Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
File:                     yVcXmb2ok6GGC0phbFYnivXsksU.mft (raw, json)
Hash identifier:          rF2tJsxAbTdI6qZDpWkFSOk8Sn1eR0kqBaHi/IdCxYI=
Subject key identifier:   C5:F5:36:12:11:35:B4:F7:0D:E4:B0:A6:6A:46:F8:AB:82:2E:69:2C
Authority key identifier: C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5
Certificate issuer:       /CN=c9571799bda893a1860b4a616c56278af5ec92c5
Certificate serial:       0197707563E74BA52DA4B60D964B6DE79A46
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
Manifest number:          0A95
Signing time:             Sat 14 Jun 2025 22:00:30 +0000
Manifest this update:     Sat 14 Jun 2025 22:00:30 +0000
Manifest next update:     Sun 15 Jun 2025 22:00:30 +0000
Files and hashes:         1: yVcXmb2ok6GGC0phbFYnivXsksU.crl (hash: fRuZHQgwJxONNgolix3Z5g9TtJCxzkIk1YhejM+K2mA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:75:63:e7:4b:a5:2d:a4:b6:0d:96:4b:6d:e7:9a:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c9571799bda893a1860b4a616c56278af5ec92c5
        Validity
            Not Before: Jun 14 22:00:30 2025 GMT
            Not After : Jun 15 22:00:30 2025 GMT
        Subject: CN=c5f536121135b4f70de4b0a66a46f8ab822e692c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:9d:9b:31:27:b1:71:d7:c8:b7:d4:f1:b9:4d:
                    79:f1:dc:b3:b8:d0:a8:dd:1d:5a:15:e0:46:54:da:
                    e7:94:e3:aa:b5:5e:66:52:84:8c:93:81:e1:63:e3:
                    b8:45:ff:2d:3f:56:84:80:cb:ed:1f:7e:ed:57:fb:
                    be:90:b4:81:84:3a:d0:42:8f:fd:b8:7b:57:b0:bf:
                    1b:f9:94:d4:6c:2b:10:e8:db:a5:8a:2a:4d:83:ac:
                    bb:41:80:0a:3e:ce:3b:90:fb:7d:3f:e8:b9:f5:c1:
                    8e:51:25:5a:04:ab:9e:51:ad:b1:4a:1d:19:db:61:
                    7f:a2:dc:f0:43:5a:e7:db:26:91:6c:2b:af:dd:b9:
                    d4:b2:7c:85:1e:49:e8:05:ce:0b:19:4a:b3:07:0b:
                    29:c5:bb:e7:84:a6:ed:68:a4:05:c8:eb:3c:5d:40:
                    9b:4b:08:a1:1f:86:8f:ba:d8:78:ca:b6:5e:0b:16:
                    27:26:84:79:d8:b7:1c:9d:be:6e:ae:1d:96:e1:1a:
                    b9:17:40:96:8c:8c:3a:fe:96:9d:cf:c3:c1:ab:11:
                    64:92:5c:ee:f5:2d:da:a4:cb:63:ec:02:a0:e3:45:
                    98:55:36:a6:63:bb:ac:4c:c5:66:9c:9c:66:61:64:
                    4b:98:84:ea:d0:92:3e:f1:0c:08:d5:77:44:d8:83:
                    d0:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:F5:36:12:11:35:B4:F7:0D:E4:B0:A6:6A:46:F8:AB:82:2E:69:2C
            X509v3 Authority Key Identifier:
                keyid:C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:69:64:e7:78:bd:a9:10:21:97:88:d8:27:05:22:93:2a:b3:
         6c:b1:1e:19:80:e4:6b:5d:1f:e7:fe:cd:0b:3b:e3:17:d6:17:
         d5:24:d6:bc:f8:99:37:35:ef:a8:e9:58:07:1a:1b:5b:b5:5d:
         79:c3:14:e4:43:9e:fe:46:d8:81:3a:f0:a5:17:31:be:87:8e:
         d5:05:24:e9:cc:59:34:33:a5:63:af:e6:94:30:da:a0:61:12:
         8a:87:ef:e8:72:e9:73:5b:8a:b6:5a:53:52:e2:e3:60:06:79:
         4b:ae:7c:2f:65:2f:e4:b3:3b:60:fb:23:40:c4:8a:96:ef:eb:
         85:d1:b9:35:fb:b9:5d:7e:f3:47:6a:86:4b:c5:33:bf:91:d2:
         bc:4a:7a:63:3b:1d:cb:2e:70:f2:ae:68:fa:1c:9d:ed:3a:12:
         fe:4c:8c:1e:7c:10:9f:9c:6f:46:66:3d:2c:89:ce:52:c6:68:
         c2:d6:76:18:52:2a:7c:7c:58:c6:db:6c:9a:07:71:48:f4:7f:
         c0:dd:be:4c:d5:1f:be:a4:74:72:40:87:40:ca:fd:a8:81:c8:
         db:58:bf:7f:77:88:da:5b:30:6a:4b:81:8d:dc:ee:a8:ee:af:
         ae:16:34:c9:aa:e0:f1:a1:c6:20:16:f7:34:66:e7:a7:34:00:
         ac:57:7d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----