Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
File:                     hFNK68PtnHkETCI8iyXgEdq_L98.mft (raw, json)
Hash identifier:          sGzvN1U6R6fZLdNbb3V6slgJ7S3DReO47Ndhq+AjnW8=
Subject key identifier:   26:8A:80:F1:E9:6D:2A:8F:24:9D:45:64:1B:D4:81:C1:2A:8E:3B:ED
Authority key identifier: 84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
Certificate issuer:       /CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Certificate serial:       019771BF4C214E3F4E513FAED72A76ED306F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
Manifest number:          0676
Signing time:             Sun 15 Jun 2025 04:00:51 +0000
Manifest this update:     Sun 15 Jun 2025 04:00:51 +0000
Manifest next update:     Mon 16 Jun 2025 04:00:51 +0000
Files and hashes:         1: hFNK68PtnHkETCI8iyXgEdq_L98.crl (hash: PjF7cwLCUwQU3rAZuMLrv7Ol0/Jg7J3pgo8/4+Vug/s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:bf:4c:21:4e:3f:4e:51:3f:ae:d7:2a:76:ed:30:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
        Validity
            Not Before: Jun 15 04:00:51 2025 GMT
            Not After : Jun 16 04:00:51 2025 GMT
        Subject: CN=268a80f1e96d2a8f249d45641bd481c12a8e3bed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:4a:2a:bb:9c:89:99:cf:d5:01:1b:00:18:81:
                    64:0d:f6:da:3d:59:6b:d7:99:12:10:4c:72:73:04:
                    14:c9:2a:b3:c2:68:a7:70:5d:ee:2a:c9:bb:81:d1:
                    15:3b:0a:33:68:b8:c4:99:e3:44:f0:0d:53:38:c8:
                    99:7a:ba:8a:e6:14:90:5b:82:d5:80:87:b1:ab:b6:
                    da:b9:a9:c3:14:d8:ae:7d:50:f3:e9:60:29:a5:cf:
                    64:69:00:1d:95:d1:2c:3b:56:b8:b3:9e:71:48:20:
                    db:de:e6:58:ac:cb:0b:db:19:e5:22:ec:5f:c7:da:
                    1b:a8:da:66:01:ce:ca:79:27:06:c6:7e:a6:74:19:
                    05:4b:19:07:fe:00:c4:4a:a9:54:a5:8b:5e:d6:e6:
                    88:5a:de:8f:e7:d1:a9:17:4c:fc:17:1f:bc:f8:1c:
                    22:15:09:3e:97:58:6d:77:45:80:2c:cc:a5:b6:5f:
                    1b:4a:7b:fa:a2:34:08:8d:5e:9f:13:a2:ad:ef:43:
                    98:96:a3:4c:c7:4a:e7:cf:e8:50:8a:c0:87:48:87:
                    a3:1d:e1:43:6a:9c:08:43:11:94:ce:bc:20:ce:ad:
                    30:eb:d7:5e:ea:1a:8b:e4:8f:a1:02:9c:e7:90:7b:
                    d8:c2:0b:85:55:2d:a1:4e:1f:87:1f:7e:3a:f8:17:
                    7a:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:8A:80:F1:E9:6D:2A:8F:24:9D:45:64:1B:D4:81:C1:2A:8E:3B:ED
            X509v3 Authority Key Identifier:
                keyid:84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:13:65:58:09:8d:a7:07:d9:f8:cc:4c:32:57:71:40:8c:48:
         c0:01:96:96:f7:32:20:68:d6:a1:f7:71:02:db:00:98:3b:c8:
         ca:7c:c3:86:ed:5e:60:05:f5:d8:3c:2d:b0:25:11:dc:5d:a1:
         e5:71:69:b0:ab:2f:cc:f8:82:f4:0d:c4:6e:ea:05:32:0c:98:
         dd:3f:df:85:f3:c9:0f:45:d3:4d:3d:80:c7:9a:81:20:94:43:
         a0:67:87:aa:a5:76:f9:7e:c4:23:6b:f2:27:c4:05:ed:08:f2:
         c5:4a:4e:73:47:eb:9b:5d:bd:31:f8:eb:62:57:e0:0d:e0:36:
         9e:df:10:70:9f:9c:7b:0b:74:18:98:af:f6:bd:29:9e:06:92:
         d1:64:4a:5e:a2:cc:54:9d:c1:4f:70:a1:7a:52:91:2c:dc:61:
         dc:ce:53:7e:0c:66:b8:22:13:b7:6f:45:9f:6b:38:b4:6d:75:
         16:99:4e:21:12:8f:ca:97:fc:71:41:0e:1d:7b:c9:de:43:94:
         ea:9d:db:53:91:cb:e4:a1:6e:ed:d1:87:e2:5c:78:72:ac:1f:
         f5:be:bb:ac:32:c0:ce:f9:87:79:bf:b9:06:b0:04:55:ec:e0:
         8c:c0:a8:d8:7e:73:5b:a2:c5:4f:12:fa:ed:18:95:56:b7:a3:
         fe:b6:29:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----