Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
File:                     yFiMcrJRDxd7g18gHjNl7PnkWh0.mft (raw, json)
Hash identifier:          nSG2xqJhd/t0T3pZ31vRBV4kUIWF/KDBogroBswJaQk=
Subject key identifier:   7E:C6:A6:EF:F4:38:8F:09:EF:5F:C7:58:81:55:AC:3B:8A:E9:F7:0C
Authority key identifier: C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D
Certificate issuer:       /CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
Certificate serial:       01974EFC111DFD66843EF97DA582982B85CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
Manifest number:          0F30
Signing time:             Sun 08 Jun 2025 10:00:31 +0000
Manifest this update:     Sun 08 Jun 2025 10:00:31 +0000
Manifest next update:     Mon 09 Jun 2025 10:00:31 +0000
Files and hashes:         1: yFiMcrJRDxd7g18gHjNl7PnkWh0.crl (hash: BsOttdCGZX0rnKTDGscLI5WBRlYZVuPr8p0idQIYFkQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:fc:11:1d:fd:66:84:3e:f9:7d:a5:82:98:2b:85:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
        Validity
            Not Before: Jun  8 10:00:31 2025 GMT
            Not After : Jun  9 10:00:31 2025 GMT
        Subject: CN=7ec6a6eff4388f09ef5fc7588155ac3b8ae9f70c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:5c:e5:9c:71:55:a5:c5:1d:82:25:a0:d0:c8:
                    f7:61:5b:10:ce:08:81:47:56:ac:39:af:3a:a1:ef:
                    61:19:5a:d0:63:22:81:4a:28:31:c4:8b:47:35:43:
                    27:82:4f:38:08:5f:e9:3b:1f:fd:3c:99:07:41:b2:
                    dc:a5:69:c9:c0:58:4d:8e:4c:72:29:d6:d7:e4:cd:
                    83:5c:04:70:b1:bf:ca:d7:a3:c8:48:26:55:bf:13:
                    a4:d4:c7:be:eb:4a:e8:90:df:f4:be:0b:04:9b:2d:
                    fc:48:3e:8e:7c:7c:8d:44:3c:75:79:b4:1f:61:19:
                    34:51:a0:96:6e:b1:5e:6a:8f:6b:1e:43:f2:8a:91:
                    7a:8f:93:b7:d2:99:74:d3:f6:70:b9:b9:32:32:89:
                    b9:68:b2:50:2e:e1:1e:25:dd:3b:fc:c0:a2:e4:d3:
                    5b:e4:e0:e3:52:da:77:28:5f:de:37:2f:a7:96:5b:
                    95:83:aa:31:f7:4d:d0:b7:c2:3d:38:b7:1a:78:49:
                    be:18:bb:dd:38:cb:43:4c:9b:e4:30:f6:24:82:e4:
                    00:17:8a:f2:40:d5:5a:29:0d:02:8a:f2:43:5f:f5:
                    b0:55:e6:f6:cf:d4:7b:7f:67:58:de:f0:fa:a0:d2:
                    c9:15:12:5c:c4:c8:07:87:38:32:3e:8f:50:4e:88:
                    a1:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:C6:A6:EF:F4:38:8F:09:EF:5F:C7:58:81:55:AC:3B:8A:E9:F7:0C
            X509v3 Authority Key Identifier:
                keyid:C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:1f:e0:1c:8e:f4:ef:f8:23:d6:f8:9b:8f:13:f3:dd:68:65:
         2d:c2:e2:70:02:f0:f2:3c:99:75:4e:31:41:be:d8:9e:d0:7a:
         0d:77:9a:55:2c:99:72:36:d6:73:50:98:f5:dd:f2:82:b4:5f:
         47:72:50:4c:36:3b:32:b6:35:ef:80:61:e9:c9:49:7f:43:93:
         ed:fa:d0:31:26:f1:ec:ae:1a:45:58:49:87:36:74:ba:b8:21:
         b2:38:69:48:32:a8:36:ce:18:de:ee:ce:e0:29:46:dd:2b:ff:
         c1:4f:86:91:fe:59:2d:04:f7:cd:9e:23:d1:ff:42:79:18:17:
         87:ee:64:3d:3e:08:8d:89:03:76:73:bf:52:3c:b9:ae:ba:3d:
         fb:cb:8d:9c:0a:c0:a6:26:b1:0f:b3:41:d0:81:85:29:6f:ff:
         aa:e9:b2:94:9e:2e:04:6f:4b:0b:59:59:3f:2b:7f:52:b2:33:
         b7:7a:c1:1e:fd:5d:ce:7f:fe:7e:97:8b:42:5a:85:33:ab:c1:
         f9:da:ae:18:88:c4:d2:6f:03:0e:c4:66:85:d8:14:e2:e7:a0:
         6e:79:25:07:56:c5:4a:52:82:42:aa:03:ef:59:15:42:31:77:
         be:ee:78:6e:75:52:da:9b:0c:66:62:85:cb:cb:38:8a:c0:ae:
         27:eb:e6:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----