Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
File:                     VkQtN4qHkyt22vks6Pye80Hrx1k.mft (raw, json)
Hash identifier:          N0kxTSlW7aMJDr7dEPWs+yXVwhAj/vxSnLtHVthWS7Q=
Subject key identifier:   F1:1F:33:D7:7B:AB:E5:1A:1D:CC:A1:0B:AD:50:78:15:B9:34:D7:8D
Authority key identifier: 56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59
Certificate issuer:       /CN=56442d378a87932b76daf92ce8fc9ef341ebc759
Certificate serial:       01976BF48828BEC2800394A48C7B674FB8B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
Manifest number:          0B50
Signing time:             Sat 14 Jun 2025 01:01:17 +0000
Manifest this update:     Sat 14 Jun 2025 01:01:17 +0000
Manifest next update:     Sun 15 Jun 2025 01:01:17 +0000
Files and hashes:         1: VkQtN4qHkyt22vks6Pye80Hrx1k.crl (hash: ukfPLVafvZ6FNKNGI8JQC30d8CEJaOoY7fYrpZodDtg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:f4:88:28:be:c2:80:03:94:a4:8c:7b:67:4f:b8:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56442d378a87932b76daf92ce8fc9ef341ebc759
        Validity
            Not Before: Jun 14 01:01:17 2025 GMT
            Not After : Jun 15 01:01:17 2025 GMT
        Subject: CN=f11f33d77babe51a1dcca10bad507815b934d78d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:2f:81:a4:96:23:41:af:3c:43:ff:ba:2b:ca:
                    0e:66:07:78:a9:0e:fe:af:d9:3c:6c:50:62:a6:3f:
                    73:1b:07:5f:4d:80:70:35:fe:d9:80:29:c7:c5:81:
                    53:46:c2:72:8d:e5:cf:25:b5:e3:9a:af:3e:e5:6c:
                    f3:a3:15:dc:55:ee:14:ec:5b:ca:73:10:a7:6d:db:
                    1b:f5:d9:86:0d:1f:2a:cb:ad:c8:7c:6e:c3:cf:33:
                    cd:67:18:82:78:e8:54:41:4c:2e:74:68:63:bb:45:
                    0f:b6:eb:78:fc:45:83:77:c2:17:bc:47:b8:2e:f6:
                    d8:61:ce:a1:48:6b:72:27:5d:86:96:0e:60:28:57:
                    25:08:69:49:5b:33:a6:dd:0e:01:6f:78:c3:1e:f4:
                    7e:4a:29:b3:68:d6:10:54:fd:d1:ee:f1:d5:91:63:
                    21:fd:a6:34:4b:32:9a:6b:0e:5c:66:38:58:a3:76:
                    93:a2:af:53:14:e8:17:48:36:e2:3d:6e:51:c6:aa:
                    06:b7:aa:eb:3e:65:a8:37:c2:ce:bd:ab:91:b6:4d:
                    8a:67:b8:a0:96:eb:9a:ec:ba:ec:86:50:7e:e0:45:
                    44:7b:d1:68:8f:05:ad:2c:54:8a:6d:e4:da:34:6d:
                    e6:50:17:40:3b:01:a7:6e:8c:be:ba:d9:cf:a5:22:
                    17:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:1F:33:D7:7B:AB:E5:1A:1D:CC:A1:0B:AD:50:78:15:B9:34:D7:8D
            X509v3 Authority Key Identifier:
                keyid:56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:28:63:37:2e:ba:23:e1:66:3d:17:4c:59:58:03:0e:26:69:
         7d:7c:e6:45:6d:3a:8e:74:4a:32:81:e5:59:79:18:d5:a0:3c:
         d8:cc:af:88:b0:c4:e8:06:6c:37:5a:e4:ab:45:2d:58:f7:ff:
         c7:84:56:1f:78:0a:44:15:81:d5:af:57:7f:c5:f9:f4:69:f9:
         2b:18:25:88:e6:e3:98:a3:74:10:e8:36:2e:39:15:1b:f6:04:
         bd:74:30:12:d4:7b:a3:d9:c3:7c:dd:1d:87:26:55:d5:8e:9c:
         dc:6f:8d:74:87:60:dc:d1:c6:3d:8a:de:35:34:3a:dc:52:21:
         28:ac:2c:71:f7:4d:ff:00:19:79:4c:25:6b:5c:d1:ef:5b:0d:
         15:a3:60:23:59:2b:6b:5f:8f:55:ab:23:fd:e9:a3:b4:8d:0c:
         31:08:5e:ca:00:59:2c:43:86:fa:e1:05:27:b0:58:c1:64:56:
         da:6c:68:cc:e3:f5:9a:a9:70:a4:de:fb:bd:12:13:7e:65:3b:
         7e:31:97:46:c0:d5:4d:c3:01:ec:58:24:48:01:94:ad:46:6d:
         eb:09:61:61:32:18:cb:ad:8a:7f:21:5a:0f:8a:0e:50:4b:ac:
         08:1d:eb:cc:73:de:cc:ad:f1:33:bf:d2:cf:aa:48:8c:f9:2f:
         7f:68:2d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----