Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft
File:                     52vcVigM5dn89QMlGKfsm2HizO0.mft (raw, json)
Hash identifier:          z3R060IJLUcp1uhhC/PLmHgHnxV1SEX2CnaN1mMWXew=
Subject key identifier:   D1:FF:FC:97:8A:A1:F3:18:4E:57:90:B8:4D:9F:B5:7E:B9:E0:E4:C9
Authority key identifier: E7:6B:DC:56:28:0C:E5:D9:FC:F5:03:25:18:A7:EC:9B:61:E2:CC:ED
Certificate issuer:       /CN=e76bdc56280ce5d9fcf5032518a7ec9b61e2cced
Certificate serial:       0197711AB2ADB153D97C6C216465FF9D02CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft
Manifest number:          105A
Signing time:             Sun 15 Jun 2025 01:01:04 +0000
Manifest this update:     Sun 15 Jun 2025 01:01:04 +0000
Manifest next update:     Mon 16 Jun 2025 01:01:04 +0000
Files and hashes:         1: 52vcVigM5dn89QMlGKfsm2HizO0.crl (hash: MdbqMZvJ5cxHiJqF41J81TRALzJj8JqVkp4sy9cMi9U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:1a:b2:ad:b1:53:d9:7c:6c:21:64:65:ff:9d:02:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e76bdc56280ce5d9fcf5032518a7ec9b61e2cced
        Validity
            Not Before: Jun 15 01:01:04 2025 GMT
            Not After : Jun 16 01:01:04 2025 GMT
        Subject: CN=d1fffc978aa1f3184e5790b84d9fb57eb9e0e4c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:88:d1:23:cf:8e:49:ee:6c:6f:91:05:08:e8:
                    c2:f3:bf:c5:05:2e:a8:6b:d3:d3:37:fc:71:46:71:
                    a6:18:c6:e4:c0:03:bf:4c:6a:07:ae:ed:a3:bc:3c:
                    4c:a3:3b:3a:ed:16:54:a5:13:52:de:a3:2d:45:14:
                    5d:55:65:31:15:50:11:0d:c8:b0:14:71:5c:4b:59:
                    13:b2:14:2e:1c:08:68:e6:1d:67:b2:70:6c:07:01:
                    29:f3:a2:e5:36:37:db:00:85:1c:9e:98:a0:74:d2:
                    87:2a:3e:b4:c9:b3:57:b5:a2:71:b2:8b:ba:e1:9e:
                    01:81:d6:e9:8f:c7:a4:e9:6e:4f:e8:3f:19:50:23:
                    a0:a8:f7:a4:54:68:b6:de:0d:fc:3c:42:0c:39:e1:
                    47:73:bf:36:bc:56:7c:dc:2b:99:50:76:b3:52:01:
                    ab:e1:a8:40:8b:8b:8a:37:18:33:51:77:a0:1b:10:
                    67:c4:45:64:db:85:be:ac:8a:f6:13:19:62:bc:e1:
                    ed:c1:4a:87:c1:85:47:81:93:5e:36:1d:db:9e:f1:
                    30:bd:bd:0c:13:7c:90:a9:df:46:e7:7b:ec:de:45:
                    76:15:76:83:65:5b:22:69:b1:ad:1e:d3:db:5a:c3:
                    2e:cd:f4:9b:2a:52:22:89:c0:1b:21:74:f6:f4:4d:
                    0d:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:FF:FC:97:8A:A1:F3:18:4E:57:90:B8:4D:9F:B5:7E:B9:E0:E4:C9
            X509v3 Authority Key Identifier:
                keyid:E7:6B:DC:56:28:0C:E5:D9:FC:F5:03:25:18:A7:EC:9B:61:E2:CC:ED

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         dd:15:91:42:35:57:ac:76:b3:d5:95:15:eb:b6:57:31:f4:cb:
         b6:32:ec:f7:b5:ca:9e:87:10:b2:e8:fd:2e:1f:95:6b:ac:97:
         1e:0b:b9:60:e6:52:e8:60:92:91:37:fe:41:1a:57:cb:b6:a2:
         3f:a6:19:2a:1f:9e:2f:90:05:1b:e0:f2:f2:6a:1c:6e:a1:bd:
         55:5b:20:4f:ba:1c:55:56:af:04:f4:c3:ae:1e:30:a6:4c:23:
         bb:a8:ad:30:42:a2:62:1a:68:12:34:22:c1:c6:3f:c5:3b:1c:
         16:06:09:4e:47:d6:90:6f:bb:b5:d1:f0:5a:de:bd:e8:6c:7e:
         b2:df:3f:dd:a6:24:1e:0b:c0:f7:82:49:95:8f:e5:14:cc:d8:
         72:0e:e8:78:9e:7d:51:42:28:37:ed:7d:b3:5f:90:cb:20:eb:
         12:b5:55:14:06:0e:77:30:98:0d:24:82:7f:fe:6c:2e:d7:f8:
         d7:ee:4a:19:bb:d4:4a:2f:ce:3e:e7:6d:99:4b:b5:48:a8:3d:
         85:cc:21:19:8a:aa:f4:85:19:94:ff:c8:e2:65:1b:c7:1f:67:
         36:58:5a:e9:f1:96:d1:3f:1d:13:a0:e3:4a:b7:d6:2b:6c:fb:
         a0:ed:aa:87:1c:62:93:85:ca:c0:e1:08:ea:cf:1a:56:05:b3:
         63:d3:b3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----