Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
File:                     Yefv0ZrydUeUJswZJcW8Ls7ums4.mft (raw, json)
Hash identifier:          /bUs1ImyQeawTLJKs4nB9FUDPnlYTxO5PqJNnw+TLtg=
Subject key identifier:   B3:56:11:86:7B:0F:B9:44:87:9E:13:00:FE:1A:A8:B0:C5:3C:00:E8
Authority key identifier: 61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE
Certificate issuer:       /CN=61e7efd19af275479426cc1925c5bc2eceee9ace
Certificate serial:       01974DB250184B8327610D3E690C491F243B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
Manifest number:          1490
Signing time:             Sun 08 Jun 2025 04:00:20 +0000
Manifest this update:     Sun 08 Jun 2025 04:00:20 +0000
Manifest next update:     Mon 09 Jun 2025 04:00:20 +0000
Files and hashes:         1: Yefv0ZrydUeUJswZJcW8Ls7ums4.crl (hash: +DTARZlawDeesdGhmfcn817t7D4nkWCAjEPjtymCt+4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 20:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:b2:50:18:4b:83:27:61:0d:3e:69:0c:49:1f:24:3b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=61e7efd19af275479426cc1925c5bc2eceee9ace
        Validity
            Not Before: Jun  8 04:00:20 2025 GMT
            Not After : Jun  9 04:00:20 2025 GMT
        Subject: CN=b35611867b0fb944879e1300fe1aa8b0c53c00e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:9d:8e:5d:52:d7:53:71:1b:ef:93:6a:e1:d0:
                    37:27:04:a5:6e:bb:25:fb:55:1c:3f:a6:10:6b:56:
                    d5:0b:fb:1c:98:93:80:5e:84:06:68:e4:4b:55:c2:
                    49:5a:97:d0:06:b5:5a:36:96:00:0b:a1:96:a0:9a:
                    36:0c:6d:e4:d2:df:ac:6b:1c:86:15:db:8b:46:57:
                    c0:3d:f1:aa:2a:37:b7:ff:fe:50:f8:78:34:22:7c:
                    7b:05:d5:d7:9a:18:43:ba:b8:04:df:2f:84:44:b1:
                    fa:92:ae:a7:ca:10:29:71:9a:78:1c:66:f7:eb:7f:
                    ad:59:f2:27:ed:f2:d2:9d:4d:5a:0e:11:b7:60:df:
                    cc:0a:74:0d:cd:48:8f:ad:03:17:e6:24:ef:f8:0e:
                    d5:58:7e:78:d0:09:fe:ec:e6:94:30:2e:b5:e3:18:
                    91:1c:4a:9b:d3:01:85:65:18:f8:0b:05:dc:e9:fc:
                    b8:fe:56:5f:8e:80:fe:67:ae:14:46:3c:95:19:67:
                    7d:67:3d:39:26:04:03:2f:e3:bd:f1:6f:40:3f:3d:
                    11:c0:1b:b5:dc:68:df:f8:dd:8f:9d:62:d8:0a:f6:
                    d6:23:d9:14:82:4a:46:79:ff:19:e8:a5:83:d3:b6:
                    1b:ef:6f:fc:a5:a2:09:e7:a7:55:29:a2:d7:e4:2b:
                    32:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:56:11:86:7B:0F:B9:44:87:9E:13:00:FE:1A:A8:B0:C5:3C:00:E8
            X509v3 Authority Key Identifier:
                keyid:61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:45:3b:84:e9:4a:88:7c:9d:98:26:92:ad:b5:e4:72:fd:44:
         83:31:26:ef:d7:f3:1e:23:f3:7e:8a:8e:0e:6e:07:5a:cb:cd:
         0b:44:b6:1b:73:5c:2a:13:5f:0f:25:a5:3d:69:1d:43:1e:6f:
         b2:76:6a:21:15:1f:72:06:ad:43:e8:fa:5b:ee:27:41:d0:17:
         2d:fe:6b:d9:56:4a:b9:f6:d1:cd:d8:76:28:cf:60:60:66:15:
         b6:fe:0b:5b:fa:af:59:26:83:f4:fa:92:bc:73:4a:dc:41:b8:
         a2:d8:eb:63:da:20:b9:69:68:cb:93:bb:de:17:3e:e9:78:b7:
         a9:7b:46:24:12:b2:77:78:0b:d3:5d:d6:12:24:2e:c0:39:ec:
         f5:02:45:5b:30:fe:a7:08:c6:27:e8:80:c8:df:f8:0f:84:9a:
         4f:6e:97:59:9e:de:bb:a6:ba:98:28:b6:e0:8a:6b:46:4b:34:
         21:74:b3:a8:69:74:bd:80:9b:1c:bb:2d:54:90:fc:08:d0:99:
         1a:7d:04:d1:74:98:c3:53:02:c7:33:89:5e:ff:14:0e:b8:af:
         fa:a9:73:03:14:c8:0a:a0:b3:ac:cf:84:10:80:ca:26:12:45:
         05:7b:f7:a8:12:94:33:e5:d8:38:f0:52:ee:aa:73:c7:d6:36:
         ff:d8:fe:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----