Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File:                     sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier:          tLRoBm6mYAj+EyVMtqBRix0KBMst7gFk+pxXbaYQUVk=
Subject key identifier:   93:1E:F5:69:B1:71:B1:DF:01:5C:18:BD:9B:ED:F8:20:AD:2A:AC:34
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer:       /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial:       0197711AC7C548481323844F214CAC7A24BD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number:          158C
Signing time:             Sun 15 Jun 2025 01:01:09 +0000
Manifest this update:     Sun 15 Jun 2025 01:01:09 +0000
Manifest next update:     Mon 16 Jun 2025 01:01:09 +0000
Files and hashes:         1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: vBW03UTKPgsPWweTGbifSJuCTIVGzWtP0SwqZXBXAFs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:1a:c7:c5:48:48:13:23:84:4f:21:4c:ac:7a:24:bd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
        Validity
            Not Before: Jun 15 01:01:09 2025 GMT
            Not After : Jun 16 01:01:09 2025 GMT
        Subject: CN=931ef569b171b1df015c18bd9bedf820ad2aac34
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:2a:6a:d9:f3:53:01:ac:03:37:04:29:29:ab:
                    db:34:9b:43:d4:4f:bf:19:d6:e3:5d:0f:6c:2f:36:
                    49:c3:f0:ae:b7:d5:6a:78:70:b2:91:e3:03:61:5d:
                    81:75:47:30:39:e9:b5:34:b2:da:c4:f2:70:ef:58:
                    de:7a:f4:08:70:8e:bc:e1:bd:75:5b:9a:08:79:9d:
                    22:df:e1:6b:db:96:f9:8b:18:ce:51:a3:35:82:20:
                    a0:c0:17:28:2c:d0:5c:fb:17:ee:66:6d:64:1f:aa:
                    ad:83:45:44:36:ca:a0:23:b9:0e:7d:60:3a:de:36:
                    89:22:d2:06:3d:a7:d2:33:66:47:5b:f6:83:57:b3:
                    f5:db:d6:b7:aa:f0:a6:5f:31:cd:14:0e:4c:e6:21:
                    3e:18:49:51:9e:95:bc:59:44:d0:ac:7f:b6:f1:ba:
                    95:7a:75:fe:ea:69:b6:7d:37:1a:dd:64:60:7c:66:
                    bf:a6:ab:ab:09:13:2a:9c:b3:cd:5e:b8:c9:1c:4c:
                    84:51:bb:33:c5:a0:94:74:4e:1c:54:9f:ce:c1:57:
                    b9:c4:d2:98:2c:bd:2b:af:86:6f:2d:3f:b0:2f:10:
                    53:b0:b8:ae:83:c5:f5:ac:8c:14:49:81:3e:6b:e7:
                    44:e2:a8:99:a8:40:42:13:5e:82:90:ab:73:f6:5e:
                    7f:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:1E:F5:69:B1:71:B1:DF:01:5C:18:BD:9B:ED:F8:20:AD:2A:AC:34
            X509v3 Authority Key Identifier:
                keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:c3:de:b2:84:85:82:97:d0:e9:20:da:cc:a2:57:e8:40:dc:
         15:e8:ab:25:c9:6d:4c:30:19:b0:93:f7:a3:34:a3:82:7f:8e:
         25:6b:55:a2:c2:33:3a:8c:67:8e:1b:05:4e:70:6d:cc:9d:99:
         c5:14:74:27:1d:40:d4:b6:03:ba:1b:74:f8:53:db:64:bf:da:
         e5:18:91:7a:a8:53:d1:f4:1e:85:36:60:70:f9:ec:d3:a1:51:
         10:a4:96:91:97:48:9c:22:8d:e3:a1:a3:7f:81:4d:ca:02:fd:
         7e:2a:2b:2d:63:71:ef:01:3c:96:88:91:98:84:ce:19:41:f9:
         a2:74:0f:f7:16:9e:16:7e:ae:38:22:be:76:45:3d:bf:2f:4d:
         af:a2:ad:00:a9:34:2c:0b:34:7f:2e:09:a6:d5:49:a4:de:a7:
         cd:b2:9a:13:26:01:9c:a3:e6:6b:65:6f:c7:c8:00:d6:81:34:
         19:1c:90:10:86:6f:4c:79:7c:a8:f7:1c:b7:cd:6d:8c:18:9c:
         97:ff:ac:ce:b6:4d:6b:fe:21:c3:03:e2:5a:e1:a4:7c:7b:7d:
         20:b1:e5:51:a8:04:a1:44:76:33:5d:9c:38:7c:b4:a9:4a:0a:
         c9:62:96:d9:d2:da:73:42:17:4c:36:68:0d:d8:13:ea:de:1b:
         fb:c6:ff:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----