Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
File:                     uzYogf_jYlMUAGCLYyi7Et-hYIE.mft (raw, json)
Hash identifier:          O4lluUpUGdQ9h0r9+fTn+5wOGd91fds6oCYIRwtLbqs=
Subject key identifier:   46:4A:3F:5D:93:80:2B:AB:3D:53:DB:77:3F:16:34:EB:48:3B:95:8C
Authority key identifier: BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81
Certificate issuer:       /CN=bb362881ffe362531400608b6328bb12dfa16081
Certificate serial:       01974A7B2040BDA0419629912E6ECDEDE39F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
Manifest number:          0C82
Signing time:             Sat 07 Jun 2025 13:01:12 +0000
Manifest this update:     Sat 07 Jun 2025 13:01:12 +0000
Manifest next update:     Sun 08 Jun 2025 13:01:12 +0000
Files and hashes:         1: uzYogf_jYlMUAGCLYyi7Et-hYIE.crl (hash: VDtJDB08hVVnKQgPsSsy9pUQwvznQNy1i5+xKosoY3Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7b:20:40:bd:a0:41:96:29:91:2e:6e:cd:ed:e3:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bb362881ffe362531400608b6328bb12dfa16081
        Validity
            Not Before: Jun  7 13:01:12 2025 GMT
            Not After : Jun  8 13:01:12 2025 GMT
        Subject: CN=464a3f5d93802bab3d53db773f1634eb483b958c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:41:6f:8b:b1:47:bb:66:f2:2c:55:8d:ff:e6:
                    74:4f:b3:5b:d3:46:3b:b0:a0:9e:4f:f1:87:5a:ca:
                    dc:c3:4c:06:07:b6:13:0a:1d:6e:49:a2:62:a8:32:
                    68:83:db:1d:e3:76:65:ee:2f:a5:3e:08:83:c6:9e:
                    7d:0d:e9:f7:bf:bd:01:a2:7a:3f:d8:39:a2:0c:e3:
                    cb:66:eb:7f:74:57:d9:a7:c6:bd:9c:57:74:e0:3e:
                    df:0b:61:8d:f8:a0:4a:44:ca:c6:ba:6a:91:01:0b:
                    83:6e:87:f8:83:11:00:1e:f3:0e:5b:64:6e:1c:50:
                    cf:37:9b:37:32:da:02:9a:cc:65:f8:a5:4b:e4:ad:
                    c4:87:81:f9:eb:9c:85:33:98:eb:50:7b:90:bb:cb:
                    74:e3:71:99:13:8b:9c:f5:cc:a8:10:f7:bc:36:e9:
                    25:f2:f2:fc:82:2c:39:12:31:a0:41:12:25:29:d8:
                    95:16:0a:ab:9e:4f:d1:f6:1d:6c:e8:b9:0d:c3:a0:
                    a0:34:dc:d9:89:2e:fa:55:e5:6b:63:68:12:98:02:
                    8a:48:f6:46:62:c9:c1:17:b9:a5:18:32:d0:dc:ee:
                    78:40:08:18:ed:63:f1:95:9d:2b:1e:53:a4:86:a8:
                    52:fe:99:0e:17:44:7a:f2:9a:3b:65:14:b3:f5:89:
                    9d:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:4A:3F:5D:93:80:2B:AB:3D:53:DB:77:3F:16:34:EB:48:3B:95:8C
            X509v3 Authority Key Identifier:
                keyid:BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:da:0c:af:11:39:8f:85:8c:d7:c9:3c:e5:f8:6c:92:ca:0f:
         ee:97:72:b7:e2:30:a4:d3:cb:c6:9a:ed:5e:5a:82:8d:11:ea:
         5a:0b:37:0e:10:18:22:5f:2a:4f:4b:df:85:65:34:78:ab:8c:
         ae:8b:a1:e1:06:c2:85:b0:aa:7b:33:e3:ae:06:3e:f8:40:5b:
         7c:58:ef:76:93:fc:76:9c:a7:48:f5:50:60:09:bc:9c:0f:73:
         f3:bd:93:19:18:c5:f5:2a:89:b2:41:c4:51:93:18:16:77:f8:
         55:71:d5:9e:28:d3:b6:53:33:69:49:3c:69:cd:63:ef:7c:f1:
         27:fe:7f:4e:80:39:32:30:e8:95:55:12:d6:81:2f:27:15:bd:
         33:47:d6:54:7e:51:88:3a:13:35:73:00:c1:09:ec:56:b1:34:
         85:ad:1b:0f:7c:bb:fe:ec:29:39:0a:c1:6b:06:98:de:8d:24:
         e8:2b:13:27:2b:77:89:5c:b2:14:50:53:54:38:88:be:6e:d3:
         eb:4b:4c:ab:6c:78:aa:7f:f6:63:01:f1:be:08:7e:4d:bb:77:
         90:c4:6b:e4:8c:9f:c8:94:02:f7:5e:5c:bc:39:6e:8b:37:b6:
         a6:3f:d0:d8:79:ba:f4:52:fe:d4:53:f1:3b:99:5d:a3:00:05:
         15:0a:af:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----