Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
File:                     2V_Z-7sug4agu3amyEH8aKfD65g.mft (raw, json)
Hash identifier:          e2hKdsCpVa2rKTAjMubxqv9W+sbBdrLDychcvcTWdEY=
Subject key identifier:   FB:C9:33:8A:5A:47:B7:CC:4F:5F:3C:81:E5:70:34:46:71:76:7C:D0
Authority key identifier: D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98
Certificate issuer:       /CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
Certificate serial:       01976C6251AE7B114D1309220F1F78FCF2F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
Manifest number:          01E0
Signing time:             Sat 14 Jun 2025 03:01:12 +0000
Manifest this update:     Sat 14 Jun 2025 03:01:12 +0000
Manifest next update:     Sun 15 Jun 2025 03:01:12 +0000
Files and hashes:         1: 2V_Z-7sug4agu3amyEH8aKfD65g.crl (hash: /wIRft3nOWN9hJVmlcmuLvtohMW8fucg6xWvp7seTs4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:62:51:ae:7b:11:4d:13:09:22:0f:1f:78:fc:f2:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
        Validity
            Not Before: Jun 14 03:01:12 2025 GMT
            Not After : Jun 15 03:01:12 2025 GMT
        Subject: CN=fbc9338a5a47b7cc4f5f3c81e570344671767cd0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:6b:4c:f5:21:4a:e3:91:7e:7b:59:30:94:8c:
                    13:4c:29:0b:e1:93:25:b7:96:d9:c0:eb:ef:6b:8e:
                    66:f2:89:34:d5:a9:49:7c:29:0f:60:55:f4:59:44:
                    2a:cd:02:62:9b:74:72:ba:69:3d:51:de:f4:aa:ff:
                    1a:36:50:07:64:bf:4d:02:36:8a:88:13:04:f3:3d:
                    a9:76:87:d5:0a:bb:45:cf:e3:8f:cb:96:17:64:1f:
                    67:02:85:0b:a1:33:7e:6d:f4:15:e4:c2:54:57:cc:
                    5b:e4:09:83:c9:6b:b5:8c:a5:d7:91:ad:e7:a7:f8:
                    e3:65:68:5b:51:83:b0:aa:fe:97:1b:34:e9:51:8f:
                    e6:49:a3:d5:69:e8:2f:00:3b:dc:37:f9:b5:de:71:
                    5c:6c:1f:96:13:21:93:39:02:fc:f6:40:07:d3:c1:
                    f4:8e:dc:c6:95:e1:d2:b6:0b:64:4a:43:cc:a3:30:
                    60:46:ea:64:6a:6c:75:f6:45:74:24:d2:0b:77:49:
                    46:30:31:0d:83:5a:93:87:cb:f0:02:43:bc:46:de:
                    6a:42:67:0e:e5:86:c7:53:79:9b:a4:4e:d8:00:30:
                    76:be:e3:eb:f3:ba:2f:82:b1:cb:e4:14:25:08:64:
                    45:72:64:b3:7d:7b:63:4d:ab:86:8c:2f:a0:16:c9:
                    c7:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:C9:33:8A:5A:47:B7:CC:4F:5F:3C:81:E5:70:34:46:71:76:7C:D0
            X509v3 Authority Key Identifier:
                keyid:D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:c6:95:eb:08:32:0a:30:55:d9:7f:f0:c8:89:7b:77:c2:14:
         db:12:5e:2b:f3:84:0d:0e:49:0c:a0:fa:ad:9c:56:c0:d6:fb:
         88:a7:aa:02:61:34:5e:cd:d8:89:bf:82:2a:6f:cf:7d:74:8a:
         bd:c1:e0:6e:d2:62:39:9b:da:29:9c:b8:1b:a4:62:40:3f:d5:
         f8:9b:2e:d9:d6:4a:46:08:8a:10:cc:a8:a5:93:9a:a5:81:4c:
         af:79:58:0b:09:33:7b:03:1f:57:96:fc:f6:44:ce:2b:ec:d4:
         4a:f2:ff:f7:b3:6a:9a:ec:d6:af:a6:71:11:8f:34:08:a0:46:
         46:9f:f4:88:57:fd:f5:6a:94:08:2c:9a:dd:a3:6d:da:88:b9:
         31:2a:aa:ea:a9:53:81:22:5f:64:ca:c6:5e:f8:6f:90:a9:d8:
         6a:b4:41:49:6f:d6:e0:37:03:ec:ab:20:39:1c:43:f4:05:f0:
         ef:15:8c:94:4a:bc:36:95:d7:ac:29:51:52:c2:a9:a8:ce:03:
         4a:dd:cc:5d:1c:ba:b5:28:c2:b2:d2:8e:f0:60:06:89:85:33:
         5c:5a:04:ae:a2:4f:a4:06:ad:34:4e:f5:f0:3a:2d:93:0a:b8:
         42:9f:1d:3a:7f:d5:44:17:a4:33:e2:68:63:6c:8c:50:4e:50:
         a0:79:50:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----