Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft
File:                     LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft (raw, json)
Hash identifier:          6zyJuexnK230l5wh9aVcG/NEsUSc3YagIcMIq0pJIzs=
Subject key identifier:   3E:BE:F2:06:C7:CE:34:46:FD:3E:3C:93:C1:74:02:F0:60:B0:21:A1
Authority key identifier: 2E:18:10:D5:C9:11:B4:A8:10:73:FA:E6:38:97:1B:57:7D:D7:A6:42
Certificate issuer:       /CN=2e1810d5c911b4a81073fae638971b577dd7a642
Certificate serial:       01976961A9F7229F93DD09C33712978DBDA9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/LhgQ1ckRtKgQc_rmOJcbV33XpkI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft
Manifest number:          1059
Signing time:             Fri 13 Jun 2025 13:01:37 +0000
Manifest this update:     Fri 13 Jun 2025 13:01:37 +0000
Manifest next update:     Sat 14 Jun 2025 13:01:37 +0000
Files and hashes:         1: LhgQ1ckRtKgQc_rmOJcbV33XpkI.crl (hash: dzoh3HYBPHQKpbMpdT12POdPymjIzuCEPuYf1eOkutM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/LhgQ1ckRtKgQc_rmOJcbV33XpkI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:61:a9:f7:22:9f:93:dd:09:c3:37:12:97:8d:bd:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2e1810d5c911b4a81073fae638971b577dd7a642
        Validity
            Not Before: Jun 13 13:01:37 2025 GMT
            Not After : Jun 14 13:01:37 2025 GMT
        Subject: CN=3ebef206c7ce3446fd3e3c93c17402f060b021a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:76:c1:35:d2:fd:ee:99:55:bd:b7:38:61:c5:
                    3e:2c:f2:b6:c1:d4:8c:7f:b9:e4:64:a4:21:98:cd:
                    92:0a:8a:1d:15:6b:3a:8d:7b:64:3e:e2:fd:0c:34:
                    a9:9f:96:5f:94:9a:ba:42:c6:96:87:42:e6:c8:ef:
                    35:b4:35:1a:c8:52:93:a7:ed:25:bf:bc:e5:54:f1:
                    b5:cd:ac:83:29:6a:01:e9:49:a9:af:1b:a6:31:d8:
                    7e:15:f9:11:18:7c:2c:09:3d:45:9a:16:54:16:71:
                    26:cf:d5:e1:74:32:ec:65:82:22:29:22:89:1e:af:
                    73:ad:0f:a0:06:7e:da:e1:46:cd:a7:78:73:0e:ac:
                    80:70:b7:2c:49:ce:df:c5:63:80:57:bd:54:27:ef:
                    ef:2a:7f:bf:f9:58:bb:23:87:cb:88:e5:71:47:0c:
                    06:d8:7d:e2:ad:8e:fe:07:e1:07:da:9f:19:78:6d:
                    e1:94:e8:69:e1:72:8c:9d:3a:0d:41:3e:77:9a:20:
                    9d:43:6e:68:4a:c9:d9:2a:4b:2c:19:6a:5f:05:7b:
                    e4:2a:55:e0:61:33:62:bf:07:fc:95:2f:f7:51:f8:
                    1c:36:5a:15:00:b2:17:17:89:33:b2:f5:66:39:67:
                    a5:d3:67:2e:2b:9f:89:76:8c:43:fb:77:85:67:7c:
                    1b:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:BE:F2:06:C7:CE:34:46:FD:3E:3C:93:C1:74:02:F0:60:B0:21:A1
            X509v3 Authority Key Identifier:
                keyid:2E:18:10:D5:C9:11:B4:A8:10:73:FA:E6:38:97:1B:57:7D:D7:A6:42

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhgQ1ckRtKgQc_rmOJcbV33XpkI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/68ce51-bd3e-4cd1-bcc2-dd2a584a62bb/1/LhgQ1ckRtKgQc_rmOJcbV33XpkI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:61:4f:5f:66:79:c1:3e:12:be:88:38:f2:32:1b:73:5d:b2:
         71:5b:0a:c3:19:d1:53:b4:84:21:c2:0c:06:02:4d:f3:47:3f:
         14:ca:f7:6a:69:3a:48:b9:a6:c8:76:e3:d7:48:d3:11:f0:a6:
         a1:f4:f5:84:68:22:bc:f4:98:2a:3f:27:23:8e:95:ee:ee:c5:
         f0:eb:6d:60:8e:56:59:3b:9b:51:46:93:bb:fd:10:75:2b:dc:
         0c:61:be:b2:df:89:d4:9c:67:28:4d:bd:5e:b1:f0:c8:5e:29:
         a5:61:ef:39:4c:cb:c4:d5:d1:d3:3a:6f:b1:4f:b4:90:80:26:
         1f:17:36:29:d9:b6:2c:e4:4a:b1:9d:94:42:fb:96:2c:df:8e:
         4f:86:0b:ed:90:23:24:28:69:85:83:62:ad:58:37:b8:f6:e7:
         e3:6f:f1:51:0a:6f:7c:0f:35:38:b3:fa:8c:63:92:4f:cb:b6:
         47:d1:e5:a0:aa:58:e0:de:5a:5e:91:59:d8:71:e9:4f:3a:37:
         a8:ff:cf:94:c1:6b:43:42:7e:6d:7d:ba:94:23:4d:0a:6d:52:
         9a:bf:22:8a:e0:c8:9b:bf:71:c9:64:73:8d:be:31:98:11:fe:
         8b:26:d9:8c:87:bf:77:d2:3f:60:88:64:9a:12:3e:eb:92:f6:
         8b:ce:71:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----