 07:00:53 2025 GMT
        Subject: CN=ab7c6d529327412b7ae726a8498beb1d23c57224
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:e4:6c:9a:f1:ae:43:65:20:31:88:13:43:e3:
                    7d:b1:4c:b4:33:24:1a:ef:5a:e5:4b:fd:99:cc:b5:
                    c3:04:28:4e:2c:0e:2f:08:c3:f8:0b:38:0c:c4:f6:
                    cb:91:a4:e1:51:07:5c:06:80:a0:87:ef:a0:b1:ab:
                    57:82:34:ee:4a:48:b0:64:0d:4f:1f:35:da:3f:11:
                    70:47:fc:be:6d:d7:7d:2d:a4:2b:53:69:ab:dc:72:
                    42:36:64:d9:f3:47:d5:9b:b2:1d:3e:de:2a:c9:cc:
                    5f:5c:a1:ce:37:04:15:de:b6:2f:3f:ac:fc:28:5e:
                    03:c7:1d:11:70:29:2e:ee:a9:61:3b:dc:61:12:dc:
                    11:a1:33:05:c7:ff:58:41:30:0a:7e:bf:1f:09:88:
                    ec:b0:e6:bc:3b:95:10:90:16:d3:3c:d2:0f:5c:c5:
                    9c:31:06:ba:85:a7:9a:05:2c:1f:db:97:bb:66:13:
                    9e:40:f3:6b:8d:30:80:25:21:71:81:fa:f7:8f:dc:
                    57:f6:17:bb:00:7e:19:90:7a:ab:a2:40:dc:88:60:
                    85:36:c0:50:fc:a9:77:9f:8c:b9:05:36:5b:e4:f3:
                    f1:1b:7b:4b:b5:81:77:b3:07:ea:63:8c:bc:20:3a:
                    ee:ab:a9:c2:86:ec:81:45:09:c5:95:71:43:f8:fe:
                    5c:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:7C:6D:52:93:27:41:2B:7A:E7:26:A8:49:8B:EB:1D:23:C5:72:24
            X509v3 Authority Key Identifier:
                keyid:B7:3D:88:D7:46:8A:F6:01:AF:14:C5:E1:ED:90:3C:4F:36:CA:F5:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tz2I10aK9gGvFMXh7ZA8TzbK9fo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         e2:dd:17:58:6f:40:0c:71:c2:d8:53:00:69:80:7b:35:e6:58:
         ff:fe:7e:56:20:d0:a5:bd:52:ea:b5:7f:01:2e:68:89:56:d0:
         a5:95:7c:7f:57:b5:0c:64:02:91:47:d0:df:09:a4:06:16:a3:
         41:79:17:09:9a:c7:cf:83:2a:c2:74:22:27:24:db:dc:71:67:
         33:43:d5:92:9f:37:a4:d0:c8:91:d3:59:f1:4c:aa:a2:b2:ff:
         17:07:9e:2f:31:c2:bf:f8:ee:aa:18:60:03:6c:1e:b4:e8:7e:
         a7:e2:7b:c1:e6:c8:0a:44:60:bc:90:a7:b3:ff:98:72:9d:43:
         48:e4:a1:91:1b:67:a6:d4:1e:b5:78:e7:d4:f3:74:b7:e3:87:
         10:13:1a:28:98:bc:eb:35:2e:27:5f:a2:ac:2f:77:86:96:8a:
         c0:6a:0d:d1:0a:a2:40:40:1a:e9:42:5f:ee:4d:7d:4e:08:b0:
         ed:df:3e:63:7a:20:0f:e4:5c:6f:12:32:75:ec:37:4d:f5:ac:
         b9:38:ea:7f:da:15:f2:d3:df:57:de:22:ae:a3:84:93:a8:01:
         c4:67:ad:ff:5e:36:19:7d:67:d8:7a:f0:58:59:8f:99:d7:dc:
         8e:bb:61:2e:9e:3b:e5:fc:db:fa:66:b2:f7:a1:d2:72:45:28:
         49:ca:6f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----