Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
File:                     27s70rCfy7vfiVsOOpxaAGRW_aY.mft (raw, json)
Hash identifier:          uQAVQ9j7mQylo/kBBb1inSDp93t/MPnP4J7dAo3Ih6Q=
Subject key identifier:   BF:FB:7B:9A:A4:EB:38:8B:1C:65:3A:6C:05:1C:08:EC:3C:3B:10:A5
Authority key identifier: DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6
Certificate issuer:       /CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
Certificate serial:       01977640AAC5E28E7BAA3707BD23A7066294
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
Manifest number:          06FE
Signing time:             Mon 16 Jun 2025 01:00:38 +0000
Manifest this update:     Mon 16 Jun 2025 01:00:38 +0000
Manifest next update:     Tue 17 Jun 2025 01:00:38 +0000
Files and hashes:         1: 27s70rCfy7vfiVsOOpxaAGRW_aY.crl (hash: m80NtDCawrPeOm1CkGcx/MLL8jvOE8C//6Ewp/xdcgQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:76:40:aa:c5:e2:8e:7b:aa:37:07:bd:23:a7:06:62:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
        Validity
            Not Before: Jun 16 01:00:38 2025 GMT
            Not After : Jun 17 01:00:38 2025 GMT
        Subject: CN=bffb7b9aa4eb388b1c653a6c051c08ec3c3b10a5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:27:4c:8d:88:59:5d:b4:9f:aa:d4:23:7b:b7:
                    04:40:0d:00:e6:10:fe:6f:af:77:95:4a:55:a2:3d:
                    d5:1e:31:03:7d:57:4a:52:f2:5e:a3:ee:9c:5a:85:
                    2f:c2:d7:6c:61:fc:b0:cc:5e:b3:7a:cd:78:75:1d:
                    a1:a0:ef:99:de:78:54:2d:0c:7b:fa:34:81:06:60:
                    32:a3:51:fe:e9:67:13:b0:bd:a2:fb:73:85:e4:36:
                    dc:10:5e:32:d8:13:44:d9:9a:00:9f:ec:49:2d:d0:
                    83:81:28:94:c2:02:e2:7f:85:2d:d8:34:ed:98:94:
                    b7:1c:d3:1b:11:77:af:88:11:9a:59:95:8f:85:17:
                    1c:39:b6:e3:99:eb:aa:8b:67:e9:9f:a5:cf:0b:f5:
                    26:84:1d:6c:87:4c:45:22:83:c2:99:41:0f:45:77:
                    3c:c6:5a:27:fa:1a:05:bc:e2:7f:cc:71:9a:c3:93:
                    f6:c4:95:f9:6c:d0:b2:8e:91:fb:f7:cd:f2:ce:71:
                    36:4c:4c:b4:22:79:c8:b6:91:a4:34:fb:c6:87:2a:
                    08:c6:27:bc:54:e7:e4:92:be:9b:f7:cd:59:fc:f2:
                    a6:fb:73:42:7f:8f:1f:8e:33:17:c4:ab:e1:9c:cf:
                    65:cc:95:af:f9:7d:37:94:8e:cb:f7:87:a2:40:77:
                    87:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:FB:7B:9A:A4:EB:38:8B:1C:65:3A:6C:05:1C:08:EC:3C:3B:10:A5
            X509v3 Authority Key Identifier:
                keyid:DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:d1:f4:ff:21:60:e7:72:e6:59:d9:6f:d8:ef:0c:22:23:15:
         87:a3:d1:ad:a7:4d:b0:cb:a9:4b:10:51:c8:81:f2:99:66:b2:
         f3:78:ed:87:e1:55:eb:77:f4:6b:1e:e5:cf:95:f0:3b:c7:56:
         74:23:98:3c:06:ef:d2:92:dc:f7:3c:6c:4e:13:a6:7e:ca:6e:
         3d:4e:9e:0b:b1:48:88:75:86:87:50:c0:30:89:27:f6:ec:1f:
         94:11:79:25:c9:f6:9c:01:66:09:14:9b:40:9b:2b:3c:a8:fa:
         ed:88:b0:f6:0b:be:e3:21:60:07:b3:fe:78:19:11:98:4b:56:
         14:26:2e:ac:8a:8d:da:ba:1c:d5:92:76:07:d6:86:8e:ae:b9:
         ab:cb:78:ce:ea:47:f6:b3:68:19:33:72:f6:6c:8d:01:32:ea:
         66:5f:a0:56:40:38:08:57:f4:67:52:98:9e:28:63:29:eb:b0:
         a0:f2:be:a3:11:8a:59:eb:f1:06:f7:6d:ee:b4:49:69:1e:ac:
         fc:43:8e:ee:0c:1b:38:12:95:53:de:fc:7d:cc:27:e4:56:51:
         a7:f3:b8:d0:71:93:92:9b:24:eb:48:df:12:66:e4:e4:e0:ef:
         98:78:e5:6e:00:5c:91:da:0b:a8:7e:65:12:a8:9a:76:6e:ba:
         4b:e1:c8:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----