Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
File:                     jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json)
Hash identifier:          bpltKYgcuJKE9PdWCSfe+JZhjsk4WQU3zBpl1VgcOic=
Subject key identifier:   A5:03:0D:BF:F5:0A:77:BF:AA:4F:BE:FC:F9:E9:A6:56:E7:B8:62:3C
Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
Certificate issuer:       /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Certificate serial:       019787A22A4EE932C0E8005470A0B9ABB4C6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
Manifest number:          054C
Signing time:             Thu 19 Jun 2025 10:00:41 +0000
Manifest this update:     Thu 19 Jun 2025 10:00:41 +0000
Manifest next update:     Fri 20 Jun 2025 10:00:41 +0000
Files and hashes:         1: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: VOLfiTZiOYNj9+7OU8cQLeAGn8EY3yQG9Fk4F2HEdow=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 20 Jun 2025 10:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:87:a2:2a:4e:e9:32:c0:e8:00:54:70:a0:b9:ab:b4:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
        Validity
            Not Before: Jun 19 10:00:41 2025 GMT
            Not After : Jun 20 10:00:41 2025 GMT
        Subject: CN=a5030dbff50a77bfaa4fbefcf9e9a656e7b8623c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:7c:8b:ea:00:4c:94:fb:99:8e:1e:78:48:a8:
                    6f:cd:36:24:5f:cb:f0:cf:6c:bb:3a:b8:28:5c:a2:
                    a8:fd:5a:bb:bf:79:4f:41:84:6a:d2:6d:e0:62:89:
                    5e:5b:8f:d9:bd:cd:3b:2b:3b:43:72:0b:3d:73:e8:
                    30:1d:be:da:aa:6a:6f:d6:9e:94:de:fd:d6:e5:79:
                    b1:c1:09:8a:3a:f1:f7:13:0b:cb:c2:09:18:0e:5c:
                    aa:72:9e:72:2f:0e:29:c8:e8:0b:2f:1e:5e:73:cf:
                    ed:8f:c5:4a:c9:93:f1:87:24:29:3f:bb:88:e9:d2:
                    a5:bb:04:d5:e0:ff:f0:ca:96:47:71:38:6a:b8:b3:
                    b9:55:73:55:5a:2a:16:f4:33:70:f9:02:8d:8b:db:
                    76:8d:7d:4f:47:8e:78:d5:ab:ea:12:2d:43:5a:64:
                    31:d4:a8:31:89:bf:16:3e:a7:09:c5:c5:46:5d:eb:
                    af:35:e5:48:2d:d2:07:9a:26:1f:d0:75:0f:a4:fc:
                    4c:cf:48:ec:e1:d4:fd:9f:6f:29:89:5f:6b:21:c7:
                    dc:85:e9:33:d9:4c:93:92:f4:cb:b0:e6:8f:0c:5e:
                    15:a4:8e:93:3c:6a:d9:c7:28:83:72:4c:0e:f0:4f:
                    e7:5e:f4:62:62:14:17:0b:58:80:f8:67:cb:f5:0d:
                    17:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:03:0D:BF:F5:0A:77:BF:AA:4F:BE:FC:F9:E9:A6:56:E7:B8:62:3C
            X509v3 Authority Key Identifier:
                keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:40:b4:3a:4f:e6:87:cc:7c:32:94:a6:ca:b0:bf:b1:d4:e7:
         91:95:17:09:be:7f:47:af:f7:7d:fb:5b:99:46:03:5d:8a:2e:
         d2:ac:30:0f:d0:3d:6c:1d:07:1e:d8:1b:f4:b4:cf:23:3c:12:
         d3:7f:ca:97:04:1a:0d:9e:87:fd:1b:cd:bb:2f:6c:56:52:7f:
         7e:e7:b3:40:65:27:b6:66:54:44:d8:66:12:8c:e6:e1:a5:38:
         41:5f:35:c6:15:04:df:0e:b2:2d:eb:a3:05:8e:b2:ff:32:c4:
         ef:2f:bc:1d:81:39:97:48:97:ba:25:cb:d4:df:78:41:da:37:
         a9:5b:6c:79:60:23:ec:03:5f:2f:ab:8c:84:27:cc:59:4e:c3:
         34:f2:46:40:51:fe:16:fc:bb:e7:d3:14:d1:60:a4:20:53:eb:
         aa:76:f2:35:60:0c:88:5b:17:b8:53:c9:70:d2:ff:8c:c0:06:
         93:4a:85:a2:68:4a:8a:7d:3f:ff:da:b9:2d:11:85:3d:15:39:
         0e:ee:83:83:74:83:54:92:54:58:8e:9b:7e:e1:58:cb:b7:43:
         7c:dd:c9:38:6a:10:fc:16:e3:50:6a:60:8b:db:8d:84:54:68:
         a1:b5:fd:3a:37:9f:c5:a0:a0:2e:ab:8b:12:b1:3b:4f:ac:32:
         f5:05:37:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----