Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File:                     MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier:          l0Pz/eRo87NF8PKoqgIqfrWSuwWAfPVEuBYW84C/W1k=
Subject key identifier:   0B:93:1B:08:A2:41:C3:FD:EF:BD:6B:F4:45:A7:0B:D0:35:C2:0C:CA
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer:       /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial:       019773093B54B50953CF3C6976DCF8614038
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number:          14E2
Signing time:             Sun 15 Jun 2025 10:01:14 +0000
Manifest this update:     Sun 15 Jun 2025 10:01:14 +0000
Manifest next update:     Mon 16 Jun 2025 10:01:14 +0000
Files and hashes:         1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: PWXJwl0iyLlrfNqvHY3mePtE24nfxueaans6c3dVnSo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 04:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:09:3b:54:b5:09:53:cf:3c:69:76:dc:f8:61:40:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
        Validity
            Not Before: Jun 15 10:01:14 2025 GMT
            Not After : Jun 16 10:01:14 2025 GMT
        Subject: CN=0b931b08a241c3fdefbd6bf445a70bd035c20cca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:19:66:8f:76:d7:c9:8e:7d:3b:e9:a6:33:ea:
                    66:3c:4e:e1:40:54:43:0b:45:d1:4b:99:64:bc:29:
                    b9:7c:a1:69:20:97:02:13:c2:f1:0a:32:58:66:8d:
                    cd:71:ff:f6:71:87:1e:9d:b5:e3:85:fa:3e:85:27:
                    c1:97:db:8c:1f:ca:44:32:b7:5c:10:2c:2d:dd:8f:
                    d9:fb:0f:5d:45:5a:a3:2b:80:60:05:00:93:8d:28:
                    2c:ed:c8:f1:74:be:c8:6f:bb:7a:45:43:1b:aa:fb:
                    c1:f9:79:e4:50:e8:78:67:2f:65:ef:9b:bf:5d:7c:
                    c2:d7:f8:b6:7e:3d:9e:89:ff:49:38:53:a1:94:0e:
                    0b:57:b6:7c:a5:2a:25:39:8a:4b:b5:0e:62:24:69:
                    4d:d8:21:8b:e8:2b:61:7a:e5:58:87:36:e1:c9:14:
                    86:0a:dd:0d:1d:f2:8c:e8:ae:83:5f:d0:2c:09:25:
                    75:33:74:bb:0a:fe:06:2f:7d:26:f0:38:10:c4:0c:
                    2a:c4:a0:1f:89:56:45:85:b4:39:7f:e3:3c:56:6f:
                    03:81:61:56:65:36:dd:9c:4e:8c:79:da:33:ce:3e:
                    a9:95:3b:3b:e4:9d:9d:49:e4:9b:16:69:b5:8d:0e:
                    79:00:cc:3c:dd:33:4e:a5:31:08:1e:34:a5:00:66:
                    5b:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:93:1B:08:A2:41:C3:FD:EF:BD:6B:F4:45:A7:0B:D0:35:C2:0C:CA
            X509v3 Authority Key Identifier:
                keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:8a:66:70:50:e9:72:b2:17:83:eb:97:06:df:49:8f:51:b7:
         fa:7a:fd:84:29:6c:ed:93:74:7b:30:44:8b:51:0e:ad:72:fe:
         2b:10:92:84:a6:ee:1f:d9:41:88:b0:3c:bb:ff:96:e6:0f:75:
         79:8b:f9:ef:a4:e5:69:47:4c:8f:e3:00:27:72:f0:19:09:54:
         01:43:ef:24:e2:b4:f4:49:42:46:9d:5f:29:fb:7b:f8:9b:42:
         6c:a6:82:68:42:77:40:2f:11:59:22:9e:6c:8b:d3:f7:22:65:
         d5:e4:45:45:82:a0:03:6e:b9:0d:8e:8c:1c:9f:d7:a9:14:77:
         fb:a8:50:c5:38:fa:27:bf:18:46:d3:bb:75:6f:88:ff:5d:c6:
         5d:d6:e2:f6:96:e1:02:12:e0:c3:96:b1:b3:4d:0d:95:ca:9e:
         de:33:85:71:95:51:63:f7:84:ff:14:59:8e:3a:65:1b:8b:76:
         a9:6b:cb:f6:65:75:96:64:6a:13:62:a3:32:b6:0f:c3:66:a4:
         4e:c8:0a:ce:8e:ab:ed:a0:e8:3f:88:a0:3e:16:07:56:36:7e:
         54:20:d6:68:d4:b2:88:fd:60:a4:00:b6:3d:c5:08:bc:47:a0:
         f9:bc:cb:91:1a:f2:e6:63:d6:55:fd:c2:13:14:e4:48:64:85:
         c1:1f:cb:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----