Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
File:                     Mya5UKRaLGusFQX80E2UDMCWj5Y.mft (raw, json)
Hash identifier:          +gJNdsqxyaCS2zG8tyseUYccS6HSjPFp1ge9zytqqIk=
Subject key identifier:   27:62:B8:D0:C2:A6:61:DD:89:7D:97:2F:EE:E2:3E:6F:78:CD:4E:1D
Authority key identifier: 33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96
Certificate issuer:       /CN=3326b950a45a2c6bac1505fcd04d940cc0968f96
Certificate serial:       019748FA392B55D7BB909EAC948666B5DCFC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
Manifest number:          0465
Signing time:             Sat 07 Jun 2025 06:00:47 +0000
Manifest this update:     Sat 07 Jun 2025 06:00:47 +0000
Manifest next update:     Sun 08 Jun 2025 06:00:47 +0000
Files and hashes:         1: Mya5UKRaLGusFQX80E2UDMCWj5Y.crl (hash: zaNaG6oBWbmoJ9UlaK0x5CQ7HF38ej3m4cIxMIQ5YNI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:fa:39:2b:55:d7:bb:90:9e:ac:94:86:66:b5:dc:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3326b950a45a2c6bac1505fcd04d940cc0968f96
        Validity
            Not Before: Jun  7 06:00:47 2025 GMT
            Not After : Jun  8 06:00:47 2025 GMT
        Subject: CN=2762b8d0c2a661dd897d972feee23e6f78cd4e1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:47:53:3f:00:4a:0d:c1:a1:0c:67:ef:84:9d:
                    bc:91:80:a2:77:98:3e:56:17:cc:ee:09:98:f0:bf:
                    80:d0:57:91:a4:ec:ec:a4:22:06:06:e7:cc:63:61:
                    fe:0e:06:3e:b0:88:70:83:9c:fc:f9:4e:33:96:e4:
                    4f:c9:0e:e7:b4:c5:bc:78:ff:f7:06:a6:7a:c1:fe:
                    bf:23:d6:c8:16:3e:9d:03:ea:e3:a0:e0:0e:f3:26:
                    b3:23:7e:0d:ef:b8:1a:c2:c3:34:b6:1a:dc:e4:f3:
                    42:4f:c1:33:83:74:3e:9c:4e:a5:9f:5a:e0:09:6e:
                    2f:5f:e4:dc:e2:65:2c:59:2e:32:54:7d:f5:84:5c:
                    ac:d2:9a:b1:89:2b:f0:5a:ea:d4:ef:00:da:f2:73:
                    92:79:89:e3:09:6c:2c:ad:6e:51:6c:68:ec:76:8a:
                    26:7a:85:81:8a:79:4b:21:88:62:c9:0f:bd:ee:db:
                    db:da:f7:c8:0b:1b:f7:3e:bf:11:50:77:ff:b6:3e:
                    3b:76:2a:7c:b0:2d:bb:72:69:4f:d9:91:69:73:7a:
                    4e:89:ac:3f:1e:1c:6b:26:e9:a6:fb:b3:b7:54:21:
                    f3:01:06:28:8b:cb:94:04:1e:3e:14:b5:9f:9d:64:
                    81:69:53:fd:6d:a8:a5:cb:70:01:7f:47:24:a9:0a:
                    c2:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:62:B8:D0:C2:A6:61:DD:89:7D:97:2F:EE:E2:3E:6F:78:CD:4E:1D
            X509v3 Authority Key Identifier:
                keyid:33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:57:42:64:81:16:7c:e2:2d:57:7e:ec:3f:75:a1:fd:00:2b:
         f8:6a:88:c0:64:33:48:9f:42:0c:3d:61:cb:d4:18:79:70:58:
         de:57:18:9a:2b:87:d5:a9:66:16:8a:80:a3:65:40:76:3a:88:
         a6:3d:31:57:0a:2e:99:bd:23:82:3c:5a:6d:2c:1d:c8:d8:ca:
         c1:8a:40:26:a5:d2:bd:41:16:95:d1:61:27:f3:b0:47:01:70:
         0b:8e:8e:b3:18:50:02:cd:9a:68:28:81:82:91:15:2c:47:63:
         bd:43:58:9f:f8:0d:c9:01:b3:3d:30:c7:15:a3:0c:d5:c1:0c:
         78:c5:e1:9b:91:1d:a6:f9:22:42:32:0d:0f:08:6b:8a:2d:ec:
         f0:63:6b:c9:29:6d:36:1a:83:06:66:c8:86:e2:d8:34:ab:63:
         6e:5c:45:6d:7c:ef:6b:5b:82:d5:cd:4d:30:66:57:6c:88:67:
         3d:bb:c1:57:aa:bf:39:f3:ab:f1:29:62:5c:3e:f7:93:67:9c:
         a3:e9:42:ab:f4:ac:30:33:cd:70:93:eb:31:f0:b3:7b:64:cb:
         72:46:0f:41:79:50:26:5c:32:55:ec:b6:ad:d3:08:52:53:b0:
         d2:7d:e5:96:9e:0d:58:cd:de:77:28:07:f6:8e:b5:35:19:17:
         a9:14:f7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----