Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
File:                     6gYhpKcsclr8dUFej4rPdTPUIH0.mft (raw, json)
Hash identifier:          wsMMB5+/enrrqYaN3Tzg3OGxRAVJsH/cjsEzddi1UDw=
Subject key identifier:   C6:E6:1A:7B:68:B3:63:DC:34:DF:75:F1:0F:7E:F7:05:B1:40:E5:3D
Authority key identifier: EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D
Certificate issuer:       /CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
Certificate serial:       019643D6B418D702A69097F376122BC9BCEA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
Manifest number:          1340
Signing time:             Thu 17 Apr 2025 13:01:06 +0000
Manifest this update:     Thu 17 Apr 2025 13:01:06 +0000
Manifest next update:     Fri 18 Apr 2025 13:01:06 +0000
Files and hashes:         1: 6gYhpKcsclr8dUFej4rPdTPUIH0.crl (hash: cbM2fgjnSYWTWZgDH7C8tzXgn+InGZ8txoNYHo2f1co=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 13:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:43:d6:b4:18:d7:02:a6:90:97:f3:76:12:2b:c9:bc:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
        Validity
            Not Before: Apr 17 13:01:06 2025 GMT
            Not After : Apr 18 13:01:06 2025 GMT
        Subject: CN=c6e61a7b68b363dc34df75f10f7ef705b140e53d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:e4:d4:77:43:72:cb:85:81:2b:55:30:c9:74:
                    25:18:5a:41:f8:4c:d1:ca:0a:88:01:34:0e:6d:0f:
                    01:aa:85:6a:1d:0c:73:41:22:0d:3e:00:36:f8:ee:
                    f3:e9:64:43:f0:95:14:d4:a7:fe:3b:af:83:8a:0d:
                    0e:39:96:94:1d:b0:63:99:8f:86:35:c2:cf:27:a8:
                    6e:05:b3:a1:4f:c2:2e:f7:24:52:81:3f:77:f8:37:
                    b8:e7:99:ef:98:0a:48:bd:b4:d1:44:7a:42:76:bc:
                    f2:cb:87:99:51:f4:80:51:f5:f6:4a:81:68:7e:94:
                    9f:fe:b1:e7:83:fd:a3:ff:f8:91:75:35:bc:9a:6a:
                    bd:3a:7d:d8:50:97:b0:5c:a4:37:e7:5c:c2:bc:bc:
                    da:78:3e:d1:a0:c4:18:07:12:14:f6:2c:9e:63:40:
                    61:4a:53:da:58:8a:8d:96:e3:e5:48:83:ea:4d:51:
                    cf:34:c7:a0:ea:5f:a9:af:12:a1:bf:8b:b6:dc:57:
                    45:3f:69:c5:ec:b6:de:6d:d9:70:5b:60:3a:5d:83:
                    e6:af:8d:8c:08:e5:2c:14:73:c4:ca:9c:ce:6a:7e:
                    e8:f7:ae:45:ca:fc:27:c6:1a:f5:47:26:9a:02:23:
                    8d:1a:5d:d0:7b:8f:3c:33:f4:5b:d0:da:13:0a:b7:
                    2a:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:E6:1A:7B:68:B3:63:DC:34:DF:75:F1:0F:7E:F7:05:B1:40:E5:3D
            X509v3 Authority Key Identifier:
                keyid:EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:ff:27:87:23:ea:62:b0:e3:49:8d:ea:fd:67:ff:06:8e:97:
         36:5f:4f:65:f5:54:62:7b:35:02:5a:e2:33:be:9a:9b:b7:4b:
         0f:37:b9:d6:92:cc:73:5f:8e:7f:43:4a:35:09:70:98:fd:5e:
         be:4f:a4:a5:53:17:8a:03:3a:e2:e5:e0:b7:88:a2:05:d5:2e:
         68:7e:dd:8b:f5:48:e6:2a:64:50:98:5b:ad:fd:87:1f:c8:31:
         e1:9a:08:42:b0:2e:95:2a:23:a1:12:80:6f:29:fc:19:92:58:
         7d:ac:c5:32:17:66:a1:4e:ac:f6:33:6d:3c:bc:6d:4f:d9:1e:
         2f:5d:23:ed:38:79:02:ae:3c:72:26:75:15:50:31:2b:dd:1f:
         6f:ed:4f:6f:82:44:5e:69:f8:36:0c:09:13:59:2a:98:51:5c:
         f2:31:88:9e:c4:d8:83:2b:3f:17:db:66:bb:8d:33:0c:40:67:
         da:6b:cc:4f:a6:03:07:2c:88:7a:0a:6d:ec:10:11:f7:ff:99:
         aa:e7:19:82:60:77:c8:91:90:a7:e7:d7:e6:e3:9e:f8:0d:b6:
         23:8f:ab:5b:ab:19:32:2d:b1:f0:f9:4c:33:ad:b3:44:da:40:
         63:02:04:d2:db:1d:4e:79:a9:a9:2f:c4:f7:de:fe:2f:5a:42:
         7d:ba:b0:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----