Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
File:                     7GV-idqz-xXjuuDrGsf6yT32OF0.mft (raw, json)
Hash identifier:          KaMOUvrllmt9Up3IDN9AXbc9uUJF0f7yQ/Qtj6iH5X8=
Subject key identifier:   04:CE:C6:8C:76:01:67:95:13:5D:56:3F:43:FF:69:04:F6:3F:A4:F2
Authority key identifier: EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D
Certificate issuer:       /CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
Certificate serial:       01977609E9993532B7C38BD6BF5AD6B5B9CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
Manifest number:          0585
Signing time:             Mon 16 Jun 2025 00:00:50 +0000
Manifest this update:     Mon 16 Jun 2025 00:00:50 +0000
Manifest next update:     Tue 17 Jun 2025 00:00:50 +0000
Files and hashes:         1: 7GV-idqz-xXjuuDrGsf6yT32OF0.crl (hash: SaDZf20QIzgs26/opj22tT0ztGxFMuw7zQqHdHz0Npc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 20:59:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:76:09:e9:99:35:32:b7:c3:8b:d6:bf:5a:d6:b5:b9:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
        Validity
            Not Before: Jun 16 00:00:50 2025 GMT
            Not After : Jun 17 00:00:50 2025 GMT
        Subject: CN=04cec68c76016795135d563f43ff6904f63fa4f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:58:35:4e:c3:fb:aa:89:72:58:7d:72:31:84:
                    d2:3a:c1:c6:0f:64:5d:a2:f5:b7:26:1c:e6:54:f9:
                    b6:5a:22:2f:35:17:bb:c0:4b:b2:aa:7d:23:2a:d5:
                    34:87:89:01:9c:e1:b5:d2:b3:d3:c2:b9:9a:7e:21:
                    68:13:9e:c2:78:c6:4b:25:ae:b8:9e:26:b7:6f:d5:
                    8f:ba:34:ef:b9:78:00:4c:87:83:c5:cf:74:92:a5:
                    80:7b:db:03:b7:7d:c0:aa:e5:d2:29:1a:fc:d4:aa:
                    bd:a9:6b:37:22:0b:cb:45:f6:b7:0a:a5:cf:5e:90:
                    f8:37:64:1f:29:93:68:67:47:52:92:83:3f:53:1c:
                    3b:48:cc:c4:8c:bc:11:3a:35:56:2b:65:c8:bd:14:
                    39:30:20:27:8e:6a:3d:a1:a1:6f:aa:ad:a0:b2:79:
                    cf:d8:89:13:18:ba:23:9d:1f:f2:76:a9:92:a9:1d:
                    30:58:00:66:4c:27:c2:45:6f:2a:5e:1e:40:6c:ce:
                    63:be:b2:03:a4:82:9b:a3:db:89:f3:81:91:3b:6b:
                    53:6b:3f:59:f3:2d:c4:dc:9d:df:cd:32:d7:ec:78:
                    4f:60:09:79:a5:46:39:50:22:fd:01:f6:4d:23:b3:
                    c4:c2:b1:d2:db:31:28:8d:80:47:b9:f1:47:f1:69:
                    99:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:CE:C6:8C:76:01:67:95:13:5D:56:3F:43:FF:69:04:F6:3F:A4:F2
            X509v3 Authority Key Identifier:
                keyid:EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:08:ef:29:ef:5f:06:13:30:9b:67:b7:2b:63:1e:ff:41:bf:
         20:88:76:90:80:03:00:06:94:b3:98:15:02:07:91:14:1b:af:
         af:f3:b1:e7:eb:d2:50:5d:d2:55:ba:db:5b:80:ac:c7:31:bf:
         b4:ec:a8:4f:53:be:bb:ab:cf:2d:9e:c4:9f:d0:77:5f:76:7a:
         61:97:1d:3b:29:9b:11:d0:89:33:59:f5:6c:a6:b3:48:85:f2:
         a2:81:7f:2f:45:ba:35:57:13:e4:28:57:bf:42:b5:cd:0b:f0:
         fa:2e:79:ec:00:57:6f:e4:a3:aa:30:77:e2:25:3b:9e:91:c3:
         0b:19:e7:de:95:10:da:ea:8c:26:b5:19:33:b2:41:92:c4:bc:
         da:3e:34:28:80:19:06:e2:9a:77:72:09:3d:6e:a9:d6:0e:e1:
         ba:f5:ff:40:96:3a:92:b7:4e:27:04:3d:0c:3c:a1:33:3f:7e:
         f8:fa:53:b3:13:7f:32:1a:09:29:c3:43:9e:02:9e:0d:0d:c3:
         26:de:f8:b6:1f:f1:8e:a0:43:28:9c:88:96:39:a1:56:8b:28:
         00:7a:ce:56:b1:1a:1e:8f:05:36:5c:70:ae:37:df:96:a6:b4:
         b9:66:ea:45:6b:d5:d2:01:df:9f:7e:64:4f:2d:6f:0d:93:b2:
         ff:c0:e9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----