Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
File:                     yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft (raw, json)
Hash identifier:          DOz7OBiIlMaZVJ4+Xf6fOZbcegN7VSKcBykzNH7YKec=
Subject key identifier:   10:D6:CA:D9:75:D2:D6:A6:11:9A:2E:0D:FF:5C:93:49:0A:52:A7:19
Authority key identifier: CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13
Certificate issuer:       /CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013
Certificate serial:       0197458B096CA80E41BD1266A622786DF8BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
Manifest number:          0892
Signing time:             Fri 06 Jun 2025 14:00:29 +0000
Manifest this update:     Fri 06 Jun 2025 14:00:29 +0000
Manifest next update:     Sat 07 Jun 2025 14:00:29 +0000
Files and hashes:         1: yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl (hash: V+s/dljyFp6yhp2uHvAJqTHJ2M68XvLstKdIOYiD1pM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 14:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:45:8b:09:6c:a8:0e:41:bd:12:66:a6:22:78:6d:f8:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013
        Validity
            Not Before: Jun  6 14:00:29 2025 GMT
            Not After : Jun  7 14:00:29 2025 GMT
        Subject: CN=10d6cad975d2d6a6119a2e0dff5c93490a52a719
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:11:fa:59:20:c2:36:38:af:aa:47:ef:08:9c:
                    60:ad:a3:82:5c:3f:c0:16:b2:63:c2:57:1f:0c:5b:
                    64:5a:3f:e1:4a:40:52:6a:f8:1f:0e:3c:c7:97:13:
                    f9:55:dd:33:be:ca:f4:35:53:5d:1a:e4:d8:2f:8d:
                    2c:98:ef:5c:6c:b7:c2:71:6c:d6:e3:16:ed:d1:48:
                    ab:a2:b5:3f:84:e8:73:95:5f:54:9a:79:08:da:a1:
                    75:f4:9d:25:87:2c:f6:30:af:6c:3e:ed:54:71:78:
                    cc:6a:cc:35:44:bc:da:ce:45:b1:db:5f:d7:06:73:
                    a5:ec:17:b1:61:04:5b:10:2d:a4:09:37:99:6b:9d:
                    39:9f:a4:1f:78:70:77:e6:6c:41:f0:d8:42:a4:83:
                    b7:b0:db:e4:11:18:9a:4a:02:63:cf:f4:9b:23:88:
                    01:d7:6d:f8:3f:01:34:49:26:da:50:75:97:45:72:
                    5f:92:37:e7:31:18:ad:7e:59:ab:26:54:6c:95:02:
                    a5:d7:8a:2c:38:b6:8c:be:f7:d2:1f:1f:4d:9e:c1:
                    79:8d:d7:2b:1f:61:ef:92:84:a0:bb:90:be:7f:91:
                    41:04:7d:5c:ca:eb:2d:29:13:ac:7c:f7:18:ba:b3:
                    da:ec:d0:29:f8:7e:3a:ba:96:88:91:10:8c:14:81:
                    8d:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:D6:CA:D9:75:D2:D6:A6:11:9A:2E:0D:FF:5C:93:49:0A:52:A7:19
            X509v3 Authority Key Identifier:
                keyid:CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:f5:1e:28:9d:38:0c:dc:34:8d:dd:37:dd:c9:02:6d:c1:0a:
         bc:22:e3:08:70:0d:ff:03:51:e7:f8:9b:b7:11:e6:eb:8b:54:
         bd:09:93:ca:2d:1f:49:cb:68:e9:ec:31:48:f4:01:89:ab:13:
         23:6f:bd:7e:2d:e1:02:c5:de:26:5c:41:c2:e8:7d:77:12:2b:
         d1:67:61:b5:67:78:f5:62:be:20:d3:ad:2e:9f:af:d3:7f:28:
         2c:fc:d9:86:60:ae:af:53:b2:1f:5b:4b:fc:6c:9d:c1:13:84:
         a1:f1:59:77:33:69:fc:d2:6e:92:62:16:d3:ae:6c:27:e3:15:
         cc:94:97:14:21:0c:d3:02:67:2b:64:9d:2b:b5:dc:02:62:ff:
         6c:cf:71:e0:86:ff:9f:97:9c:41:ef:11:30:3c:4a:64:78:55:
         94:4f:36:1a:43:6c:6f:81:f4:10:58:a1:8c:d1:d8:1e:b6:3a:
         b9:6f:ce:b0:4f:db:e3:ab:7f:aa:21:74:32:fc:f9:32:4e:6a:
         c7:ef:40:9b:ae:2e:a5:c8:cb:1b:91:1f:87:15:13:5a:f4:99:
         4b:fc:83:47:70:22:8a:05:b1:74:48:55:c6:1d:9e:9e:9c:21:
         10:50:b8:8b:1d:83:66:c1:0e:55:e7:5c:c7:d7:ab:32:2f:ee:
         af:7a:7c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----