Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
File:                     X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft (raw, json)
Hash identifier:          ZjXfmBzUcnuZ+d/+Mb31N2AcilRdIR0LRiZDcaM0eTg=
Subject key identifier:   E2:90:51:A9:AE:FD:04:DE:69:CA:EC:B0:45:79:E9:7C:DE:D1:4D:82
Authority key identifier: 5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
Certificate issuer:       /CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Certificate serial:       01976997ABD7BDE2598622281BA3E15EB8D5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
Manifest number:          0364
Signing time:             Fri 13 Jun 2025 14:00:36 +0000
Manifest this update:     Fri 13 Jun 2025 14:00:36 +0000
Manifest next update:     Sat 14 Jun 2025 14:00:36 +0000
Files and hashes:         1: X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl (hash: 2RCTVFt9IZnKIJb+KmTXgCQ5cog2roJFsUoTh6YB5pg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:97:ab:d7:bd:e2:59:86:22:28:1b:a3:e1:5e:b8:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
        Validity
            Not Before: Jun 13 14:00:36 2025 GMT
            Not After : Jun 14 14:00:36 2025 GMT
        Subject: CN=e29051a9aefd04de69caecb04579e97cded14d82
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:a4:31:15:c5:2b:00:a2:d0:68:bc:67:24:32:
                    be:7f:0f:de:f7:44:b2:53:26:e5:84:f7:a7:fd:61:
                    ce:ef:b1:a0:43:98:7b:e4:61:49:f3:05:58:60:ab:
                    37:71:c0:7e:19:3e:fc:46:2e:65:d0:50:94:61:a4:
                    6d:34:de:40:52:d3:3e:43:8d:8e:a1:5e:04:33:ed:
                    63:7f:71:c8:14:f5:4a:a0:63:16:e3:a2:70:59:54:
                    7c:91:d8:61:83:64:9d:fc:c8:a1:fb:d2:47:34:40:
                    1d:b6:b1:92:1d:6a:70:36:61:a4:11:06:2d:c6:63:
                    ed:6c:56:19:a4:81:73:91:0e:4c:23:0f:f0:47:e7:
                    41:32:e2:f1:b5:35:bf:ff:ee:1a:7b:ae:f1:df:c1:
                    ff:ab:ec:91:2e:df:9f:e7:70:94:df:b3:3c:61:41:
                    98:0d:23:5c:1f:30:38:4f:5e:b9:96:7c:c3:cb:72:
                    d8:25:52:15:9f:4c:e5:c3:27:85:d3:fd:0f:33:f2:
                    20:7e:73:bb:9b:00:1f:f7:6d:27:78:a7:de:41:f9:
                    5b:68:db:f7:9d:52:36:a3:da:82:be:4c:e0:9b:67:
                    a9:01:be:ad:8e:61:c9:20:bc:89:52:68:02:84:0d:
                    63:6e:f6:bd:b3:2b:74:67:e1:30:63:11:f5:d1:7f:
                    d4:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:90:51:A9:AE:FD:04:DE:69:CA:EC:B0:45:79:E9:7C:DE:D1:4D:82
            X509v3 Authority Key Identifier:
                keyid:5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:23:47:e1:ce:94:9c:d5:dd:3c:07:a8:4f:cc:bb:58:24:51:
         3b:9a:8a:b4:bc:d8:d4:b3:b8:0e:33:3d:ec:c8:75:62:26:56:
         4a:78:e3:8d:7d:da:dc:3c:09:a1:85:fa:ae:2c:80:bd:eb:10:
         61:32:2a:b9:6c:2d:6a:3b:dc:f5:08:83:51:4e:ce:24:5f:88:
         9d:12:ff:0b:61:76:73:d3:96:25:35:79:27:54:bc:73:af:4a:
         a1:68:b1:3c:59:f3:26:31:e7:b9:ae:08:d5:13:8f:79:2a:d3:
         8c:7b:20:d1:6c:ee:5d:c7:4b:96:c7:58:c4:5a:38:12:74:9f:
         21:c8:49:34:09:65:b5:dc:19:21:98:a2:04:83:f8:d6:20:42:
         ce:f9:dc:86:c8:59:9f:97:6c:af:d3:89:34:ab:78:74:99:06:
         f0:a7:bd:15:8b:92:b4:b8:52:03:d0:c4:31:aa:ab:a6:29:de:
         3c:fd:4e:2a:c1:b9:ec:0c:3f:94:39:be:16:e7:33:84:11:87:
         8a:69:cb:8e:b3:7a:03:cf:ae:07:d7:e4:79:e4:ff:f7:39:e4:
         77:a0:44:8e:32:c4:04:7c:c8:f4:6c:5b:a6:bb:41:3c:2f:b0:
         a5:06:70:bf:ce:aa:ce:15:8f:f5:46:03:06:0e:6f:7a:a1:06:
         98:ae:c6:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----