Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft
File:                     IYCTB4hvuv261Th2Eu_-dxOHowA.mft (raw, json)
Hash identifier:          FzPabpDKq1Kfu8AiGKFt0aSm4zlmhq0WtAF2Dd+IcNE=
Subject key identifier:   85:75:0D:B3:3C:B5:E3:93:69:EA:E5:F3:9B:3D:04:1D:01:98:D2:99
Authority key identifier: 21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00
Certificate issuer:       /CN=21809307886fbafdbad5387612effe771387a300
Certificate serial:       019776E554C93AEE94C943A0DEFE9B8E879F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft
Manifest number:          06D8
Signing time:             Mon 16 Jun 2025 04:00:30 +0000
Manifest this update:     Mon 16 Jun 2025 04:00:30 +0000
Manifest next update:     Tue 17 Jun 2025 04:00:30 +0000
Files and hashes:         1: IYCTB4hvuv261Th2Eu_-dxOHowA.crl (hash: Gu365rwBIWikhxRgsygQSE4fc58cKBdXo+0NgriWMFE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 04:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:76:e5:54:c9:3a:ee:94:c9:43:a0:de:fe:9b:8e:87:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=21809307886fbafdbad5387612effe771387a300
        Validity
            Not Before: Jun 16 04:00:30 2025 GMT
            Not After : Jun 17 04:00:30 2025 GMT
        Subject: CN=85750db33cb5e39369eae5f39b3d041d0198d299
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:72:53:65:61:de:eb:02:4a:66:7e:3d:64:60:
                    bb:5d:01:6e:c3:f2:16:77:08:96:83:00:e4:72:3c:
                    1a:2a:d6:7a:9f:b7:6e:c6:76:56:7e:c5:78:1f:f6:
                    c1:c8:17:8e:08:b0:ff:ef:ad:cd:99:35:7c:34:74:
                    da:4c:18:45:64:5a:7b:23:ed:49:56:ec:2a:60:a9:
                    e4:bf:af:ef:87:6b:54:86:77:f8:ac:7d:22:f0:c7:
                    9d:db:41:2b:3d:33:c8:93:83:9e:0d:0d:a0:c0:1b:
                    17:3c:9a:d0:8f:6f:ad:0c:60:f8:7f:a6:18:5d:b7:
                    f0:9e:31:a8:9a:83:67:47:dc:6a:4f:da:46:25:ae:
                    1c:cd:40:cf:b8:f0:cd:ef:b1:d5:7c:da:93:39:9b:
                    4a:fb:0c:b2:49:5c:ff:0a:f8:cd:e0:0f:a4:85:5f:
                    5f:d2:c4:3e:bd:e5:e8:67:31:8e:bd:df:71:c0:db:
                    00:51:e5:d0:1e:2b:f3:4d:2e:9a:44:e8:25:74:20:
                    58:44:7c:94:4d:04:31:2a:e9:a5:74:ae:3a:59:ff:
                    8f:7d:29:d5:33:bb:0e:d1:4b:48:ef:56:9e:c2:11:
                    e0:f9:b4:53:99:15:3b:68:dc:7b:96:8f:00:fe:66:
                    e7:88:2c:e4:c1:9d:9d:08:27:1b:e4:e2:97:27:b0:
                    66:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:75:0D:B3:3C:B5:E3:93:69:EA:E5:F3:9B:3D:04:1D:01:98:D2:99
            X509v3 Authority Key Identifier:
                keyid:21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:0d:5c:62:6f:3b:24:d9:ad:d7:89:a7:2a:d4:6f:5e:ca:a4:
         90:62:9b:29:4c:f3:1e:fe:72:a5:21:1a:4f:66:14:06:8a:5f:
         0b:7d:6d:f2:46:eb:4e:d4:6c:de:6b:74:49:c2:ff:47:bb:d5:
         2e:bd:f8:82:1e:a8:0a:e3:de:9b:8e:c7:9d:da:07:25:6e:45:
         0d:b6:a7:e2:6a:97:66:ba:db:4e:67:33:d2:ca:c6:ab:68:e6:
         9e:f8:d2:d6:71:3a:6b:de:7f:0c:45:b0:0b:2e:eb:3b:b1:0b:
         f6:76:2c:7b:3a:29:32:b1:80:76:3d:36:91:bc:73:87:93:cf:
         60:b4:1f:58:4e:4f:56:d5:cf:f1:29:ba:6e:13:78:7b:a5:50:
         dd:19:4f:bd:0d:5b:60:b9:a7:df:66:33:b9:f9:42:02:fe:f1:
         59:7c:55:67:b6:09:cf:6d:c8:cf:74:18:3f:2d:6b:b6:f2:1c:
         4a:a7:57:07:db:b6:86:f3:b7:a9:c8:5c:96:59:46:76:bb:cf:
         7f:90:50:a1:cd:ec:c0:49:27:29:16:2d:46:02:c7:d3:8c:34:
         fc:94:dd:3e:56:6b:ee:2e:29:33:15:b6:01:31:72:97:54:3f:
         80:d1:d3:85:aa:f5:0b:a2:80:b8:ee:97:23:13:0f:0e:ad:a5:
         29:75:76:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----