Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
File:                     qwJca7PczxsWUUnChzwEsabH2no.mft (raw, json)
Hash identifier:          Wfyjl6REUWA04p3Bw3NXh1v5O2egbUOE06q6goiawH8=
Subject key identifier:   1D:03:BF:F5:C4:D5:33:74:1D:D1:C2:71:11:2F:1C:08:A2:11:1A:26
Authority key identifier: AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
Certificate issuer:       /CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Certificate serial:       01976D3E543AC5619D8658E89CD645514D6B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
Manifest number:          0A4B
Signing time:             Sat 14 Jun 2025 07:01:30 +0000
Manifest this update:     Sat 14 Jun 2025 07:01:30 +0000
Manifest next update:     Sun 15 Jun 2025 07:01:30 +0000
Files and hashes:         1: qwJca7PczxsWUUnChzwEsabH2no.crl (hash: Kpmx+LkRkLfmF9M7my4UXFWMf0l98k6Js/FubOsollU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3e:54:3a:c5:61:9d:86:58:e8:9c:d6:45:51:4d:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
        Validity
            Not Before: Jun 14 07:01:30 2025 GMT
            Not After : Jun 15 07:01:30 2025 GMT
        Subject: CN=1d03bff5c4d533741dd1c271112f1c08a2111a26
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:c7:1b:2d:c8:f6:18:a3:3a:9d:09:ea:35:94:
                    c3:a6:01:a4:c4:b3:b0:ca:49:16:f1:74:eb:47:6b:
                    80:36:e0:78:b2:80:18:74:e8:f7:35:17:e8:ee:cd:
                    f9:44:1d:3e:a5:89:c1:0d:b7:6a:d3:df:db:70:24:
                    55:0e:9a:78:6b:b9:e4:29:7d:c5:cf:a2:bf:68:fe:
                    ed:65:94:ad:fa:05:25:b6:3f:35:5c:92:8c:e0:42:
                    3d:8c:be:d4:d9:af:d3:33:3d:33:d3:1d:07:65:a3:
                    59:2e:86:41:20:38:28:7a:39:99:ad:ee:f1:a6:9e:
                    8c:46:28:ae:cd:16:05:7d:c7:46:33:06:7c:2d:d6:
                    29:f1:ab:bc:b5:ad:8e:36:15:62:95:e6:b9:f5:15:
                    0b:ef:c2:d7:cb:40:fc:b7:97:76:0d:0e:81:5e:2d:
                    08:fa:e7:51:02:da:24:50:4d:22:b3:df:6b:96:57:
                    c1:2b:6a:05:a9:d3:3a:43:5d:2c:e1:f8:35:8d:69:
                    39:c8:87:83:a7:c4:64:15:95:2c:68:cd:78:75:9a:
                    1a:df:42:bf:30:c6:8c:36:76:a0:1f:36:30:d4:d2:
                    b9:4c:18:5e:7f:41:0c:50:d1:07:3f:c4:6b:95:cc:
                    5b:76:cf:96:13:9b:1a:01:5f:cb:42:2e:61:20:bc:
                    e2:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:03:BF:F5:C4:D5:33:74:1D:D1:C2:71:11:2F:1C:08:A2:11:1A:26
            X509v3 Authority Key Identifier:
                keyid:AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:62:0a:ca:e1:81:ba:53:d5:bc:d0:c3:12:06:f0:15:71:fc:
         61:8e:a5:8b:22:7a:18:2b:50:83:27:f8:2a:10:6b:f4:aa:a0:
         65:bc:d7:d8:e1:8c:85:c3:a3:3d:c3:33:ea:98:b7:3d:ed:53:
         6f:f0:74:c3:f5:c8:57:98:03:ec:ac:d4:e6:18:f7:af:c9:3e:
         80:4f:23:5a:af:db:8b:1e:31:a6:13:bd:b1:9d:d5:12:2b:0b:
         79:d0:6b:29:53:bf:60:f2:dd:d6:ef:8b:a8:1b:5f:a3:07:9f:
         fd:e6:09:b2:1f:60:de:60:59:e4:cb:e6:b5:00:5c:99:21:3a:
         2b:a7:d1:33:59:20:3e:ea:a8:65:ed:57:5c:2b:72:53:51:1e:
         6c:57:23:94:92:67:cf:e2:7a:03:e8:77:41:50:0d:85:be:3e:
         d7:26:33:83:b3:c5:4b:84:bc:09:50:a2:09:19:8a:0f:a3:e2:
         46:1f:6d:d3:e9:c8:5f:8e:e2:b6:dd:83:0f:b2:dd:c1:f5:60:
         d0:e5:c2:6a:56:21:99:a1:0b:3a:7d:3b:d3:9e:0a:0a:22:e6:
         b3:55:ba:a8:32:e2:93:2c:73:87:67:41:65:33:00:9c:0f:11:
         ec:36:22:71:16:e4:a3:91:26:b8:b3:da:e3:40:d7:63:91:3c:
         3d:18:15:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----