Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/a630cf-b257-401f-b3fb-156f3cfbc161/1/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.mft
File:                     cRK3KIxVnh7Uo5BX4K4MK-xC2qI.mft (raw, json)
Hash identifier:          rbbgO5HJLzpzdcI6UT+me02jA9LI/odb/eBkKECg5EQ=
Subject key identifier:   E9:BA:9A:AA:E9:70:ED:17:BA:50:D4:F5:86:74:B7:72:45:82:30:28
Authority key identifier: 71:12:B7:28:8C:55:9E:1E:D4:A3:90:57:E0:AE:0C:2B:EC:42:DA:A2
Certificate issuer:       /CN=7112b7288c559e1ed4a39057e0ae0c2bec42daa2
Certificate serial:       0197794180786EFF9B33B9044707274408D8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/79/a630cf-b257-401f-b3fb-156f3cfbc161/1/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.mft
Manifest number:          0609
Signing time:             Mon 16 Jun 2025 15:00:25 +0000
Manifest this update:     Mon 16 Jun 2025 15:00:25 +0000
Manifest next update:     Tue 17 Jun 2025 15:00:25 +0000
Files and hashes:         1: cRK3KIxVnh7Uo5BX4K4MK-xC2qI.crl (hash: HB17aFMMbMklbSmTgRz1j+7M24TkOD1ruInStPh/fJw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/79/a630cf-b257-401f-b3fb-156f3cfbc161/1/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/79/a630cf-b257-401f-b3fb-156f3cfbc161/1/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 14:25:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:79:41:80:78:6e:ff:9b:33:b9:04:47:07:27:44:08:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7112b7288c559e1ed4a39057e0ae0c2bec42daa2
        Validity
            Not Before: Jun 16 15:00:25 2025 GMT
            Not After : Jun 17 15:00:25 2025 GMT
        Subject: CN=e9ba9aaae970ed17ba50d4f58674b77245823028
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:34:c3:a9:b9:a9:65:0e:0d:57:05:d5:c6:a5:
                    24:35:18:60:bc:c8:25:0e:5b:cb:1d:d6:eb:d4:b5:
                    87:cb:aa:99:1c:63:60:e2:70:36:2c:1f:4a:cb:61:
                    73:cd:44:0d:19:05:04:e6:cb:cc:72:57:b9:bb:94:
                    15:c4:e1:e5:41:7f:dc:c4:af:a9:08:68:f4:1f:51:
                    24:29:72:73:61:68:6a:fc:50:02:73:12:bb:f5:ce:
                    9a:59:a3:ba:37:0d:ae:f1:59:cd:3a:15:7c:00:0c:
                    4d:ea:2f:9d:82:c6:2b:4f:61:9b:8f:3e:53:6b:f7:
                    c1:2c:f2:6c:c2:0b:a2:d0:7c:7e:f8:52:c0:4d:13:
                    55:95:2e:33:4b:52:f3:a1:00:26:46:a2:7d:f8:a2:
                    19:4d:60:51:8e:ae:e1:18:e8:50:f1:20:9f:ef:91:
                    3a:f7:46:4b:63:b5:af:72:38:aa:da:84:72:51:31:
                    3b:61:9e:85:87:e7:35:d6:e5:7f:0d:1a:9d:c1:59:
                    7c:e7:0a:4c:8c:19:fd:77:51:ce:3b:e7:a7:24:0d:
                    ff:a6:4a:21:95:3a:7f:39:96:88:36:c1:04:0a:52:
                    cd:b0:36:57:8f:89:79:52:2d:60:cd:11:f2:f8:c2:
                    8b:b8:f6:96:2d:f9:85:64:7f:77:1c:97:5f:92:03:
                    1d:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:BA:9A:AA:E9:70:ED:17:BA:50:D4:F5:86:74:B7:72:45:82:30:28
            X509v3 Authority Key Identifier:
                keyid:71:12:B7:28:8C:55:9E:1E:D4:A3:90:57:E0:AE:0C:2B:EC:42:DA:A2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/a630cf-b257-401f-b3fb-156f3cfbc161/1/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/79/a630cf-b257-401f-b3fb-156f3cfbc161/1/cRK3KIxVnh7Uo5BX4K4MK-xC2qI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:f1:ff:5c:ef:19:0a:28:27:06:12:4c:6e:88:df:33:f5:ed:
         d9:71:eb:e2:98:91:02:64:9a:15:9d:6d:c7:95:58:99:61:d5:
         14:05:65:49:30:d6:64:35:c9:5f:f0:21:ae:da:6f:c7:a0:62:
         7e:18:55:92:a5:a9:06:10:08:6f:17:6a:a4:5b:e1:d3:19:95:
         8d:59:58:74:47:98:36:db:10:d6:02:88:5c:7a:1f:a4:7c:ce:
         1a:6e:8a:8f:c4:ae:a5:57:72:74:eb:20:11:c4:18:17:6a:60:
         48:96:24:89:22:d7:71:36:5b:0e:0f:7a:80:5a:dd:0b:83:63:
         79:bd:db:84:cf:0d:a6:21:9d:7a:a8:94:0e:33:59:da:43:3e:
         58:c4:b5:7f:57:7c:11:37:7b:95:9d:91:b7:67:da:31:79:d1:
         42:67:6c:5f:f2:81:86:f3:70:3b:37:8a:f3:e9:37:10:02:2c:
         46:d7:06:bc:21:3e:ca:60:b0:a7:a6:2e:18:da:ed:f9:78:ac:
         99:1b:50:30:be:77:c1:cd:ef:64:17:46:18:8e:12:23:54:74:
         18:be:1d:71:3a:75:23:6e:d4:83:7b:26:34:0a:b0:57:46:aa:
         84:a9:dd:f0:cf:f3:33:8a:12:0a:b6:d3:ca:1e:5f:6e:4a:88:
         f5:45:84:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----