Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft
File:                     o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft (raw, json)
Hash identifier:          7ZVLRolSZnjfMwMVqLhwrM6hUZMB1SbYg5e7r5HS57s=
Subject key identifier:   43:80:A2:96:B9:A6:84:07:25:34:FB:3F:A9:A9:8E:35:2C:C8:69:B2
Authority key identifier: A3:92:FC:96:A4:87:89:51:4E:B0:9F:56:74:B5:9D:A5:2C:91:14:83
Certificate issuer:       /CN=a392fc96a48789514eb09f5674b59da52c911483
Certificate serial:       01974AE89C870D54A334001EB494A9DD864C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft
Manifest number:          09F3
Signing time:             Sat 07 Jun 2025 15:00:47 +0000
Manifest this update:     Sat 07 Jun 2025 15:00:47 +0000
Manifest next update:     Sun 08 Jun 2025 15:00:47 +0000
Files and hashes:         1: o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl (hash: LlA6eOWy/yhSPD0v8yLqvHNLqyq667dDzVMo3B0k1jA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 15:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:e8:9c:87:0d:54:a3:34:00:1e:b4:94:a9:dd:86:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a392fc96a48789514eb09f5674b59da52c911483
        Validity
            Not Before: Jun  7 15:00:47 2025 GMT
            Not After : Jun  8 15:00:47 2025 GMT
        Subject: CN=4380a296b9a684072534fb3fa9a98e352cc869b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:52:f0:a9:b3:8f:6d:52:16:fe:10:f2:d7:c0:
                    29:da:1c:42:a5:62:ea:8a:7c:48:dc:e7:15:89:16:
                    2f:c0:f2:eb:34:03:98:aa:95:5d:ae:1a:3d:83:24:
                    6c:1b:46:95:fa:de:67:27:75:e0:e3:43:e4:52:7a:
                    58:39:16:5e:00:7a:cc:02:c4:8b:8e:40:22:f2:97:
                    c1:8b:74:c3:36:47:54:10:f6:55:bd:ee:2f:46:a2:
                    ed:46:2e:f0:f6:9e:ce:15:81:67:09:0a:ba:77:7e:
                    90:8d:dd:e0:73:41:14:7e:d9:1a:7a:8f:21:e0:7b:
                    74:00:4d:e1:4a:02:9f:21:0a:6c:69:f2:e4:69:fc:
                    1f:b9:57:50:c6:11:fe:98:83:3a:56:2c:4a:e9:b7:
                    0e:68:0d:17:82:46:64:dd:3a:0e:9f:58:46:5b:e9:
                    55:71:ed:6d:02:8f:37:1d:fa:f1:7d:84:60:68:22:
                    48:99:53:11:d9:fc:9f:58:65:82:f2:15:db:6a:07:
                    40:fe:34:5d:05:bf:b8:e9:8a:b2:c7:7a:3c:aa:98:
                    b2:2c:0c:8e:a8:71:a8:7a:0f:6d:c7:ca:b6:71:d4:
                    84:cc:98:e5:e1:e2:12:28:94:5c:81:bd:53:cb:00:
                    2b:5d:73:6c:29:01:44:47:f3:87:31:40:31:07:40:
                    90:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:80:A2:96:B9:A6:84:07:25:34:FB:3F:A9:A9:8E:35:2C:C8:69:B2
            X509v3 Authority Key Identifier:
                keyid:A3:92:FC:96:A4:87:89:51:4E:B0:9F:56:74:B5:9D:A5:2C:91:14:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:35:90:95:67:a1:b9:ae:f2:9a:ae:5d:28:4a:28:d2:95:c2:
         6c:f4:77:af:5a:a4:d1:d2:22:f1:1c:6c:bb:63:6c:f6:29:44:
         9c:8c:1e:af:17:bc:13:b3:91:9b:a7:af:60:65:77:65:43:9d:
         42:66:d9:71:8f:89:a7:1b:1b:13:70:69:91:20:d5:35:a8:6f:
         aa:28:46:aa:43:b6:7d:c2:88:ba:df:5b:bc:f4:26:a1:0f:bc:
         e3:af:13:fc:61:86:68:5c:8e:40:f6:da:f3:c1:b8:c3:66:45:
         4b:01:5b:22:e1:f1:eb:24:64:ff:3f:c5:da:f1:cc:82:fa:e3:
         ca:45:a2:7c:cf:51:36:ac:65:c7:25:63:43:f8:67:d9:15:7b:
         04:2c:69:df:10:03:bd:3a:f8:b1:1b:3c:77:78:b3:b0:6b:e7:
         9d:95:0c:17:a9:de:dd:3a:ea:4e:6b:e6:13:26:5a:ff:61:31:
         7d:d0:fb:9d:c9:c6:cd:e3:25:b7:d7:cd:62:ac:bc:4c:74:f6:
         d0:5f:35:9f:bf:0c:a1:34:26:84:72:ef:fe:76:4a:05:86:c3:
         19:37:cf:c1:a3:df:3e:08:9f:5a:ff:c4:06:3c:a3:60:32:b1:
         96:5b:1e:bc:e0:5d:49:19:b7:7f:5c:62:cf:ed:fa:87:77:ec:
         c5:b1:15:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----