Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
File:                     _e3ZOtbKqmCtSfD5N32Kq_h34ts.mft (raw, json)
Hash identifier:          HzdISvQLBhFgmNUnRPlPh7cvA2mDYJiIVjMtH03T4ug=
Subject key identifier:   04:4B:B0:1A:68:7E:A9:F7:31:A7:56:41:9A:7C:B2:35:5C:E7:35:4E
Authority key identifier: FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB
Certificate issuer:       /CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
Certificate serial:       01974A7AF23E411D93F9352D2BCEE5680B2D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
Manifest number:          06FC
Signing time:             Sat 07 Jun 2025 13:01:00 +0000
Manifest this update:     Sat 07 Jun 2025 13:01:00 +0000
Manifest next update:     Sun 08 Jun 2025 13:01:00 +0000
Files and hashes:         1: _e3ZOtbKqmCtSfD5N32Kq_h34ts.crl (hash: AfpIFfWcGM4u5Qy8EtNuCU3Q49vZzKgUB1Zf8mj1EV0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:f2:3e:41:1d:93:f9:35:2d:2b:ce:e5:68:0b:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
        Validity
            Not Before: Jun  7 13:01:00 2025 GMT
            Not After : Jun  8 13:01:00 2025 GMT
        Subject: CN=044bb01a687ea9f731a756419a7cb2355ce7354e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:ed:8b:34:0c:b2:b7:73:1e:51:d0:fb:43:3b:
                    01:8b:b8:dd:f5:08:2e:6b:87:98:ff:8e:53:2a:26:
                    43:d7:b4:8f:1d:e6:05:11:8b:f7:54:1a:25:df:6a:
                    dd:85:ed:9c:f2:a5:f3:e0:c2:95:19:82:8c:fc:81:
                    53:7a:d9:65:7a:f4:27:06:9c:46:4c:67:20:01:52:
                    af:94:8f:92:f0:be:85:1b:44:84:e0:c1:da:38:47:
                    c5:3f:21:ee:8f:63:06:bd:3f:f9:b6:9b:7e:28:13:
                    5f:6c:34:9d:fc:8f:02:73:dc:f1:fd:57:ef:82:6d:
                    9d:d5:5b:34:e2:0a:60:4a:92:16:06:32:df:34:cc:
                    94:54:e4:09:51:cd:f9:45:63:af:db:22:9d:3e:09:
                    c1:68:d7:35:c7:d2:63:fb:b9:9b:1e:dd:2b:7f:ef:
                    3b:f1:ab:df:26:23:49:93:cb:12:62:66:94:0b:4c:
                    a3:30:25:5d:ae:47:8a:49:5b:b9:93:c4:83:fd:ed:
                    03:b5:66:8d:fb:fd:dd:c4:aa:4d:61:2f:0a:ee:32:
                    5a:41:73:64:50:db:1d:99:c7:f2:99:a1:67:1b:b0:
                    3a:7a:14:10:b5:31:d2:12:7a:b4:ec:e6:6b:c4:08:
                    bc:9e:2d:e4:b9:e4:23:4e:97:f6:19:34:85:95:e9:
                    ff:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:4B:B0:1A:68:7E:A9:F7:31:A7:56:41:9A:7C:B2:35:5C:E7:35:4E
            X509v3 Authority Key Identifier:
                keyid:FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:96:d6:96:16:46:ab:70:6f:bf:c7:4a:75:6e:fe:4a:1e:fa:
         e8:3f:3e:35:3c:3f:80:5e:41:b5:ba:e0:2f:ce:f5:e0:fe:78:
         e9:df:83:0a:15:b7:1d:bc:74:3f:e7:1c:89:c0:75:ce:03:19:
         25:7c:cd:d4:91:ff:dc:d6:7d:b2:9d:5a:9d:59:f6:93:11:b7:
         85:46:16:89:97:f1:6f:08:83:f7:b8:7f:a0:66:0f:cf:f9:af:
         6a:2d:6b:30:37:4d:90:6f:cb:87:c9:46:6d:ea:8d:57:18:33:
         f2:07:22:e4:d2:40:ef:1c:24:a7:4c:2b:84:1b:05:c7:9a:f7:
         93:72:9d:6c:be:5b:65:9a:8b:c5:a4:70:0b:fa:e5:ac:33:ef:
         a4:7a:04:50:29:5b:42:91:86:11:12:ff:05:6e:84:cc:7b:b0:
         40:07:36:7b:84:3b:c9:38:74:40:d1:ed:89:2d:af:2a:33:3a:
         21:f7:05:f9:48:c2:e4:42:12:57:0e:40:3a:28:58:fc:08:43:
         df:cb:50:49:7c:33:22:6f:5f:a3:b1:87:d1:83:ba:e2:a1:30:
         a5:89:68:d9:be:1f:6d:44:54:d7:52:e1:37:b7:13:2a:72:7c:
         fb:09:7c:a2:a0:4d:5c:fa:a1:c9:ea:75:6e:fb:4c:89:68:f2:
         04:db:ce:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----