Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
File:                     f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft (raw, json)
Hash identifier:          4DxgcLjeYgxX/DU9v7Fq2ZKMSCzHslxF/Gx9NQKj8Jc=
Subject key identifier:   15:E7:A0:B7:88:40:FE:45:58:54:A1:FC:E9:91:8C:50:48:67:77:58
Authority key identifier: 7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
Certificate issuer:       /CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Certificate serial:       01975121CAF0805F4E5A54021FD895509215
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
Manifest number:          04CF
Signing time:             Sun 08 Jun 2025 20:00:58 +0000
Manifest this update:     Sun 08 Jun 2025 20:00:58 +0000
Manifest next update:     Mon 09 Jun 2025 20:00:58 +0000
Files and hashes:         1: f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl (hash: XcyDqPGZqQxm6vEg1zQvITViptSUoyW2fbLuW4UmmUo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 17:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:51:21:ca:f0:80:5f:4e:5a:54:02:1f:d8:95:50:92:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
        Validity
            Not Before: Jun  8 20:00:58 2025 GMT
            Not After : Jun  9 20:00:58 2025 GMT
        Subject: CN=15e7a0b78840fe455854a1fce9918c5048677758
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:34:79:07:e3:02:97:3b:d9:51:30:69:f5:ee:
                    0e:3d:8e:48:06:a9:1f:cf:26:74:c8:29:9d:d5:e9:
                    ac:43:b2:5a:d2:b7:61:37:16:6f:cb:62:74:a2:16:
                    c2:be:a6:fe:6a:b9:e5:ed:76:09:20:4c:81:85:a9:
                    fd:23:fa:7f:58:cb:bc:1e:24:d5:d2:9d:e8:6b:51:
                    6b:bc:e8:83:57:1a:69:f4:58:2e:40:0d:0b:e1:13:
                    29:cd:ab:be:b1:d7:be:53:d8:0e:08:07:3c:17:92:
                    64:e1:a9:4b:26:ad:48:dc:57:b6:fd:ea:fd:d5:c3:
                    eb:37:bc:05:38:4e:c3:3d:39:8d:94:17:6c:32:ab:
                    7c:a2:6f:8d:8a:fe:84:a6:31:bb:f4:b4:1b:0b:ba:
                    a7:6b:70:6a:6b:f4:06:b7:06:09:8e:e5:10:c1:14:
                    99:f9:dc:32:a4:d6:b4:a8:32:ce:1e:b8:5a:f7:db:
                    5b:27:65:d9:47:83:4c:d6:a9:1e:1a:48:96:95:7b:
                    43:cf:b0:ca:5f:8e:c7:64:76:9c:87:70:63:ca:60:
                    bf:94:bd:22:a3:fa:e0:04:80:08:3a:39:2c:e8:b4:
                    7a:d9:e9:98:b5:7c:a0:09:97:c6:79:a5:6c:87:e7:
                    ef:aa:05:49:75:e7:5b:d6:af:e2:f9:16:23:9b:3d:
                    bb:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:E7:A0:B7:88:40:FE:45:58:54:A1:FC:E9:91:8C:50:48:67:77:58
            X509v3 Authority Key Identifier:
                keyid:7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:53:78:f3:c0:7b:f4:30:4f:b0:19:82:1b:21:15:64:9c:a3:
         c7:c8:f5:97:b3:70:3e:36:76:3d:3f:9b:a0:05:bf:5b:92:dd:
         01:9f:39:dc:a2:be:61:08:3e:5f:a1:96:d7:27:a7:4a:9a:74:
         d3:b1:22:21:aa:cc:c7:c4:07:a3:a4:22:01:c2:3f:1b:ed:79:
         37:d6:fb:b1:58:55:dd:8f:aa:74:0c:26:00:af:5f:d2:d5:35:
         fd:6d:49:b5:f0:d8:d2:91:63:83:6a:76:19:3d:43:9a:2a:29:
         35:8f:15:82:4c:3b:76:b5:d3:df:ce:8b:9a:19:98:f8:34:3d:
         73:60:3b:7a:fa:f7:02:79:b2:0d:c0:04:e3:36:a8:1d:31:83:
         b2:b9:1b:7f:ec:df:83:81:75:f2:f3:0e:97:b4:ba:5d:1b:eb:
         e9:8f:d7:7c:d8:0d:1c:7e:e7:24:97:20:30:ce:f5:3b:27:22:
         d9:d9:f9:95:2f:6f:2c:f7:c6:6f:a8:ed:4f:22:22:24:28:ce:
         47:0c:71:fe:d7:18:0b:99:fb:dc:6a:4c:eb:4c:31:aa:b1:c0:
         ca:f8:62:22:ce:27:15:c3:e0:3b:2f:45:7e:2b:7b:e5:6f:31:
         d6:59:c0:c3:bb:59:9e:ec:54:f9:3e:6d:49:c8:b9:59:30:34:
         e0:db:1c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----