Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft
File:                     IujBtA7lecGDeWRV9Aklc9mVodI.mft (raw, json)
Hash identifier:          1T6pB2F2v2SPL2Ml8KYvZu7RsbzM4rLxh5O/VI9jCWM=
Subject key identifier:   0D:CC:AC:02:D1:40:14:11:31:FC:9E:61:01:7D:69:AE:3A:ED:E2:11
Authority key identifier: 22:E8:C1:B4:0E:E5:79:C1:83:79:64:55:F4:09:25:73:D9:95:A1:D2
Certificate issuer:       /CN=22e8c1b40ee579c183796455f4092573d995a1d2
Certificate serial:       01974E572CDF475D2D6C748BC460FBEEC37C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft
Manifest number:          09E1
Signing time:             Sun 08 Jun 2025 07:00:25 +0000
Manifest this update:     Sun 08 Jun 2025 07:00:25 +0000
Manifest next update:     Mon 09 Jun 2025 07:00:25 +0000
Files and hashes:         1: IujBtA7lecGDeWRV9Aklc9mVodI.crl (hash: gWcxwNM7jawtlVyQ3yREB9fznUqlszURihzEu/uefHs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 07:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:57:2c:df:47:5d:2d:6c:74:8b:c4:60:fb:ee:c3:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=22e8c1b40ee579c183796455f4092573d995a1d2
        Validity
            Not Before: Jun  8 07:00:25 2025 GMT
            Not After : Jun  9 07:00:25 2025 GMT
        Subject: CN=0dccac02d140141131fc9e61017d69ae3aede211
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:d8:03:3a:18:cc:d3:9b:87:45:01:ba:d8:64:
                    01:51:63:f3:aa:be:54:1f:08:55:ae:d6:da:cc:aa:
                    21:2a:03:c8:18:80:6d:a6:a5:91:b4:30:37:a3:21:
                    1c:17:fb:a5:04:db:30:9d:d1:21:ce:a4:0a:85:53:
                    c5:0b:ab:fe:f8:28:2e:2c:37:7d:73:e3:54:67:9a:
                    02:84:f6:20:6b:1b:94:bc:a3:f4:fe:58:24:18:80:
                    1d:15:a1:10:10:3d:e5:8d:d2:fe:ed:f8:60:56:3b:
                    b2:a0:74:86:80:61:95:6b:53:1e:34:81:12:2c:3b:
                    33:13:25:76:e7:3b:06:8b:30:54:1f:25:20:c6:a9:
                    d9:e7:32:67:82:ea:a0:ff:06:13:0e:49:5f:3b:a3:
                    92:25:50:72:f5:77:20:d4:a5:eb:c6:3b:9f:81:b0:
                    d1:a3:92:aa:fb:32:f6:bd:d4:8b:19:d2:d2:df:35:
                    1a:e5:27:2f:74:74:2b:4d:88:5c:89:8d:5c:b6:5c:
                    07:bb:e4:3d:c0:e4:13:fd:fc:38:c4:15:b9:39:1b:
                    42:52:33:73:ab:3d:88:b5:3a:a2:b3:ee:15:8c:f4:
                    72:d8:3c:49:a5:57:cc:83:96:30:4c:a5:b0:dc:70:
                    39:4b:0d:b1:27:0f:9f:78:78:09:94:cd:97:65:75:
                    d8:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:CC:AC:02:D1:40:14:11:31:FC:9E:61:01:7D:69:AE:3A:ED:E2:11
            X509v3 Authority Key Identifier:
                keyid:22:E8:C1:B4:0E:E5:79:C1:83:79:64:55:F4:09:25:73:D9:95:A1:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:a1:eb:c0:99:a6:28:c0:81:e8:07:a4:86:5a:b4:6b:41:a3:
         76:5b:f8:3b:82:23:66:ae:9b:7b:85:1c:6b:0e:10:0a:93:45:
         aa:54:cd:90:e3:f2:32:1a:a8:1f:ec:89:dc:9d:5d:c2:5f:64:
         a9:cf:3c:01:53:24:6a:95:38:43:42:fd:3f:6c:4d:3b:32:34:
         4e:58:9f:2c:7b:9b:fb:7b:d3:01:90:78:09:44:5c:77:4e:23:
         59:fb:8f:bc:62:65:a5:a9:b8:e9:5a:99:7a:a8:f6:e8:b6:98:
         7b:6d:a9:42:5b:94:f5:72:96:9d:86:85:2d:c2:9d:7f:86:06:
         6e:8e:27:13:a5:97:de:39:b0:a9:75:73:25:bf:cb:c1:9a:d6:
         bd:96:60:0a:7e:9f:bd:6b:52:86:bd:0a:cc:12:9e:03:2f:d6:
         36:b0:2d:5c:cb:1a:74:d4:4f:73:6a:93:bd:e2:91:ba:22:56:
         c1:9a:96:10:00:2e:fc:48:7d:e4:76:76:86:14:b5:7f:9c:1f:
         51:17:74:20:8a:b1:e4:22:8f:ef:b3:71:70:89:29:6a:a9:91:
         d1:cf:6b:78:a6:e9:f8:01:87:6c:6d:bf:6d:08:60:cc:fe:e1:
         0c:22:fd:77:c2:7b:79:56:72:f7:ad:d5:51:c0:e9:98:21:82:
         30:de:f2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----