Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
File:                     dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft (raw, json)
Hash identifier:          tpjrKiCIGJrjfGDr0kvTJGYPaUN6eiy86i1mjsTQwK4=
Subject key identifier:   48:12:45:AB:E6:CF:76:5B:B7:BE:28:05:E8:5C:58:1F:D6:6C:71:39
Authority key identifier: 74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6
Certificate issuer:       /CN=74230d142eec7f6a99b0db4096f93a0420483fe6
Certificate serial:       01975234DED529B491298FF1E0E798103B82
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
Manifest number:          0776
Signing time:             Mon 09 Jun 2025 01:01:26 +0000
Manifest this update:     Mon 09 Jun 2025 01:01:26 +0000
Manifest next update:     Tue 10 Jun 2025 01:01:26 +0000
Files and hashes:         1: dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl (hash: b4rnRpJaZfGEUNaQgEtXHu0S7S08XRCDjSqa1AyUvSM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 21:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:34:de:d5:29:b4:91:29:8f:f1:e0:e7:98:10:3b:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74230d142eec7f6a99b0db4096f93a0420483fe6
        Validity
            Not Before: Jun  9 01:01:26 2025 GMT
            Not After : Jun 10 01:01:26 2025 GMT
        Subject: CN=481245abe6cf765bb7be2805e85c581fd66c7139
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:5c:63:cf:ce:31:a4:2c:6c:6f:ef:41:68:3a:
                    b6:7e:e2:05:a2:db:b0:e0:25:70:9b:ac:90:f6:ec:
                    dd:13:c9:28:39:d7:26:c5:c1:d8:e8:53:7e:97:85:
                    d2:66:4f:64:d4:3f:bb:d2:6c:7a:33:b9:cc:ee:ff:
                    17:b8:4a:99:2d:4b:72:be:0b:10:ea:d0:31:34:2c:
                    9a:18:dc:d4:6b:33:a8:ce:96:b2:c3:41:a1:f0:32:
                    fd:d2:08:7f:e3:96:aa:5c:8f:da:e7:5e:27:4f:d2:
                    b8:61:be:3d:2a:f0:b3:15:99:24:7f:47:14:d4:4f:
                    7f:00:2a:a0:54:59:2a:7f:86:d2:b0:54:af:2f:fb:
                    b8:21:26:3b:d0:01:5d:2a:f3:a7:87:cb:3f:df:f9:
                    23:e1:72:64:52:ed:e2:16:7d:2b:60:36:2a:77:34:
                    00:45:df:aa:ee:46:a7:34:1c:45:ab:92:84:42:d3:
                    32:02:6d:cd:ac:fc:0f:61:94:a0:4c:2d:ed:81:ee:
                    a1:6d:b1:5b:bf:98:3d:b7:1e:70:17:3c:92:de:0f:
                    ae:42:28:c0:dd:d6:45:c6:b6:a7:5c:19:85:66:e4:
                    f1:73:d4:c8:a7:7a:c0:89:2d:83:22:11:20:cd:52:
                    cf:2e:ac:40:62:77:d9:ff:3a:41:03:ba:85:e6:02:
                    04:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:12:45:AB:E6:CF:76:5B:B7:BE:28:05:E8:5C:58:1F:D6:6C:71:39
            X509v3 Authority Key Identifier:
                keyid:74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:9f:3f:61:98:09:d7:20:ee:f6:e8:43:ce:fd:00:59:2a:d9:
         6a:ab:7f:69:be:32:9b:56:04:dd:6c:a2:f2:68:4b:4d:15:62:
         25:3f:85:25:0b:2b:6d:cf:1e:5f:91:b4:fe:84:d8:d3:ad:7b:
         3a:c7:22:13:7b:ef:9f:09:13:61:d6:d5:6f:a6:60:84:91:5e:
         9b:cf:41:f8:b8:24:ac:94:fb:0b:fd:dd:d2:ca:3b:c3:92:b0:
         bf:03:c6:f8:08:92:1f:83:9c:20:99:c2:ca:47:80:b5:8a:dd:
         aa:dc:64:65:95:56:9d:1b:83:ec:cb:5f:09:7e:10:05:02:eb:
         80:01:dd:81:96:9c:84:8e:2f:88:99:d9:cd:7c:88:11:50:c0:
         a0:ad:c1:68:5d:ca:d2:a1:11:c2:3d:4c:11:bc:b2:b2:cf:d7:
         dc:c4:74:c5:a6:bb:a8:b6:91:e7:0e:f0:b7:d5:37:fd:be:88:
         24:61:e7:5d:4e:0a:f1:08:eb:5e:ab:30:71:cb:d4:3a:4d:2e:
         3d:83:87:78:63:f1:3d:a2:9a:da:f1:36:23:90:ee:e7:04:76:
         8c:89:0a:9c:bb:c8:31:af:d1:95:1b:3a:7b:7c:b1:a4:9d:02:
         c0:f3:72:fc:8b:5f:a7:25:b4:ff:25:38:4b:4c:a8:db:0e:1f:
         56:45:18:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----