Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
File:                     9fqTbNBbJl9g8zNAqMY952gvw18.mft (raw, json)
Hash identifier:          wrLZh49QMAZHKMZOlLqn1k3EVBEkLrg/0YRnsxyfSG0=
Subject key identifier:   FD:46:11:D7:9E:DE:4F:44:E1:21:EE:92:06:84:99:98:BB:EF:4E:AE
Authority key identifier: F5:FA:93:6C:D0:5B:26:5F:60:F3:33:40:A8:C6:3D:E7:68:2F:C3:5F
Certificate issuer:       /CN=f5fa936cd05b265f60f33340a8c63de7682fc35f
Certificate serial:       01976C98F48CC70E2C0545010F415615AEF9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
Manifest number:          057C
Signing time:             Sat 14 Jun 2025 04:00:52 +0000
Manifest this update:     Sat 14 Jun 2025 04:00:52 +0000
Manifest next update:     Sun 15 Jun 2025 04:00:52 +0000
Files and hashes:         1: 9fqTbNBbJl9g8zNAqMY952gvw18.crl (hash: +VLLwAeGOyFjdbLUXr6AGmtH4q4QHXZt3gN/DWj4SUk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:98:f4:8c:c7:0e:2c:05:45:01:0f:41:56:15:ae:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5fa936cd05b265f60f33340a8c63de7682fc35f
        Validity
            Not Before: Jun 14 04:00:52 2025 GMT
            Not After : Jun 15 04:00:52 2025 GMT
        Subject: CN=fd4611d79ede4f44e121ee9206849998bbef4eae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:6c:db:7f:1c:11:5c:c1:65:1d:f2:0e:5e:a2:
                    0a:f5:96:5a:af:8e:5a:c0:65:11:74:03:bb:fb:82:
                    4e:60:f2:1c:f7:47:19:b5:43:ae:d4:2e:57:55:be:
                    0f:9d:bc:0b:8b:40:4d:b9:b0:7a:83:d1:61:c2:a4:
                    51:ba:06:6f:1c:19:9b:2d:94:3f:36:51:d0:89:d3:
                    1f:74:e3:8d:da:ea:f0:79:28:71:f4:fb:fb:c1:b5:
                    d3:a3:a4:75:4c:90:38:fc:f9:33:d3:de:2d:c2:a2:
                    6b:87:19:be:27:54:a4:f4:f7:b1:fc:af:8a:50:72:
                    8d:96:af:03:e9:e2:e4:f9:1b:87:bc:06:e8:66:9c:
                    1b:8b:47:39:73:ed:01:5b:93:09:15:fc:01:c5:b7:
                    be:4e:47:99:95:fa:e4:2e:d6:56:2a:3d:43:63:f9:
                    3a:1f:6e:b7:81:0b:01:2d:0c:d5:ca:30:91:2e:36:
                    37:af:6f:c2:9c:da:31:41:a6:19:38:8e:7f:93:5a:
                    8e:c0:11:bb:a9:8d:cb:49:1f:a5:39:05:bf:6e:c1:
                    2e:08:45:36:ba:72:cf:0a:58:ba:c0:99:8d:0a:d0:
                    af:d6:65:04:f7:12:79:3c:68:2c:14:10:13:81:0b:
                    02:0e:d9:4a:c9:98:36:3c:e9:3d:a8:5e:25:0b:cc:
                    d7:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:46:11:D7:9E:DE:4F:44:E1:21:EE:92:06:84:99:98:BB:EF:4E:AE
            X509v3 Authority Key Identifier:
                keyid:F5:FA:93:6C:D0:5B:26:5F:60:F3:33:40:A8:C6:3D:E7:68:2F:C3:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:80:c3:f7:22:c9:f3:70:ca:1f:9e:a5:f9:1b:ed:53:a7:cd:
         06:bc:81:3a:2a:76:b1:a9:57:92:c9:d1:c5:ac:24:39:7b:7f:
         80:7d:21:b4:db:05:2b:6c:8e:97:c0:07:9e:a3:d6:56:b8:d9:
         05:a8:40:b2:93:9a:6b:9a:a6:a0:b5:10:7e:77:08:d9:da:53:
         d7:9a:2a:8b:82:08:60:87:0a:05:30:f4:bf:68:98:68:05:a5:
         a2:eb:e6:fe:1f:ec:59:5f:fb:b6:b6:ab:31:e2:95:4c:2c:ed:
         83:3d:49:a7:90:2c:29:02:ca:2d:9e:c3:29:03:a6:44:b6:e2:
         7b:ec:29:bc:7c:50:93:6a:fe:0a:be:97:f7:de:bb:56:5f:4a:
         93:6a:55:1f:88:e1:cd:a5:cc:db:db:18:40:1f:7c:b7:95:1b:
         05:89:4e:34:ed:6d:2e:58:66:e4:f6:85:cc:cd:ae:c1:5b:24:
         92:ca:a6:5e:91:80:ae:95:e0:2f:ff:7c:23:6e:f1:10:fb:4c:
         33:c0:b7:98:21:c9:db:f1:74:34:31:b1:00:2c:90:42:b3:00:
         bb:03:3d:7a:f8:2f:4b:e5:7b:ca:e3:ed:8b:03:42:4b:31:3d:
         de:2a:d7:b1:0f:15:5b:bc:df:89:b9:f6:7c:61:db:10:39:b4:
         76:19:e9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----