Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
File:                     eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft (raw, json)
Hash identifier:          jg0BIntSxkZ+tLNo9pRPGvkynB8DG+OELnkkhpYJdXI=
Subject key identifier:   19:76:E7:6F:19:CC:4F:25:D2:D2:C7:C7:04:91:2A:39:97:5D:C8:A7
Authority key identifier: 79:95:F9:1E:99:82:25:01:5F:47:06:3C:32:8E:0C:50:1D:68:B5:9D
Certificate issuer:       /CN=7995f91e998225015f47063c328e0c501d68b59d
Certificate serial:       01976EF5517DD57E56BA168744362AB3C5D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
Manifest number:          1068
Signing time:             Sat 14 Jun 2025 15:01:00 +0000
Manifest this update:     Sat 14 Jun 2025 15:01:00 +0000
Manifest next update:     Sun 15 Jun 2025 15:01:00 +0000
Files and hashes:         1: eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl (hash: a+doddbEZWnKj6uvZWI5iA2cpfnsJ0uLg6/lDdRxmL0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 15:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6e:f5:51:7d:d5:7e:56:ba:16:87:44:36:2a:b3:c5:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7995f91e998225015f47063c328e0c501d68b59d
        Validity
            Not Before: Jun 14 15:01:00 2025 GMT
            Not After : Jun 15 15:01:00 2025 GMT
        Subject: CN=1976e76f19cc4f25d2d2c7c704912a39975dc8a7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:c8:14:03:b0:10:4c:cf:84:d6:77:90:c0:65:
                    00:d6:15:bb:fb:d6:1e:06:8c:76:77:8b:6f:d9:4c:
                    b2:09:c8:82:94:4f:5a:32:6d:21:cf:64:ec:a5:7b:
                    ea:51:dc:9a:2c:02:09:1e:32:00:71:85:69:ce:76:
                    44:94:a1:1b:a7:1c:2e:0f:02:23:0d:38:f2:75:b2:
                    a6:17:12:1d:53:3f:15:97:e3:ac:17:b5:57:f6:fa:
                    29:0d:c1:7c:d2:59:e2:be:3e:3a:ec:dd:31:20:17:
                    11:d7:f8:1d:45:0a:c4:e0:1f:e7:c4:10:e4:a5:24:
                    77:39:d4:90:23:d4:88:a0:0d:db:62:d8:a1:76:43:
                    1f:f6:fa:58:cb:5f:58:68:46:91:f0:c6:35:7e:a1:
                    11:17:9d:66:dd:b4:c7:ef:9a:a5:47:4a:a4:b6:45:
                    9f:f6:11:d7:60:7a:a8:74:67:16:ad:17:19:28:2c:
                    8f:d6:2e:07:32:82:e2:cc:30:b2:9e:fe:e7:10:8a:
                    d6:51:a0:11:23:64:88:0e:ab:db:5c:a5:53:c2:ef:
                    57:0b:37:a4:c9:b2:55:84:65:d4:56:7b:8f:42:1e:
                    c7:15:4a:78:dc:74:b9:79:ad:af:3a:74:ef:16:b2:
                    ed:18:ce:8e:73:2d:68:df:be:b7:6c:2d:63:33:39:
                    ca:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:76:E7:6F:19:CC:4F:25:D2:D2:C7:C7:04:91:2A:39:97:5D:C8:A7
            X509v3 Authority Key Identifier:
                keyid:79:95:F9:1E:99:82:25:01:5F:47:06:3C:32:8E:0C:50:1D:68:B5:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:ba:cd:a1:f0:54:6f:9d:f7:e6:46:1b:48:fb:fb:08:f0:da:
         73:37:32:e8:f1:c7:07:55:79:a2:7e:14:a3:87:04:19:e5:8a:
         74:5a:91:b9:5e:5f:fc:92:6c:50:27:82:77:c9:25:ce:de:e6:
         9f:3e:86:d9:01:20:0b:98:0a:d2:dd:c7:cf:e3:e8:af:6b:49:
         50:0f:55:9c:7f:fc:38:d4:19:93:e5:54:0e:77:e6:23:63:92:
         c6:14:1c:c7:19:92:7c:fb:3d:a2:6c:da:14:a3:64:52:cc:a0:
         8f:f8:f3:fa:09:5b:ce:dc:fe:61:0c:6c:03:f7:66:63:16:26:
         7c:4d:2f:95:96:71:4f:29:b5:c9:5a:00:be:d2:13:b7:e3:d0:
         23:02:96:3b:ff:1a:1c:2b:63:b0:7d:53:e6:cb:62:59:95:c7:
         c1:01:91:91:80:fa:f8:a4:e3:ae:cb:a9:01:dc:02:8f:00:ac:
         5c:ea:26:17:82:d8:35:b1:b9:2f:4b:47:67:d0:83:0e:f8:86:
         09:a8:fe:ff:82:d3:5c:92:c7:b1:f9:23:f6:11:12:84:1f:f2:
         57:aa:7c:a2:ba:64:63:18:ee:46:00:cb:3f:11:58:e7:a3:68:
         13:a8:d5:c7:27:07:21:d9:b9:d9:39:ea:89:c4:6f:9c:a6:2d:
         a8:4e:24:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----