Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File:                     gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier:          fqr7nVqOi8tV8lk7zzRkn1r+qTc+oFO0f1c7Xv8xMnw=
Subject key identifier:   9E:6F:EF:0E:14:98:A4:08:0D:00:9E:EA:ED:68:8E:4D:4D:92:E0:3D
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer:       /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial:       01976D3E936A32CFC5371FCB92141859A909
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number:          08A6
Signing time:             Sat 14 Jun 2025 07:01:46 +0000
Manifest this update:     Sat 14 Jun 2025 07:01:46 +0000
Manifest next update:     Sun 15 Jun 2025 07:01:46 +0000
Files and hashes:         1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: g/cfMwrS1FzHbehdzW3kVLx+utVl5OJNC3baC9zCyeY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3e:93:6a:32:cf:c5:37:1f:cb:92:14:18:59:a9:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
        Validity
            Not Before: Jun 14 07:01:46 2025 GMT
            Not After : Jun 15 07:01:46 2025 GMT
        Subject: CN=9e6fef0e1498a4080d009eeaed688e4d4d92e03d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:66:84:f4:61:c0:96:46:05:3e:21:c0:15:d6:
                    11:a7:b9:bf:5a:30:2a:fa:a0:5e:85:a6:52:d1:94:
                    a6:73:50:54:89:20:fb:1f:12:96:27:be:44:21:af:
                    f9:68:01:b6:96:d3:a2:5d:9b:75:ff:85:e2:58:87:
                    00:fa:51:80:57:39:af:e7:ac:1a:99:c4:56:cc:7f:
                    22:64:ab:70:23:1c:62:a4:e0:98:39:72:fa:cc:97:
                    5f:50:ec:d8:43:ba:11:c5:32:fb:41:2e:71:cb:b0:
                    10:a9:b0:1f:8c:f3:cc:dd:de:11:64:b5:59:11:e3:
                    35:ff:5b:63:90:cc:8d:a3:d8:c7:20:d0:a3:51:b5:
                    63:ba:d9:02:f3:0d:64:59:7c:14:87:c5:e6:c2:82:
                    20:73:4b:bd:71:63:85:07:f4:20:58:1a:76:cd:19:
                    af:57:e6:60:79:df:cc:d3:20:13:52:89:22:02:d3:
                    7f:3c:00:ef:31:21:5a:ad:ab:f1:c7:e4:0e:fd:6b:
                    3c:fe:69:d4:76:9b:c1:71:eb:e3:df:07:0b:55:71:
                    63:86:85:10:6c:3a:18:0d:53:d3:1f:cb:a3:df:65:
                    17:3a:c8:f5:f6:e0:4b:16:0c:5a:5f:45:ae:a2:37:
                    f7:16:be:9a:3b:1d:dc:f3:ce:ba:19:47:b0:be:c9:
                    bb:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:6F:EF:0E:14:98:A4:08:0D:00:9E:EA:ED:68:8E:4D:4D:92:E0:3D
            X509v3 Authority Key Identifier:
                keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:23:70:2f:6a:78:6b:92:dd:47:87:9f:0b:18:01:e4:26:dd:
         07:af:15:f9:b2:15:e2:e2:2c:c5:0d:67:d1:62:9a:21:41:a3:
         3e:3f:35:f9:a1:c8:0f:88:e6:1c:f8:70:9d:da:eb:41:65:75:
         62:7e:4f:57:0c:aa:66:e0:8d:28:9a:63:b7:00:66:76:06:06:
         83:95:06:27:7d:0e:0d:51:0a:f9:04:5d:73:fd:08:ea:06:aa:
         46:c4:39:f9:8c:03:e3:dc:f6:2f:2e:d8:a0:8a:4c:84:75:2a:
         c2:53:3f:8b:09:86:07:f0:08:e8:fb:11:a7:06:ff:6f:84:8c:
         87:fd:ab:ea:08:db:23:66:61:2a:d0:21:4a:60:fb:3b:3d:06:
         c8:41:8b:67:d7:bd:75:6f:cb:b1:66:0e:3e:b0:2e:60:d4:c5:
         8b:9e:60:9e:41:dd:45:b6:3b:53:19:c7:09:2a:04:e8:28:ad:
         57:64:b7:c5:3e:be:9b:7d:12:1c:f2:43:bf:b0:c4:16:e1:d0:
         08:c7:5e:11:d8:fc:69:47:d3:e0:20:4b:9c:72:e9:03:8f:dd:
         9c:04:40:3c:78:83:ad:e5:5d:0d:76:b2:c9:5f:59:47:74:16:
         1b:13:a4:73:b5:08:8f:e7:2f:70:1d:74:93:30:98:23:8d:63:
         60:b9:f5:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----