Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
File:                     1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft (raw, json)
Hash identifier:          9j8o1CoCIHRSBpIFCBhHFB5J3vZSOTaSIy4IpDN6xDI=
Subject key identifier:   5C:3A:44:CB:DE:28:45:99:D3:EF:D5:D3:88:AA:59:05:9D:0B:C7:4A
Authority key identifier: D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21
Certificate issuer:       /CN=d60ce3443860a7f70d43350776909a4810a48621
Certificate serial:       01976F2CC49866C8868EB55DD498B03C2655
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
Manifest number:          0AD5
Signing time:             Sat 14 Jun 2025 16:01:34 +0000
Manifest this update:     Sat 14 Jun 2025 16:01:34 +0000
Manifest next update:     Sun 15 Jun 2025 16:01:34 +0000
Files and hashes:         1: 1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl (hash: onT+NhdvhaLptGnFWRoE/eupfazkk9ulqPZWDREOvEY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2c:c4:98:66:c8:86:8e:b5:5d:d4:98:b0:3c:26:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d60ce3443860a7f70d43350776909a4810a48621
        Validity
            Not Before: Jun 14 16:01:34 2025 GMT
            Not After : Jun 15 16:01:34 2025 GMT
        Subject: CN=5c3a44cbde284599d3efd5d388aa59059d0bc74a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:4a:bd:8b:c0:d4:67:6d:dc:03:96:16:0d:1e:
                    12:48:3e:2d:2a:34:91:a4:c4:07:9b:6b:d9:06:3b:
                    df:8a:97:0a:da:e1:f2:6b:30:c6:eb:7f:de:f7:51:
                    57:1e:90:73:84:24:08:76:f7:89:20:0f:29:e8:e8:
                    52:3c:ae:ed:2d:bd:d2:5f:64:7c:48:ed:9e:5a:87:
                    16:b2:c6:3e:7c:01:dd:56:24:58:3c:c4:0c:e5:18:
                    58:5a:81:96:4f:57:28:f5:48:dd:58:bc:e8:7c:d5:
                    0b:46:8f:a4:ff:d4:30:d8:02:d6:50:cd:dc:91:f0:
                    be:c5:ff:24:f4:a8:1b:5f:6e:c2:6c:cb:f3:f2:8a:
                    33:1c:64:dc:5b:56:66:f9:61:16:9c:2e:f6:f6:48:
                    8d:c1:22:0a:6e:9e:f1:bf:27:d7:ec:07:78:9c:1f:
                    71:e4:cb:9b:3f:3d:08:dc:ec:a3:72:6b:92:42:c9:
                    3c:5d:de:19:6a:7b:d5:b4:95:25:b7:ea:0b:e9:ad:
                    9b:69:a8:d7:7f:bc:cb:38:a5:5b:91:81:2d:1c:e5:
                    3c:66:9b:70:68:ad:8b:70:89:82:78:f1:a4:40:05:
                    31:3a:6b:1d:2e:30:dc:df:f9:9c:f9:3c:98:a4:c9:
                    fa:a2:5d:5a:45:f5:84:3d:50:b0:2e:be:9a:c2:14:
                    d3:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:3A:44:CB:DE:28:45:99:D3:EF:D5:D3:88:AA:59:05:9D:0B:C7:4A
            X509v3 Authority Key Identifier:
                keyid:D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:2d:18:70:3f:ed:8e:10:e2:dc:d6:db:77:36:80:b6:6f:0f:
         4b:58:a6:ca:6d:c3:9e:b7:f6:ce:7f:51:45:1f:47:f1:a7:54:
         87:a4:c4:c7:31:81:ff:e0:9f:45:0a:dc:93:db:fb:ad:76:76:
         12:92:ca:1d:50:b8:a7:b5:98:b0:d7:d3:87:d6:61:a8:6c:29:
         5a:2f:82:9a:6d:82:c6:70:d5:4d:f5:7c:09:08:32:de:1c:a5:
         1a:79:24:ce:e8:6d:10:0a:bd:c2:a4:19:16:95:be:3f:47:04:
         16:bb:02:8d:e6:87:e8:bc:c9:68:cd:3a:fe:3d:4e:e6:5c:26:
         4f:78:d5:17:45:a7:c1:4b:73:cf:5b:c7:76:8e:41:4d:dd:af:
         2f:6c:d1:5a:09:6a:8b:d7:0e:db:ab:a9:18:c8:36:d5:e5:9f:
         3e:f6:92:2d:30:e8:a4:3e:ad:35:74:df:04:fb:df:34:a4:02:
         64:23:18:69:3c:ee:ad:5f:d2:0d:e3:09:b1:3f:92:9c:8d:65:
         21:d4:6f:b7:0c:d7:a6:0a:00:88:ed:7a:98:4d:dd:04:34:d6:
         75:8a:7a:88:4a:0f:0c:d4:1b:cf:84:d2:bd:ae:36:1b:40:21:
         a6:2f:4a:5a:42:d5:50:4f:0f:12:3c:20:b6:8e:eb:69:67:fc:
         bc:6e:f0:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----