Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
File:                     G2t-l-0j1mqR-4qRv9nGdxEpsas.mft (raw, json)
Hash identifier:          4So0Pqwzg3s36ExzKODY1Bupc+8OYHgL7lz8MAEnAN8=
Subject key identifier:   FF:C3:A3:23:6E:D5:B3:B6:29:DD:81:BB:7B:AD:3C:F1:46:F8:3A:C9
Authority key identifier: 1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
Certificate issuer:       /CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Certificate serial:       019782E9D685EE4BC6A6DE21F97617C21301
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
Manifest number:          0E93
Signing time:             Wed 18 Jun 2025 12:00:52 +0000
Manifest this update:     Wed 18 Jun 2025 12:00:52 +0000
Manifest next update:     Thu 19 Jun 2025 12:00:52 +0000
Files and hashes:         1: G2t-l-0j1mqR-4qRv9nGdxEpsas.crl (hash: BMOKQwuDN3bgZiafY4dRnRov1oySvOoXJMOColDW+NA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 19 Jun 2025 12:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:82:e9:d6:85:ee:4b:c6:a6:de:21:f9:76:17:c2:13:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
        Validity
            Not Before: Jun 18 12:00:52 2025 GMT
            Not After : Jun 19 12:00:52 2025 GMT
        Subject: CN=ffc3a3236ed5b3b629dd81bb7bad3cf146f83ac9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:5f:22:b3:40:32:4b:df:e7:3d:aa:b7:7d:8a:
                    23:6b:eb:06:d6:e5:f1:f8:94:f6:1e:85:cf:74:76:
                    b3:d6:89:dd:8a:cc:a5:a7:f0:7b:44:e9:ec:b9:c0:
                    62:61:a5:40:8f:b9:8e:c4:95:b1:b6:5e:3c:64:60:
                    8d:2e:4a:b6:37:8c:fd:c1:02:41:67:f0:d0:90:23:
                    b6:c8:73:5f:4c:fb:f7:be:30:d1:1a:90:e2:a7:ad:
                    c5:7d:ba:8b:a1:e6:95:66:c0:2e:fe:47:0b:ae:76:
                    ef:20:1a:e2:19:9a:71:99:07:b2:95:e1:97:bd:f0:
                    58:e7:ee:51:1e:3c:15:27:6a:01:0e:05:79:2a:11:
                    d7:07:a2:17:23:79:15:a0:8d:05:57:57:a0:f9:ae:
                    b8:fb:f3:79:cf:f2:60:75:73:a9:d9:35:0c:01:4e:
                    4a:ce:cd:6e:cb:10:f7:6b:e4:63:ae:73:5f:3d:22:
                    a5:fe:e9:47:18:e4:b9:d9:33:b6:7d:c3:07:2b:a9:
                    2b:88:4b:6b:bc:aa:cd:f0:34:bc:a9:92:73:ba:6e:
                    ec:4f:a0:60:49:ae:fd:3b:cc:ca:09:a7:01:99:d6:
                    e1:f3:8d:21:46:ba:13:ad:9a:f7:e0:e3:75:94:03:
                    29:16:8d:d2:59:cd:21:a8:d8:95:66:b8:5f:56:23:
                    65:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:C3:A3:23:6E:D5:B3:B6:29:DD:81:BB:7B:AD:3C:F1:46:F8:3A:C9
            X509v3 Authority Key Identifier:
                keyid:1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:c9:f3:79:68:33:21:4a:38:13:14:0d:c3:9c:e2:22:f8:e2:
         3f:b3:33:2e:ba:8a:2d:91:96:b8:18:32:6f:d5:e0:67:1a:2f:
         93:a1:2f:50:80:f6:bd:fb:89:2a:52:a4:40:5c:f3:5a:d9:36:
         ce:73:6e:c9:37:9c:dc:82:f0:c9:31:41:6a:a0:f8:10:81:84:
         f7:e5:a4:cf:50:33:de:51:c6:11:3e:38:3c:6e:c8:f8:94:fd:
         3b:56:64:b6:f5:78:73:e8:eb:3c:dd:6c:7e:f2:77:6b:48:61:
         ff:fd:ed:6a:ce:24:0d:f3:83:3c:dc:af:7d:8b:2b:a1:6a:f9:
         df:e2:d9:ee:a2:48:3f:12:31:a8:a4:9d:cc:8c:ca:f5:e9:98:
         5a:72:90:0e:9d:d9:8c:6c:dc:db:6b:9c:75:00:c1:38:60:57:
         93:4c:a4:83:4b:26:a3:e2:a1:18:2f:45:e5:0b:3d:fb:8c:0b:
         be:cb:6f:cb:9f:36:d6:ae:20:3f:b4:eb:b9:b5:4c:dd:51:65:
         1d:6e:08:b9:a0:58:b3:bc:5f:40:83:ea:2a:6a:aa:d8:fc:2f:
         da:2e:d5:53:15:bf:41:8e:2b:9c:c1:86:9c:77:59:40:d1:10:
         04:e3:04:eb:62:18:72:61:31:a0:8b:df:18:c8:35:c1:6d:a4:
         af:b9:cb:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----