Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
File:                     _ypds7oz42wW2_UmCy_idK5_siI.mft (raw, json)
Hash identifier:          jObbjp+Qs5s8ATwhyWybKgF81YXfSgFc9eyakCUcT5o=
Subject key identifier:   4C:2A:76:FE:D7:97:FA:D2:C7:AE:6B:FE:29:81:E8:B4:24:73:04:84
Authority key identifier: FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22
Certificate issuer:       /CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222
Certificate serial:       01976C98D481299C020C7D62A5E691E87DD5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
Manifest number:          0C6E
Signing time:             Sat 14 Jun 2025 04:00:44 +0000
Manifest this update:     Sat 14 Jun 2025 04:00:44 +0000
Manifest next update:     Sun 15 Jun 2025 04:00:44 +0000
Files and hashes:         1: _ypds7oz42wW2_UmCy_idK5_siI.crl (hash: s2mYH9AKknVxJwZzX3r2DPZQPO+KERFrRW5L+EpbwcM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:98:d4:81:29:9c:02:0c:7d:62:a5:e6:91:e8:7d:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222
        Validity
            Not Before: Jun 14 04:00:44 2025 GMT
            Not After : Jun 15 04:00:44 2025 GMT
        Subject: CN=4c2a76fed797fad2c7ae6bfe2981e8b424730484
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:86:20:2c:b7:3d:1c:9c:f6:80:4d:a1:c2:8f:
                    73:2d:73:c5:1c:30:98:13:1b:e6:6d:d5:43:9c:53:
                    e8:8c:54:27:72:34:d2:9c:60:86:b7:c4:7b:46:9a:
                    8d:7d:0d:1a:71:4a:5e:59:0d:3a:50:c8:0c:35:08:
                    a6:dd:fb:0a:ac:e9:28:75:62:3d:0e:e4:46:0d:b0:
                    c5:a3:4f:e5:3f:57:3f:4a:78:48:b8:31:ec:3b:79:
                    fa:c2:9b:34:6c:8e:45:42:2a:20:84:4d:27:a5:40:
                    9b:51:3e:ff:e3:8f:7f:ad:94:24:a0:7c:90:9a:7a:
                    b1:2b:0a:2f:b1:8a:6e:67:76:d2:1b:ad:47:d5:4b:
                    bf:95:0d:31:2d:db:4f:dc:36:2c:50:dd:46:c9:3e:
                    21:7c:6e:55:67:0e:7a:e3:65:61:83:0b:c8:5f:34:
                    5d:4c:ab:95:00:93:66:9d:ae:bf:f3:35:3e:0b:d7:
                    a8:d0:76:ed:f5:0f:3b:be:1d:72:96:69:a5:0c:8b:
                    54:fa:6a:fd:4f:62:ae:eb:28:f2:31:4e:0c:c4:9c:
                    15:8d:56:77:9c:e8:d2:b6:c4:12:af:06:2c:45:56:
                    aa:a5:13:82:0e:8f:78:db:84:b7:44:6b:24:21:11:
                    a7:58:ba:c3:d0:4e:bc:4d:b0:4e:c0:7b:10:b1:70:
                    62:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:2A:76:FE:D7:97:FA:D2:C7:AE:6B:FE:29:81:E8:B4:24:73:04:84
            X509v3 Authority Key Identifier:
                keyid:FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:fb:a1:e5:7e:a5:3a:66:1d:77:8e:94:b5:df:93:4d:39:db:
         d8:e2:d6:f8:6d:2e:65:04:b2:13:6f:e7:cd:0c:0f:cf:c1:b5:
         5e:79:32:45:2f:19:a3:d3:5d:f1:fa:0d:87:17:db:1f:e4:99:
         0f:83:84:ae:6a:33:23:ce:8d:aa:1d:1f:2c:c0:a4:6a:85:29:
         11:01:5d:27:66:51:a6:4c:3e:6b:e0:20:13:fc:82:7b:69:44:
         0b:d4:d7:d6:a1:5e:a7:2e:df:c5:6f:60:4b:ca:76:05:f0:fa:
         4d:06:ce:72:66:39:15:5a:8a:07:f8:f2:90:52:86:26:07:65:
         5d:ba:40:d6:0e:fc:c0:b9:5c:ee:7f:55:f5:11:01:2c:ce:c1:
         89:39:61:e2:3c:c0:b6:8c:b3:47:4d:64:ad:f4:e2:79:59:ce:
         8c:f8:40:81:35:7b:ee:d9:a6:8c:e8:70:f9:f4:20:33:cd:ae:
         f6:aa:42:ee:33:8c:25:e8:07:5c:17:24:ff:55:3f:9e:80:97:
         0a:2d:42:46:ea:d6:a7:83:54:3f:f6:75:38:cc:6d:50:de:61:
         62:54:84:81:cc:98:6c:90:2d:95:3e:5c:55:59:ac:a3:b3:91:
         99:1a:9e:e4:28:69:cf:6c:e9:3c:5a:48:1b:27:6f:7e:f0:cd:
         81:d1:05:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----