Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
File:                     5cfDmlkS3cIen2tRmJZyV2ISeDM.mft (raw, json)
Hash identifier:          Zg2bIdUgWCvJcot45f3NB03GjZGc0MWNdKT3/Pz6oPU=
Subject key identifier:   0A:17:34:C4:B9:5F:0B:1E:24:AF:D1:B7:0C:BC:BC:86:91:7E:DA:4E
Authority key identifier: E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33
Certificate issuer:       /CN=e5c7c39a5912ddc21e9f6b519896725762127833
Certificate serial:       01974A43BE90871DDB015B5A874C06FAD2F3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
Manifest number:          F7
Signing time:             Sat 07 Jun 2025 12:00:43 +0000
Manifest this update:     Sat 07 Jun 2025 12:00:43 +0000
Manifest next update:     Sun 08 Jun 2025 12:00:43 +0000
Files and hashes:         1: 5cfDmlkS3cIen2tRmJZyV2ISeDM.crl (hash: n6XOH6uJR7beKQI7dmy6kAkIkSeO9t2UiVV+d9cYF+M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:43:be:90:87:1d:db:01:5b:5a:87:4c:06:fa:d2:f3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5c7c39a5912ddc21e9f6b519896725762127833
        Validity
            Not Before: Jun  7 12:00:43 2025 GMT
            Not After : Jun  8 12:00:43 2025 GMT
        Subject: CN=0a1734c4b95f0b1e24afd1b70cbcbc86917eda4e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:23:f3:df:66:77:40:a1:24:a4:8a:1b:1a:94:
                    26:c1:d2:6f:4a:a8:b0:89:4a:ef:b4:8f:0a:30:2f:
                    ef:bd:9e:1d:20:37:b5:4f:f6:d1:0f:cd:b4:79:48:
                    1d:9c:8f:b8:30:7f:bc:ec:d0:0a:c3:59:d3:08:5f:
                    d3:ee:8b:0a:05:f9:b2:d6:0e:bf:66:10:3a:c9:ea:
                    da:a6:e5:da:e9:21:68:8c:70:30:fc:76:c7:7b:09:
                    fd:d2:34:52:59:ed:64:05:f0:7f:7e:6e:dc:3d:9e:
                    19:0b:ef:b8:17:84:6d:a0:d7:cb:f4:82:fb:99:df:
                    5f:5b:e2:ee:63:2c:86:ae:90:41:c1:d1:d9:1c:3e:
                    93:03:91:ba:e4:b7:a3:45:08:ce:6a:bc:b2:21:ae:
                    21:1d:b3:3f:73:c2:c3:36:c0:ae:09:19:89:cd:d3:
                    f5:11:4b:a5:ce:a4:24:f8:99:b3:ed:ed:ea:3d:0f:
                    db:13:d0:28:a3:1d:82:0f:1d:c4:4b:5a:1c:0c:18:
                    7c:9f:66:4f:ea:a0:0e:ed:21:09:13:93:a2:ce:ea:
                    c3:97:ba:62:3d:e9:19:da:52:78:c8:3c:b4:0a:38:
                    30:6c:23:e9:7d:65:ab:78:e9:55:7d:0f:0c:9f:09:
                    c5:5e:de:f4:82:5b:a9:a5:74:09:ea:26:84:c6:0d:
                    e3:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:17:34:C4:B9:5F:0B:1E:24:AF:D1:B7:0C:BC:BC:86:91:7E:DA:4E
            X509v3 Authority Key Identifier:
                keyid:E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:5a:86:84:f5:9b:a9:86:1e:ca:9e:96:35:7a:24:cd:82:64:
         ac:31:01:9d:af:e8:5d:aa:b4:ac:5e:00:98:9e:d5:66:66:b9:
         1a:7d:97:04:70:5a:f8:5d:20:4d:7a:01:c8:71:ba:a5:a7:23:
         2b:c2:37:3a:12:e0:3c:4b:e4:e7:de:67:d9:50:5d:dc:2c:d8:
         d7:be:5c:64:7f:58:cd:75:da:62:36:73:ce:4e:0a:2b:1e:f8:
         36:25:69:fa:b8:d3:43:4e:5e:ab:1a:5a:b2:db:5d:70:bc:ac:
         13:3c:2a:9f:5e:6d:50:3f:f5:8c:14:df:da:e9:7f:3c:07:c0:
         7d:a4:7b:3c:67:35:35:e6:9e:e1:90:1c:5a:95:17:01:f6:d0:
         41:f9:40:31:7d:93:cf:67:8b:d5:49:af:3f:bf:b6:86:8b:47:
         97:cb:ea:f1:aa:0a:69:b0:3f:52:c2:80:e8:ab:90:74:dd:ec:
         34:e5:c3:a1:03:66:ef:54:2b:ca:59:02:e7:b4:18:07:6e:bb:
         a4:ad:18:64:2f:e8:89:29:88:d7:40:37:96:66:3d:15:55:7f:
         74:49:c5:25:3d:16:07:19:7c:2a:b5:b2:ee:48:1c:73:88:88:
         9b:4c:e4:09:26:0c:b8:1e:8d:2d:31:26:44:46:a4:bb:f2:60:
         ea:5b:4b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----