Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
File:                     DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json)
Hash identifier:          82qz6DWJjNdNb7tf5noRHu+4BBFu9SZ7fU+wZAcV2Zo=
Subject key identifier:   6A:7D:2D:1F:D0:EA:6A:81:3C:12:AF:A6:AC:3D:F2:C1:83:13:F1:4B
Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
Certificate issuer:       /CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Certificate serial:       0197488C8F237F46E69355E3F1A4D3C31360
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
Manifest number:          060F
Signing time:             Sat 07 Jun 2025 04:01:00 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:00 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:00 +0000
Files and hashes:         1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: 6OCfktUCfgjRpn1WKElrWTMg84ZdnV8h1kxk6U5frqI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:8f:23:7f:46:e6:93:55:e3:f1:a4:d3:c3:13:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff
        Validity
            Not Before: Jun  7 04:01:00 2025 GMT
            Not After : Jun  8 04:01:00 2025 GMT
        Subject: CN=6a7d2d1fd0ea6a813c12afa6ac3df2c18313f14b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:f6:7e:28:a9:ce:da:03:be:db:1a:8c:5f:bc:
                    21:59:df:d3:c2:a5:66:45:76:ce:05:e8:e6:b1:27:
                    f4:00:16:54:51:68:e9:62:bb:d3:d1:a0:dd:26:31:
                    2d:87:eb:af:1e:44:56:02:53:d2:0f:b9:07:6b:8d:
                    6b:55:67:1e:8b:5d:cf:08:13:b6:31:a3:ea:a9:05:
                    46:a4:45:71:e9:0d:1d:e5:bc:79:11:c2:d5:52:f8:
                    29:ba:90:b1:c3:a8:ef:21:bc:c2:43:94:ff:03:a7:
                    5a:ab:80:3c:47:f9:f7:6f:bb:e1:61:45:4e:6a:97:
                    15:24:7d:6e:02:bb:c4:05:4a:61:59:2a:aa:88:af:
                    da:76:1d:68:80:a0:e9:79:f5:3d:fa:06:e0:f8:e6:
                    c3:84:5a:a9:89:89:f4:9e:50:6f:4e:23:4b:ba:22:
                    f1:0a:36:8c:5c:af:c0:a4:ee:43:6c:bd:1f:34:56:
                    d3:96:21:c7:7c:0b:f8:55:90:ab:e2:cf:f2:72:ff:
                    95:4a:0a:42:2f:19:8e:c4:29:73:77:5f:b9:7b:ba:
                    2e:9b:c1:ba:f0:2d:14:19:d1:0b:e6:57:29:71:27:
                    31:29:cc:68:59:54:18:2f:01:91:75:51:25:b0:12:
                    26:a9:56:23:e0:39:32:27:b7:d3:12:79:83:c1:c2:
                    e8:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:7D:2D:1F:D0:EA:6A:81:3C:12:AF:A6:AC:3D:F2:C1:83:13:F1:4B
            X509v3 Authority Key Identifier:
                keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:11:bd:cc:c0:3b:98:37:f8:da:49:eb:5d:1e:2c:eb:54:39:
         ca:a5:94:26:ef:fd:4c:06:fa:63:88:e9:fd:eb:89:78:8d:05:
         2b:21:14:e9:58:de:ff:ce:c6:08:ad:7f:f6:c3:62:b2:92:ba:
         da:a5:e4:9b:e5:c7:73:69:ad:48:c5:0e:31:a7:02:a8:56:02:
         d9:1d:5e:07:df:63:13:b8:d8:4d:2c:3a:ae:49:70:15:a9:e6:
         07:ff:43:da:5f:df:6e:82:0b:7b:c0:42:12:c1:5c:62:b7:41:
         88:5e:a1:3f:4c:6a:d0:de:c1:e4:9f:b5:7a:e6:72:ad:16:92:
         63:c5:59:17:4a:89:df:13:03:41:3e:65:82:02:e9:aa:72:b2:
         e3:d7:51:2d:00:11:03:4d:2a:09:ef:08:b7:69:3c:b3:14:48:
         3a:02:3a:7e:f1:9a:04:3f:84:61:47:0b:45:a0:5a:de:7d:e2:
         c4:97:a8:ed:e4:0f:5c:1b:f2:5f:b9:0f:5a:11:16:6f:b5:87:
         a6:58:2e:cd:43:c4:69:e2:30:a4:03:2b:a5:6d:ba:f7:c3:8f:
         10:2c:52:67:ed:18:f7:68:82:2b:1e:62:ca:1a:c6:3b:6d:8f:
         44:55:ce:99:ef:c1:34:86:ef:52:e5:3b:a1:2b:d6:8d:19:df:
         c4:6e:e4:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----