Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
File:                     HYFeKwc-sEV2vLJN3k341Ot8nwg.mft (raw, json)
Hash identifier:          ropBSmN17yiYipk/NRhrrNNSMGdf2vUzTTw2Q0W1mVU=
Subject key identifier:   41:8C:40:0C:53:58:09:0C:EC:8A:8F:42:0D:58:18:04:EB:C0:A3:F4
Authority key identifier: 1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08
Certificate issuer:       /CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08
Certificate serial:       01976BBCB7153C36BC891DCCA146E605ABAD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
Manifest number:          0A75
Signing time:             Sat 14 Jun 2025 00:00:19 +0000
Manifest this update:     Sat 14 Jun 2025 00:00:19 +0000
Manifest next update:     Sun 15 Jun 2025 00:00:19 +0000
Files and hashes:         1: HYFeKwc-sEV2vLJN3k341Ot8nwg.crl (hash: hQG+PY/oeJmava4L3nqQlHm0tLD7ftzox3AlYf/Wh+Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 00:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:bc:b7:15:3c:36:bc:89:1d:cc:a1:46:e6:05:ab:ad
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08
        Validity
            Not Before: Jun 14 00:00:19 2025 GMT
            Not After : Jun 15 00:00:19 2025 GMT
        Subject: CN=418c400c5358090cec8a8f420d581804ebc0a3f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:47:2f:4c:b2:7c:39:92:18:7e:be:14:fb:52:
                    9c:0d:8e:05:75:71:a5:83:8f:1a:a7:94:ba:38:e5:
                    3e:6b:c1:74:e9:96:87:b0:39:81:4b:7a:31:7f:8c:
                    10:01:68:7d:9b:c8:3a:81:14:79:d8:c3:2f:cd:23:
                    38:2c:f3:1c:76:fc:e6:7e:4b:8f:ed:e9:3b:d8:9b:
                    58:a0:94:52:89:e0:1a:c2:6a:31:7b:14:e0:09:a2:
                    f0:b3:b6:cd:6b:cf:b1:8f:20:c5:7c:a6:46:c4:2b:
                    36:03:a7:82:2d:85:ef:16:19:0b:01:12:19:6b:2f:
                    82:35:f9:e8:1d:92:8e:39:80:34:07:2f:df:50:dd:
                    60:aa:15:6f:44:b6:ac:7e:b1:e9:29:3e:5f:b1:c2:
                    61:a2:47:41:25:3e:ec:34:7f:6d:44:77:ce:0f:90:
                    bd:98:a6:55:7f:ac:0e:97:13:9d:2e:4e:b0:7b:6b:
                    f6:47:44:c1:c2:80:b2:5c:32:2d:e7:eb:dd:a2:f6:
                    7c:81:17:f0:b7:e1:a0:e4:ac:3f:87:6c:63:22:d1:
                    8e:7f:37:cf:ea:09:e6:9e:df:78:e0:f1:4e:49:b1:
                    dc:f4:08:81:6f:d1:0d:27:a5:1c:fc:37:02:fe:6f:
                    46:03:09:c2:c6:af:aa:ca:9e:22:c1:4e:43:2c:4f:
                    58:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:8C:40:0C:53:58:09:0C:EC:8A:8F:42:0D:58:18:04:EB:C0:A3:F4
            X509v3 Authority Key Identifier:
                keyid:1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:13:90:88:6f:74:c8:89:18:77:bf:45:ff:42:8f:1f:b6:bb:
         d0:09:c1:77:62:47:0b:13:fc:89:7e:0c:6b:18:80:db:96:1b:
         74:d9:ba:45:aa:5a:6b:4a:f2:0a:e3:20:dd:41:3a:ca:cf:58:
         65:df:b4:cb:95:a2:71:5a:38:1b:35:0f:31:54:8c:49:dc:c9:
         27:f7:a3:ce:5f:76:d9:8a:5e:cc:0b:3d:37:c2:14:ad:2f:a0:
         01:53:9e:36:3a:7d:53:98:1e:ab:76:ae:e6:da:01:d4:2a:87:
         10:0f:7f:12:47:b1:04:41:11:cd:c3:09:f3:a6:b3:b9:13:c3:
         27:e5:12:41:65:7e:a4:33:48:27:5b:03:36:72:b9:e8:7b:31:
         ba:9d:20:4a:89:6d:e8:3f:5b:39:ab:b7:a9:22:6e:10:82:b6:
         38:82:54:c2:72:79:b3:45:37:11:ad:c2:24:45:86:1b:da:6d:
         02:71:20:52:85:25:67:51:b8:4a:28:df:d6:24:19:c4:97:52:
         63:b2:87:d4:05:0d:c4:1c:9a:0c:8d:9e:16:92:c5:a2:73:07:
         d8:c5:d5:fc:36:26:6b:c4:a4:e6:29:27:62:66:b4:19:7f:2e:
         ac:be:b6:15:2e:60:5d:21:ee:16:96:85:40:9a:4e:53:6a:74:
         d5:aa:70:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----