Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File:                     nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier:          Dp61IC91FgEkZNpKzZWIEtx3PhsFxjl8m9t/W15XeAg=
Subject key identifier:   70:6E:E2:60:E0:E6:6A:6B:82:DD:D0:98:B2:A5:57:1B:49:7D:B5:86
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer:       /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial:       019768BC4BAE9DC2D03DE65CECF0A36F5382
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number:          033E
Signing time:             Fri 13 Jun 2025 10:00:59 +0000
Manifest this update:     Fri 13 Jun 2025 10:00:59 +0000
Manifest next update:     Sat 14 Jun 2025 10:00:59 +0000
Files and hashes:         1: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: kqLI/OqNrashX1261Yy6Iu6XU/JT90AhCF5t7gjNvac=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 10:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:bc:4b:ae:9d:c2:d0:3d:e6:5c:ec:f0:a3:6f:53:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
        Validity
            Not Before: Jun 13 10:00:59 2025 GMT
            Not After : Jun 14 10:00:59 2025 GMT
        Subject: CN=706ee260e0e66a6b82ddd098b2a5571b497db586
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:3c:2d:b7:ef:09:a5:22:eb:4f:89:98:ca:60:
                    5a:02:a9:fd:09:89:6f:d6:e3:ba:1e:7b:9d:2f:10:
                    04:4a:6e:e8:24:18:16:b3:a4:30:37:46:81:76:06:
                    e6:65:46:2d:82:d5:43:a1:f9:db:8d:11:69:44:cc:
                    46:df:8e:2a:df:f2:45:2a:cd:9f:ac:e6:a6:c4:90:
                    58:60:92:56:ed:52:8b:c7:20:24:a7:72:9e:c4:75:
                    86:57:52:47:b3:3f:cf:ae:f4:26:df:12:fe:5a:b1:
                    e9:10:e9:ff:64:9b:84:5c:92:86:e0:75:8d:a1:83:
                    86:43:25:49:3b:ed:cb:87:24:f1:41:02:b7:03:ed:
                    74:31:96:92:1c:a1:c7:f7:7e:e5:58:bb:2c:ed:21:
                    e2:83:45:50:4f:1c:4f:b9:0f:68:74:0e:80:a4:0b:
                    46:3a:8d:65:14:65:22:af:91:2d:9b:21:67:a1:53:
                    04:bb:d7:f0:f6:cc:30:9c:2b:b3:dc:9b:38:bd:50:
                    d6:96:db:e9:9b:64:83:ac:42:8d:9b:7d:13:ff:9e:
                    ca:82:e1:c4:39:25:27:04:6b:4a:63:58:52:01:93:
                    d3:2e:b6:7a:43:a4:06:20:5c:80:8b:b7:0b:5c:aa:
                    97:e7:eb:fa:f7:1b:37:96:8e:6d:4c:b4:c1:11:8d:
                    93:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:6E:E2:60:E0:E6:6A:6B:82:DD:D0:98:B2:A5:57:1B:49:7D:B5:86
            X509v3 Authority Key Identifier:
                keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:6a:aa:ea:be:59:92:b0:d2:e8:90:ce:e3:b5:3d:5b:15:ab:
         e3:5a:81:64:82:8c:9a:7f:50:c7:0f:78:8b:f0:97:6e:b9:c3:
         45:ea:bd:8b:40:56:85:d9:b4:99:ef:57:33:40:2b:e8:7a:4f:
         6e:2b:82:67:a5:4e:df:62:ff:72:e8:a7:fc:0d:0d:7f:ad:a7:
         1c:a5:3f:13:23:e2:dd:72:93:58:8f:0c:10:9b:86:54:55:56:
         aa:44:3d:e2:35:ce:87:4e:3d:d3:3f:d4:1b:28:09:c0:5d:63:
         47:85:01:32:4a:bd:34:9d:d1:2b:87:f6:74:1c:56:3a:09:02:
         9b:17:dd:93:c6:1b:71:58:df:29:c1:c7:67:c7:8f:ad:17:09:
         2a:e7:b5:b0:20:a6:68:46:92:fb:cb:f7:ff:70:f0:e1:bb:7e:
         9e:a1:fa:2a:59:4e:d2:de:d5:58:37:74:71:fa:b5:9b:8a:d8:
         35:7b:31:3c:77:cf:31:32:39:76:48:f5:92:fe:b9:06:12:a4:
         ce:49:b0:31:6f:a7:c6:98:4c:1d:73:1d:4d:42:95:0a:d0:1b:
         fc:bf:94:01:60:da:8b:6b:bb:34:8e:48:f1:78:4c:64:43:79:
         83:0e:70:7e:18:98:4a:a7:e7:a6:80:fa:5f:d9:9a:07:e2:0c:
         97:13:14:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----