Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
File:                     kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft (raw, json)
Hash identifier:          +KvEqizlXBLRFr9kMA7qlQjuLPenh/oJ1saVUUwjS2I=
Subject key identifier:   66:A3:86:E6:C8:D0:1A:98:A3:B8:B8:A5:12:6E:21:D1:F1:0D:C0:B8
Authority key identifier: 90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D
Certificate issuer:       /CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
Certificate serial:       01976F2CA4EF3A2913FC918DAE37FB9C85AF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
Manifest number:          06E0
Signing time:             Sat 14 Jun 2025 16:01:26 +0000
Manifest this update:     Sat 14 Jun 2025 16:01:26 +0000
Manifest next update:     Sun 15 Jun 2025 16:01:26 +0000
Files and hashes:         1: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl (hash: 5/MGP0bf7vECnHJlmuvGt67DKrmcqosD82WwpRa1K84=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 10:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2c:a4:ef:3a:29:13:fc:91:8d:ae:37:fb:9c:85:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
        Validity
            Not Before: Jun 14 16:01:26 2025 GMT
            Not After : Jun 15 16:01:26 2025 GMT
        Subject: CN=66a386e6c8d01a98a3b8b8a5126e21d1f10dc0b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:6c:01:59:b7:34:0a:c8:62:97:f6:94:b7:01:
                    c3:a8:7c:30:01:b5:3f:d9:1e:32:6c:58:3c:27:82:
                    49:5e:9e:a4:b6:4b:9c:8c:87:9f:cc:c5:d9:07:c0:
                    9a:6a:09:f4:87:da:22:cd:5d:f5:23:d6:98:a1:1d:
                    d6:f5:fa:2b:2e:e6:90:5c:2a:84:49:21:58:6c:6e:
                    ea:f4:97:7f:bd:34:8a:29:17:d5:dd:a8:67:3b:be:
                    19:7c:a8:14:b7:92:ee:6b:41:90:41:22:a1:1f:ac:
                    af:ba:46:fa:93:9e:72:72:96:52:e9:4c:f5:25:dd:
                    14:77:4c:b5:6f:84:39:54:da:0b:27:bd:ce:46:3f:
                    c7:5b:55:17:1a:a9:d6:a5:3f:a7:a7:4f:b1:bf:64:
                    f9:1f:83:f6:ac:5b:84:fd:35:65:44:29:55:a2:cd:
                    a6:e3:1e:46:4f:4c:17:e6:20:a5:a8:c3:5b:28:4a:
                    d6:2e:b1:82:6b:32:42:e9:5d:75:0a:3c:2c:c1:c8:
                    f8:28:22:e5:c4:7b:9d:9d:95:0b:c0:9b:81:0e:66:
                    e2:b2:47:68:4f:b0:69:f8:fa:74:47:46:bd:b8:a0:
                    fe:42:a6:87:e2:1c:bd:ea:08:37:e6:ce:71:b3:e2:
                    43:d7:84:c2:bb:93:d5:d8:c2:f4:35:8d:d8:9e:98:
                    d0:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:A3:86:E6:C8:D0:1A:98:A3:B8:B8:A5:12:6E:21:D1:F1:0D:C0:B8
            X509v3 Authority Key Identifier:
                keyid:90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:07:72:ff:d2:40:a2:95:d4:ae:d3:5a:3a:77:e9:32:dc:67:
         a7:4a:eb:8e:7f:e9:f6:18:62:f0:dc:ec:08:e6:25:2e:95:7d:
         35:5f:35:e3:17:b1:ab:86:1e:c6:fe:69:b7:ac:05:60:6a:1d:
         e5:dd:77:0a:2d:0d:d4:29:08:70:80:91:b6:cf:84:2f:d3:1a:
         71:23:85:81:7b:b7:4b:15:2f:cb:b6:b3:65:35:86:8b:31:82:
         89:bf:d4:1b:3f:9d:e7:a6:42:52:97:54:3b:58:26:88:3b:b9:
         e0:a6:df:e7:79:97:b1:1c:e8:c9:60:1e:ba:55:6d:45:d4:93:
         18:91:76:cb:dc:01:9c:e3:e4:5d:7a:81:4f:e9:4e:55:67:d3:
         b0:b5:1c:c2:a2:4a:76:13:22:8c:b9:a2:5f:cd:ee:6a:1f:52:
         77:a1:58:05:ea:7c:8b:0a:f0:13:70:14:50:fa:d2:85:0f:23:
         0f:f7:9d:c1:29:75:53:d8:2a:28:f6:95:ef:1d:ee:3e:7a:11:
         db:31:33:fb:7f:f1:f4:d5:51:b9:81:42:e8:75:53:42:a4:c7:
         3d:b4:22:92:ce:3c:7d:24:42:32:94:82:13:2f:90:f8:c3:a9:
         a0:c6:74:e7:e2:9b:55:4a:cd:07:df:6f:7a:59:80:38:57:c4:
         0b:af:cc:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----