Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
File:                     HPoACq4LHA_NOZiRS7dt_HLoc1g.mft (raw, json)
Hash identifier:          cupC9DmMVXcCWO/j5NMvU6eh6zuGoLgnNEZSeSqF5iA=
Subject key identifier:   11:23:E5:AB:FE:D3:58:16:08:EE:D0:E8:3E:8D:E6:72:97:73:75:CD
Authority key identifier: 1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58
Certificate issuer:       /CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
Certificate serial:       0197684E7B232D763FF446E864515AC858B2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
Manifest number:          0263
Signing time:             Fri 13 Jun 2025 08:01:03 +0000
Manifest this update:     Fri 13 Jun 2025 08:01:03 +0000
Manifest next update:     Sat 14 Jun 2025 08:01:03 +0000
Files and hashes:         1: HPoACq4LHA_NOZiRS7dt_HLoc1g.crl (hash: xq9fvGnD3Tk9BbcxqjC5gg699cc/AHO+0Boy2FKpmqI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 08:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4e:7b:23:2d:76:3f:f4:46:e8:64:51:5a:c8:58:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
        Validity
            Not Before: Jun 13 08:01:03 2025 GMT
            Not After : Jun 14 08:01:03 2025 GMT
        Subject: CN=1123e5abfed3581608eed0e83e8de672977375cd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:f6:18:d7:18:a9:3c:4c:8f:81:0e:e0:2d:9d:
                    a8:4d:46:51:77:e7:75:22:ca:ee:c0:49:c3:ff:f1:
                    62:64:21:96:cf:47:79:fe:62:49:14:2f:df:96:f6:
                    db:81:32:a7:dd:a0:f0:dc:d5:e9:9d:d3:d8:6e:f3:
                    cd:01:a6:bd:a9:25:67:8c:4a:8c:b7:c5:48:9e:0b:
                    23:c9:73:d9:e3:c7:09:93:59:0c:fe:a2:46:d6:7e:
                    eb:04:27:bb:90:12:d6:33:5f:f7:6b:57:e2:f1:ac:
                    3c:12:91:23:9f:c0:0e:42:73:dd:d0:52:61:cb:40:
                    75:4c:bd:48:b5:dd:7e:34:6a:72:06:d7:31:45:e5:
                    15:b2:66:06:cc:07:b4:1c:61:02:35:e5:cd:05:58:
                    1e:ea:86:1f:81:38:5c:79:61:49:64:16:8d:ae:26:
                    66:ce:c6:7c:3a:74:27:c5:af:cd:a4:f2:85:b8:98:
                    47:98:16:cc:e6:61:cd:76:c3:0f:80:c6:47:9b:ec:
                    a8:13:a3:ab:d7:70:63:89:55:75:db:27:b9:ff:cc:
                    b1:82:ce:cd:a1:e4:b9:b0:d5:12:fa:92:4f:6a:a8:
                    0d:87:f9:80:64:59:0e:23:2a:c3:66:d5:5e:67:34:
                    12:1e:39:a0:ad:69:86:02:bc:85:96:4c:1f:91:7b:
                    a8:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:23:E5:AB:FE:D3:58:16:08:EE:D0:E8:3E:8D:E6:72:97:73:75:CD
            X509v3 Authority Key Identifier:
                keyid:1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:ca:a3:0a:6f:71:31:4f:57:a9:06:28:e4:0c:2c:47:f9:70:
         e7:c9:cb:f1:81:2c:90:3a:4d:d8:b6:8f:d4:5e:c7:2e:1c:17:
         36:85:3b:80:9b:42:53:cf:f3:59:76:b0:7e:2c:7d:a3:5d:61:
         53:52:6d:6a:87:66:5c:d6:5f:72:30:20:42:ab:f9:b1:cf:cb:
         63:a7:c0:35:6a:d8:2f:0f:a2:d8:88:0e:20:6c:d1:ff:73:94:
         93:09:9f:bc:88:6a:77:8c:97:18:b4:27:4a:a5:b8:ea:d7:16:
         9d:e1:79:58:42:f3:62:2b:e0:a2:04:c9:8f:8e:b9:13:e4:70:
         8d:c3:4b:6b:28:88:b6:b8:29:1f:f0:57:e5:89:e0:21:39:f2:
         ae:89:6a:41:84:e7:21:e5:fd:11:08:f9:a4:4b:56:e1:31:08:
         70:31:fa:5b:1a:bb:12:64:db:16:50:d9:32:2f:95:83:1a:96:
         58:7a:5a:33:ee:cf:9f:c9:b1:bc:9a:40:56:ee:9f:5b:65:bc:
         ec:ce:72:a5:21:4c:7a:5c:0a:14:9c:ad:4c:e6:30:e0:af:be:
         84:80:6f:36:e1:d8:fc:71:62:7b:78:ff:52:ae:b0:27:89:d6:
         83:97:cb:ec:14:27:a8:df:1c:40:9d:92:2c:58:e9:93:89:c9:
         9e:0b:c2:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----