Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File:                     5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier:          8Ue2WRhLWrJfDRFS85pJ3bx1BthOJxbRwJ3eg7WHw3o=
Subject key identifier:   BB:A3:29:59:C1:BB:9C:84:93:29:41:9D:90:F8:25:C8:6A:9A:FB:5E
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer:       /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial:       01976D3E0F382B0DFB850D5AA418EDE4A2D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number:          158C
Signing time:             Sat 14 Jun 2025 07:01:13 +0000
Manifest this update:     Sat 14 Jun 2025 07:01:13 +0000
Manifest next update:     Sun 15 Jun 2025 07:01:13 +0000
Files and hashes:         1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: OjydLR+2jgyuuGk2iJd9rJbEK6N5rMcOVedOf7FgP0A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3e:0f:38:2b:0d:fb:85:0d:5a:a4:18:ed:e4:a2:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
        Validity
            Not Before: Jun 14 07:01:13 2025 GMT
            Not After : Jun 15 07:01:13 2025 GMT
        Subject: CN=bba32959c1bb9c849329419d90f825c86a9afb5e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:ea:f5:bd:e9:2d:65:df:33:0e:e5:10:6d:6a:
                    78:99:6f:8e:2a:17:b4:64:e2:a0:68:4d:4b:5e:13:
                    5c:4d:6e:d6:9a:de:d4:c6:02:a5:27:4e:70:7d:f7:
                    7d:50:34:04:10:5a:42:98:8c:79:8a:7d:4c:f8:a9:
                    7c:b7:90:37:f6:f0:82:82:d2:3a:e0:12:6e:9d:8f:
                    16:fe:84:81:3d:03:de:ed:ea:da:60:24:d2:4f:8e:
                    e4:70:7e:3f:17:a0:b6:17:9e:2f:66:c7:69:8a:03:
                    c0:42:7e:50:92:34:71:85:9a:62:04:83:fe:4d:20:
                    59:8d:9b:ca:42:dd:e7:4e:ee:4f:52:f1:fc:16:6c:
                    7d:fd:98:ea:45:a0:0a:1a:53:22:d0:7e:be:85:3d:
                    ba:46:a2:10:25:26:75:ca:58:d8:fa:0b:ec:09:e8:
                    e4:b7:af:32:b9:55:66:01:76:7e:74:00:00:d5:23:
                    bb:65:51:ae:41:a6:85:71:35:19:61:2d:0b:25:02:
                    8f:76:aa:e0:dd:35:1a:7a:7e:98:24:63:d4:e6:84:
                    48:1a:ae:a2:13:94:cd:d4:6d:9b:75:22:86:0e:0e:
                    28:52:ce:cf:ad:67:97:3b:69:97:d7:ee:25:e2:5c:
                    78:af:d1:61:e6:1f:a3:43:c0:57:bb:50:8e:bd:39:
                    2e:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:A3:29:59:C1:BB:9C:84:93:29:41:9D:90:F8:25:C8:6A:9A:FB:5E
            X509v3 Authority Key Identifier:
                keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:1a:7a:2b:52:75:7e:a5:f3:e8:15:91:c5:17:ef:16:86:01:
         9c:5b:8d:9a:5a:a5:48:ca:62:81:a1:df:cb:91:80:a4:b4:c6:
         c8:86:56:48:63:49:be:35:5e:17:e5:20:ac:31:b5:d4:8a:f4:
         57:73:f9:80:49:c8:4d:59:fa:8a:63:52:df:8e:98:f4:a1:21:
         ee:ea:06:4a:3c:22:86:57:52:8a:13:a9:02:25:6d:6d:80:af:
         3c:b7:f6:93:db:30:84:d8:9f:43:f2:1f:2e:24:fa:dd:43:32:
         c6:28:5b:2b:a2:cb:b2:20:75:4a:fa:0c:10:6d:e1:98:6c:11:
         6a:7a:66:1f:3e:af:fa:51:67:8f:c8:23:97:88:d2:8d:17:2c:
         50:17:78:6f:c6:b7:b8:ac:e1:c9:a2:e5:25:33:52:c0:45:fb:
         a1:33:e1:fa:14:dd:c6:a9:c1:6d:ae:14:f7:a4:85:27:70:cd:
         07:1c:14:3f:1b:14:fe:82:66:f8:8a:68:64:72:03:aa:2f:64:
         73:0c:56:24:96:fa:e2:ed:f4:b7:a6:38:16:bb:ae:d5:6a:64:
         a8:28:5d:fe:ee:a5:9b:c4:32:82:53:d1:6b:65:03:df:81:c6:
         1e:82:99:f8:6e:30:2a:a8:0e:65:74:b5:03:bf:3b:0b:69:75:
         0e:e2:51:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----