Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
File:                     1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft (raw, json)
Hash identifier:          HZ4QHAmI8n93QGmiF9KxotpZhGft/d5lFtyXSSB1zr8=
Subject key identifier:   D7:F5:56:52:A3:2B:97:DE:53:E6:BA:42:CD:6E:09:54:76:9E:06:2D
Authority key identifier: D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21
Certificate issuer:       /CN=d60ce3443860a7f70d43350776909a4810a48621
Certificate serial:       019873E2FAA714F6B3C1EA37171A63AD9A24
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
Manifest number:          0B5C
Signing time:             Mon 04 Aug 2025 07:01:51 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:51 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:51 +0000
Files and hashes:         1: 1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl (hash: wRHf2JBTqo312qevF5tCnmyk6AzAtIDE6txzuvK08F4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:fa:a7:14:f6:b3:c1:ea:37:17:1a:63:ad:9a:24
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d60ce3443860a7f70d43350776909a4810a48621
        Validity
            Not Before: Aug  4 07:01:51 2025 GMT
            Not After : Aug  5 07:01:51 2025 GMT
        Subject: CN=d7f55652a32b97de53e6ba42cd6e0954769e062d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:94:e7:a1:97:aa:ac:dd:14:92:39:55:ff:d9:
                    f0:e7:9f:b3:19:ca:ed:10:7e:f1:a7:84:e0:e7:f8:
                    bc:8e:cf:fd:fd:38:a2:65:3d:ca:11:41:4b:ec:15:
                    5a:c9:26:c0:f4:b6:74:7d:0c:3f:4d:08:81:af:74:
                    bb:55:6a:db:d6:b0:52:33:66:7c:e6:37:e2:b3:b6:
                    cd:28:d0:74:cc:77:16:dc:3d:6c:f6:a6:12:f9:cd:
                    10:c6:a7:79:16:f3:43:2b:1b:8c:2b:ec:dd:53:d5:
                    e1:3a:af:b2:14:5c:9f:c4:68:27:82:ab:b7:f9:70:
                    e0:93:16:93:a3:80:fe:f3:8c:25:dc:7e:7d:21:9d:
                    87:7a:38:75:cf:7e:67:84:aa:92:bb:cf:49:a0:7b:
                    10:b6:d6:be:1d:20:ef:8e:20:f2:e1:9b:31:b9:37:
                    44:a6:53:a5:83:b9:78:b4:76:6e:0b:5c:12:1e:6e:
                    a7:a0:3f:cc:a3:56:a1:de:59:c3:01:e7:11:12:a6:
                    e9:bd:9f:9f:c3:c9:2c:25:0e:1f:ae:4b:74:e9:5e:
                    92:0f:27:75:97:ca:cf:eb:19:91:f6:65:a7:50:81:
                    74:bd:37:f6:5f:de:f8:d0:71:91:ba:3d:2f:f0:f9:
                    0a:8b:19:58:dc:6d:54:92:b4:10:ad:b7:4f:0d:3c:
                    bf:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:F5:56:52:A3:2B:97:DE:53:E6:BA:42:CD:6E:09:54:76:9E:06:2D
            X509v3 Authority Key Identifier:
                keyid:D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:84:c5:99:8c:f7:66:80:43:89:22:35:45:fe:92:26:8c:fb:
         2c:7e:2f:ee:19:1a:ec:75:27:38:35:a8:f8:a3:97:f8:27:32:
         87:d0:1b:26:0e:a1:d0:88:c9:1e:57:48:cb:2e:2c:f1:c6:cd:
         a9:be:5f:c4:09:4c:d0:38:c0:eb:fc:e7:88:53:a7:a0:58:d5:
         40:7d:a7:a6:a6:da:22:12:81:3f:78:76:b0:fd:1a:79:ea:71:
         eb:b4:27:69:27:69:ad:ea:06:df:86:71:a6:5c:45:18:8b:ab:
         58:87:07:28:d6:7b:b2:a5:ec:98:40:17:4a:65:f6:4d:5d:29:
         52:15:cb:42:10:a3:a1:0f:c8:e3:18:e3:53:9f:74:fa:a5:1a:
         88:f0:7a:f6:ab:2a:eb:ed:16:f2:85:a3:c9:2a:c4:d6:ff:98:
         fa:3e:67:90:af:28:c7:4f:d0:c8:61:0e:a7:2f:fb:65:31:b1:
         82:81:b3:09:a3:01:1f:e7:bc:ae:bd:53:38:6e:60:29:86:5f:
         da:95:0a:c8:66:05:bb:d0:66:ab:b6:d6:38:2c:84:41:49:fd:
         7e:e7:de:d2:e0:2a:54:04:43:76:d5:68:19:18:dc:1a:a7:a7:
         11:e7:73:06:54:05:a3:bf:3a:00:d0:dd:df:f0:b3:46:e2:64:
         f3:c4:87:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----