Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
File:                     pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json)
Hash identifier:          JNSJCDA8hE12kh2ArFpswn3xQQMXUu4cc6vVHOdm92g=
Subject key identifier:   DA:C8:A9:F8:6F:A0:52:63:DC:42:24:C7:80:D8:18:D4:A2:D0:CD:94
Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92
Certificate issuer:       /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
Certificate serial:       0197469EAD3DC614A5DCC4F4487CD4B88C43
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
Manifest number:          1078
Signing time:             Fri 06 Jun 2025 19:01:33 +0000
Manifest this update:     Fri 06 Jun 2025 19:01:33 +0000
Manifest next update:     Sat 07 Jun 2025 19:01:33 +0000
Files and hashes:         1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: aaAcabmY3PWvohV54OXLwj8VsF6WD+uN2uQoedwLc1U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 19:01:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9e:ad:3d:c6:14:a5:dc:c4:f4:48:7c:d4:b8:8c:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
        Validity
            Not Before: Jun  6 19:01:33 2025 GMT
            Not After : Jun  7 19:01:33 2025 GMT
        Subject: CN=dac8a9f86fa05263dc4224c780d818d4a2d0cd94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:79:18:ac:04:e1:d5:98:d1:42:44:7d:a2:7f:
                    f5:b1:50:50:a5:7b:4f:d5:c0:cd:51:c8:97:88:2a:
                    04:8e:5a:12:89:75:27:ad:a8:b2:02:71:82:08:3b:
                    f0:d9:8d:ff:40:94:74:7a:c9:8b:b5:5d:68:bf:9d:
                    d0:ed:82:ac:da:aa:52:19:e1:67:a6:0e:17:c7:94:
                    dd:e5:f0:2e:14:9e:5d:85:93:52:3d:0f:c0:13:d7:
                    22:bd:99:c1:76:b8:af:3a:0a:5c:b0:d0:29:ab:7d:
                    6a:0f:2c:04:3f:5d:40:39:f3:87:c8:94:45:78:e1:
                    ba:72:99:e1:32:7e:05:a2:8f:25:c5:9e:5e:05:09:
                    c1:7d:9c:31:f0:2b:0b:ab:5c:f2:a5:97:0f:fd:c8:
                    1e:e4:e0:40:cd:af:62:c2:53:43:7b:a9:08:a1:97:
                    d5:5f:62:aa:9b:d8:92:46:88:28:50:50:c1:1c:13:
                    41:42:b2:20:79:7f:96:db:6e:2a:bd:4c:1b:cb:46:
                    c0:55:2e:48:38:53:e0:58:a5:69:93:bb:e0:45:0f:
                    a7:df:01:76:3b:07:c3:39:66:d2:74:f0:10:5b:5c:
                    3e:d8:0a:dc:3f:84:17:26:77:17:f8:0f:c4:ed:d3:
                    f5:a6:5b:1a:0f:65:ad:c1:eb:58:11:2c:0b:38:2f:
                    6f:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:C8:A9:F8:6F:A0:52:63:DC:42:24:C7:80:D8:18:D4:A2:D0:CD:94
            X509v3 Authority Key Identifier:
                keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:13:34:b0:5a:59:e8:90:05:d6:0c:7d:d3:32:33:be:e2:94:
         d8:aa:f1:9e:65:23:55:be:cf:18:b5:5e:e6:02:20:ef:8d:90:
         71:43:03:4c:5b:b3:1e:63:28:19:61:dd:f9:a2:bd:b9:99:e6:
         71:c3:34:9a:8d:f4:f6:dc:75:63:ea:1e:ce:19:c7:37:eb:ad:
         56:06:6b:99:12:29:c0:96:f4:fc:8d:e2:90:5c:f6:40:aa:c1:
         a8:7e:5b:67:d6:cb:32:10:b6:92:bf:09:26:78:71:57:e9:05:
         b1:06:bb:19:03:7a:65:7e:f4:8f:3d:f3:71:e5:b2:02:05:9a:
         97:bb:a8:32:16:91:50:dd:12:f2:9b:e3:68:00:43:a3:c2:f5:
         29:9f:67:d3:84:35:6a:d5:c6:95:a9:52:d7:6a:44:69:55:d5:
         e7:0b:ff:57:7c:b6:ef:8a:c9:95:be:ec:e2:47:d1:a3:d5:b5:
         7d:09:db:64:fd:b9:7f:db:84:bf:da:24:a8:10:cc:86:3c:74:
         af:c2:b5:d5:60:87:60:68:f4:a3:7f:90:87:37:2a:f2:a3:20:
         c8:f3:2a:3e:00:14:f2:44:a3:3f:ce:61:75:f1:ed:0f:bb:fd:
         69:bc:72:0d:c9:39:a7:b6:b2:26:0d:2b:4d:9b:16:75:6f:66:
         b0:e6:eb:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----