Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
File:                     FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft (raw, json)
Hash identifier:          hNoTMlwIxpijrwkDY3STPTzI2A5qhLAgeWUmOedZGzM=
Subject key identifier:   99:A5:74:2E:54:52:51:65:A8:38:5F:EC:38:DA:FB:18:8E:E1:E4:FC
Authority key identifier: 16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08
Certificate issuer:       /CN=16536fc756a5864aaa2c1e77bb764248dabe2608
Certificate serial:       01976BBCD7833E6B512D88E736C39B7D2621
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
Manifest number:          05E0
Signing time:             Sat 14 Jun 2025 00:00:27 +0000
Manifest this update:     Sat 14 Jun 2025 00:00:27 +0000
Manifest next update:     Sun 15 Jun 2025 00:00:27 +0000
Files and hashes:         1: FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl (hash: XKnyA43S/mdVBxtZ1sZnlLNNdqBxtc/4LctisZ6P1EA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 00:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:bc:d7:83:3e:6b:51:2d:88:e7:36:c3:9b:7d:26:21
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=16536fc756a5864aaa2c1e77bb764248dabe2608
        Validity
            Not Before: Jun 14 00:00:27 2025 GMT
            Not After : Jun 15 00:00:27 2025 GMT
        Subject: CN=99a5742e54525165a8385fec38dafb188ee1e4fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:d6:0d:e2:5f:dc:ef:66:05:ca:1b:cd:69:29:
                    74:ff:c0:ba:d8:bf:35:88:c1:62:10:aa:90:5f:d0:
                    8f:17:54:0e:6b:47:7c:03:c4:ad:1e:df:03:71:0b:
                    3a:67:db:97:76:cc:d3:c0:71:23:6f:5c:c9:59:8c:
                    c7:d5:29:97:07:3d:53:94:1d:af:66:81:89:dd:b5:
                    3f:1c:75:1d:d4:9e:e2:27:b9:4c:fd:d3:67:b9:ad:
                    95:63:8b:e1:a1:88:32:c0:eb:3a:14:4a:41:19:cb:
                    99:84:eb:a4:a6:f4:64:5d:df:ee:38:bc:d3:94:59:
                    25:79:51:20:0f:b2:4b:3c:63:03:c5:27:eb:fc:15:
                    ac:65:18:42:f2:f0:a9:4e:da:8c:91:39:6e:4e:8c:
                    37:5e:d6:47:57:85:4f:5b:3c:35:1f:90:4b:52:67:
                    85:21:a2:02:f0:2d:e1:07:7b:ba:fd:7a:60:54:59:
                    8d:e4:b0:a5:84:16:bd:2c:ad:b1:ec:44:43:04:42:
                    53:cb:17:12:0f:6d:4a:ea:bd:12:79:50:b9:b7:c2:
                    8c:22:51:ef:da:a3:d4:d9:e1:2c:ae:79:85:67:e3:
                    e7:e7:1b:f0:bf:7c:28:8f:7c:aa:ea:96:84:f4:4c:
                    9f:da:dc:45:0b:5b:eb:c2:99:c3:52:75:45:56:1c:
                    a9:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:A5:74:2E:54:52:51:65:A8:38:5F:EC:38:DA:FB:18:8E:E1:E4:FC
            X509v3 Authority Key Identifier:
                keyid:16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:1b:eb:7e:70:74:b9:22:73:15:76:85:da:8f:c5:d6:72:02:
         08:5b:cc:5b:a4:f5:05:b6:12:48:fb:3a:a4:aa:a6:10:53:31:
         c6:49:fd:2c:59:ce:3e:9b:e6:02:c0:4e:40:8a:f0:7e:ff:88:
         06:c4:46:30:5c:82:5c:c4:8a:7d:96:e0:c9:06:c9:14:94:a8:
         3e:6f:b5:2e:95:a1:52:b9:1e:1d:ef:b7:8f:d2:83:54:a1:b5:
         fc:e6:a5:c4:ef:84:9f:66:80:8a:a4:a5:49:4b:81:8e:36:7b:
         08:77:27:ca:46:74:f2:d6:c5:8c:c5:30:89:a7:63:bf:90:c3:
         0e:f0:53:24:7f:ef:e4:b2:0a:22:be:24:e8:d1:38:d5:ec:41:
         ee:ec:bc:04:ca:da:2d:74:4d:a8:1d:39:c6:cf:38:67:06:00:
         8a:14:d6:b1:f9:d6:1a:95:a9:e5:04:66:9f:5d:d9:d8:dd:19:
         05:a9:36:8a:f1:94:b4:44:d1:d7:f4:6d:9a:83:c3:22:66:8a:
         fc:cc:b6:b9:c0:48:d0:14:2c:89:e6:41:bb:44:01:fc:ca:2d:
         2e:25:83:22:eb:a0:cf:16:97:86:b1:00:b7:50:1e:14:6f:a8:
         11:70:dd:96:d5:34:83:4c:aa:93:28:f4:64:64:06:77:58:af:
         2f:06:10:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----