Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
File:                     JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft (raw, json)
Hash identifier:          wFF3Z4CR2tss2C1Ja51G7tDcofwXWVPr8T5q297N93A=
Subject key identifier:   F0:90:9D:1F:C1:AD:F8:54:1E:0A:06:2F:90:3A:E1:97:04:E4:F7:1C
Authority key identifier: 25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E
Certificate issuer:       /CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
Certificate serial:       01974E5820FFE1B597FB280BC6DFFBF59673
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
Manifest number:          1579
Signing time:             Sun 08 Jun 2025 07:01:27 +0000
Manifest this update:     Sun 08 Jun 2025 07:01:27 +0000
Manifest next update:     Mon 09 Jun 2025 07:01:27 +0000
Files and hashes:         1: JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl (hash: 7/wvXWk9ijNLedhW6iYb0gzGeXRBqA5nKeSmEbia1Ds=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 07:01:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:58:20:ff:e1:b5:97:fb:28:0b:c6:df:fb:f5:96:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
        Validity
            Not Before: Jun  8 07:01:27 2025 GMT
            Not After : Jun  9 07:01:27 2025 GMT
        Subject: CN=f0909d1fc1adf8541e0a062f903ae19704e4f71c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:f5:9f:81:b9:cd:bb:af:72:bd:fd:30:f9:cd:
                    8f:27:2f:b9:7b:04:a7:13:d9:80:41:04:c0:a1:e7:
                    d2:8e:5f:e7:b0:5f:79:c1:ec:ff:0f:be:df:48:a0:
                    b5:1b:a4:b2:c9:40:7f:cf:6e:ab:51:b0:3d:26:56:
                    fb:ea:f6:1e:28:b0:9e:4d:65:78:dc:cc:65:c3:3e:
                    30:b5:78:67:bf:96:c4:95:04:33:3d:cd:3f:4e:c8:
                    88:f1:d6:61:c8:e5:86:c3:5f:ef:48:e3:dc:b2:da:
                    61:0c:53:8a:0a:d7:c5:ad:5e:07:c5:f5:51:06:05:
                    b5:54:31:85:06:c8:3d:42:7f:48:ea:5e:78:ba:ec:
                    2e:56:67:a7:95:a7:b5:ae:17:8a:35:e4:52:c2:2a:
                    0c:e6:72:e9:e4:f6:05:c1:04:a8:d5:65:c2:46:70:
                    1d:bd:fb:a6:84:0c:54:93:95:73:c3:a6:c8:c9:68:
                    ac:99:40:7c:e4:76:a3:18:a0:f5:bc:bb:c3:fb:0b:
                    02:16:e4:a9:74:0a:d3:23:6c:c7:f8:65:a9:bf:4a:
                    4b:f1:66:2a:35:58:f8:b6:f4:40:1f:e0:81:4a:5c:
                    06:1b:87:35:b2:d9:11:b1:dd:29:12:e8:f7:b5:6f:
                    cc:cd:79:79:ad:ee:c0:8a:a8:49:10:b9:82:4c:31:
                    21:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:90:9D:1F:C1:AD:F8:54:1E:0A:06:2F:90:3A:E1:97:04:E4:F7:1C
            X509v3 Authority Key Identifier:
                keyid:25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:f3:82:bb:56:10:19:21:ff:2a:c8:73:1a:c1:22:f1:a1:97:
         29:34:5d:3b:3d:81:4d:35:69:04:31:cd:7d:ab:c5:64:92:ba:
         b4:6a:22:9f:55:bf:37:f9:d3:22:d7:08:c2:ad:fb:d7:82:90:
         79:1f:86:3e:98:e2:99:61:34:44:e4:7f:a8:37:a3:bc:9c:60:
         3f:6b:0d:ab:aa:01:e5:ff:23:5d:30:30:10:98:51:1d:95:34:
         39:ac:c2:d3:ec:0c:5b:ac:f4:59:ac:f3:ea:98:ae:6d:f9:b9:
         94:ef:fc:3c:95:86:04:4f:64:74:17:1f:70:e0:62:96:34:1b:
         21:0a:1f:fa:5b:95:10:4b:49:c7:4a:b4:60:a5:b7:f8:4d:77:
         25:50:d1:2f:b5:76:29:af:3f:17:ce:09:43:ce:a7:8f:e6:fb:
         2e:ff:41:ed:ad:cd:1b:f7:00:69:31:93:82:af:cc:14:89:2e:
         d1:37:5f:41:e9:06:28:5f:0d:7e:93:2a:b2:1d:4f:cd:38:53:
         41:66:e3:0e:45:79:3a:9d:94:16:06:56:5e:9b:46:9d:21:83:
         3e:5c:43:1c:e2:0e:4b:d1:54:1a:d5:da:24:8a:62:aa:6c:68:
         bf:47:04:f0:85:87:ac:6d:df:4b:f3:3e:3e:8c:49:13:31:b9:
         21:de:3e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----