Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
File:                     i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft (raw, json)
Hash identifier:          pdErRv+4j7RWs5I+TeMcIg844l84hg9Pn9ytPy6UVfY=
Subject key identifier:   81:EB:55:48:AE:40:7A:AC:89:2A:EC:84:ED:20:E1:4A:FC:4D:F2:1B
Authority key identifier: 8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52
Certificate issuer:       /CN=8b7be7a47606ab38391fb21542b5f4061f02a852
Certificate serial:       01974C69F27B55F22F79F754D3EC04886D3C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
Manifest number:          0BF7
Signing time:             Sat 07 Jun 2025 22:01:41 +0000
Manifest this update:     Sat 07 Jun 2025 22:01:41 +0000
Manifest next update:     Sun 08 Jun 2025 22:01:41 +0000
Files and hashes:         1: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl (hash: xq9+9z9ZzQqJCQzj5ONCcYvFWh/pb1KhBp32q8u4914=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 20:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:f2:7b:55:f2:2f:79:f7:54:d3:ec:04:88:6d:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b7be7a47606ab38391fb21542b5f4061f02a852
        Validity
            Not Before: Jun  7 22:01:41 2025 GMT
            Not After : Jun  8 22:01:41 2025 GMT
        Subject: CN=81eb5548ae407aac892aec84ed20e14afc4df21b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:36:ab:cf:62:ff:f1:64:18:d4:55:11:4b:e3:
                    2f:b4:43:44:19:79:c1:6b:68:f4:d4:32:60:05:01:
                    ac:d0:82:21:40:99:9c:34:e3:38:f4:e8:b3:d2:4c:
                    79:63:f2:b3:06:74:62:18:58:79:a5:c9:a9:23:73:
                    19:46:88:85:d4:f8:b4:fb:61:b5:b4:24:fa:8f:25:
                    15:f9:b1:93:9f:17:99:79:54:5c:66:3c:7e:a9:38:
                    1e:5c:7d:5b:8b:1e:c1:2f:2d:be:08:fe:ad:51:1e:
                    02:1d:b0:b4:f6:cc:79:37:74:bf:75:8e:69:7a:00:
                    bc:79:e9:dc:5e:b6:5b:25:06:8d:94:60:6a:34:7c:
                    24:cf:de:7e:7c:33:72:eb:3a:93:87:4e:8d:63:0b:
                    aa:92:cb:ab:15:db:21:67:65:9d:a0:55:fe:4c:7b:
                    3b:67:68:b8:57:2c:3e:d1:ab:d8:09:13:c6:7c:bd:
                    fe:a4:d8:43:7b:95:ae:a0:86:73:38:b4:bb:34:39:
                    43:a9:df:72:10:03:91:9c:86:04:c8:20:09:54:e1:
                    1e:88:9d:5f:fc:cd:f9:50:60:bb:c5:37:6f:30:1f:
                    7c:4b:35:07:df:87:55:73:cb:f6:8d:61:d8:b0:8c:
                    b8:a7:da:dd:27:54:03:01:dc:65:0a:7c:42:0c:98:
                    56:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:EB:55:48:AE:40:7A:AC:89:2A:EC:84:ED:20:E1:4A:FC:4D:F2:1B
            X509v3 Authority Key Identifier:
                keyid:8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:08:8b:54:df:e2:2f:9e:bd:c9:9d:13:69:38:bb:92:a9:ec:
         86:88:1d:de:29:fb:fb:47:c3:98:9e:74:14:7d:7e:5e:2d:81:
         84:f8:db:f0:15:39:da:7f:04:9d:99:12:07:87:6a:a0:88:45:
         6c:6a:f0:88:09:cc:f2:ca:4d:14:0a:59:3f:db:ae:c6:83:c5:
         15:14:68:d6:e3:5d:f4:06:13:a2:a4:ad:3c:76:79:00:3d:9f:
         da:ab:e2:1e:6e:72:0b:37:02:e5:41:06:6b:81:8b:8a:9f:8c:
         a9:27:14:4b:52:36:d8:f8:23:01:4e:92:74:e3:35:85:ec:48:
         63:12:43:2f:a7:b4:ea:68:6a:d6:57:41:6e:89:2f:f6:43:22:
         88:1a:a3:a6:32:62:5a:b3:97:d6:6d:e1:6f:16:97:b5:76:3a:
         2a:d0:c2:1c:e9:64:82:ed:3e:c8:27:55:88:44:14:5f:a2:ba:
         c1:7b:6e:7a:aa:9d:ce:85:99:65:9f:ff:33:5f:35:28:b8:8a:
         db:07:7d:67:8e:ef:9b:d3:2a:97:6d:b8:84:90:91:59:47:ec:
         04:f5:a6:58:da:79:8a:2b:da:9e:60:50:1f:78:a5:63:79:e3:
         73:39:33:bd:9a:9b:0c:34:26:c1:4f:1b:03:09:9f:66:97:64:
         57:17:e3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----