Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft
File:                     s5hg55nVMGYfFSE1RiKOmSmlPJw.mft (raw, json)
Hash identifier:          3WHy6bhxYj1HuQZGCukgVmkN53mouPKjveLLHeGSiOA=
Subject key identifier:   FC:EB:AF:2A:83:1F:2E:40:7E:A5:F0:E5:22:77:20:99:5C:D4:C1:24
Authority key identifier: B3:98:60:E7:99:D5:30:66:1F:15:21:35:46:22:8E:99:29:A5:3C:9C
Certificate issuer:       /CN=b39860e799d530661f15213546228e9929a53c9c
Certificate serial:       0197481E785E18BF2DC14835E707D7CCAD20
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s5hg55nVMGYfFSE1RiKOmSmlPJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft
Manifest number:          0382
Signing time:             Sat 07 Jun 2025 02:00:45 +0000
Manifest this update:     Sat 07 Jun 2025 02:00:45 +0000
Manifest next update:     Sun 08 Jun 2025 02:00:45 +0000
Files and hashes:         1: s5hg55nVMGYfFSE1RiKOmSmlPJw.crl (hash: rXbenLO5fFczOM/IV+Pxzhc9EvOvPy5ZJwceTKdjf/8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s5hg55nVMGYfFSE1RiKOmSmlPJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:1e:78:5e:18:bf:2d:c1:48:35:e7:07:d7:cc:ad:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b39860e799d530661f15213546228e9929a53c9c
        Validity
            Not Before: Jun  7 02:00:45 2025 GMT
            Not After : Jun  8 02:00:45 2025 GMT
        Subject: CN=fcebaf2a831f2e407ea5f0e5227720995cd4c124
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:37:1b:78:74:b3:c1:f2:41:3d:cb:78:77:61:
                    fe:58:e8:1a:16:f2:80:4a:dc:43:64:e5:69:e1:5d:
                    77:32:72:43:a4:00:90:40:18:cb:34:f4:63:e2:e7:
                    b0:f6:e9:78:e8:69:5d:7c:cc:27:41:21:f0:e9:b7:
                    6e:a3:c4:13:fb:22:ce:f9:0f:5d:0f:92:fd:8f:c0:
                    0d:bb:7a:df:a8:66:3f:25:fc:dd:1e:c2:fe:da:c3:
                    34:43:5d:20:40:d4:17:b0:ac:b5:d9:99:03:c5:d0:
                    4b:b8:61:a4:62:ce:3d:56:28:2e:8f:a9:bc:64:29:
                    53:5a:f1:d7:4a:29:5c:a4:52:fb:a5:af:06:d6:16:
                    fd:46:ea:56:99:5f:95:6d:34:54:c1:40:46:6a:c2:
                    74:bb:16:d1:4f:2d:23:25:a9:8d:6d:95:4b:c6:21:
                    87:08:14:e1:a5:6b:ac:73:1f:3c:d3:bf:0b:57:26:
                    15:e1:ea:33:37:99:09:d1:a4:09:c1:63:79:99:52:
                    7a:07:e7:6d:ae:bf:b1:c8:d4:09:07:ac:aa:40:3f:
                    7f:6c:b3:e7:f2:e6:25:59:99:92:63:69:23:52:36:
                    50:c7:71:9f:46:3d:ea:c0:02:85:43:98:40:2e:73:
                    e4:5e:d8:3e:82:f1:3f:c0:a4:cf:0a:83:c2:9f:38:
                    5a:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:EB:AF:2A:83:1F:2E:40:7E:A5:F0:E5:22:77:20:99:5C:D4:C1:24
            X509v3 Authority Key Identifier:
                keyid:B3:98:60:E7:99:D5:30:66:1F:15:21:35:46:22:8E:99:29:A5:3C:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5hg55nVMGYfFSE1RiKOmSmlPJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ab:5a:9a:cd:22:cc:6a:71:c5:d0:42:80:c4:58:c4:19:8f:cf:
         87:74:33:2c:58:e8:6b:ec:c6:5b:9d:8a:60:e5:e2:7d:bb:ac:
         e1:45:c4:96:ca:70:b1:c1:15:51:6d:5f:5f:a9:ea:2b:48:83:
         20:60:47:92:59:f3:27:37:8a:17:1e:03:93:9e:83:93:05:9c:
         8e:e3:03:6f:79:da:37:d9:53:62:c7:f7:45:1e:1b:7b:d9:55:
         f0:6f:09:6b:88:c9:b2:b3:78:33:35:cf:0f:63:c2:78:aa:ee:
         47:bd:34:2f:a1:57:94:97:0e:ee:33:43:5d:25:8c:c5:b7:2e:
         95:bb:9b:b2:ec:82:be:89:89:9b:43:9e:33:10:e9:db:0a:ee:
         6e:c8:28:0f:aa:5b:a0:01:41:5c:3c:d5:1b:ff:13:d7:ce:6b:
         6e:78:72:d7:de:88:f5:f2:d1:49:46:38:c4:1f:b7:22:7f:80:
         fc:3c:55:ed:65:0e:fe:c4:d9:ad:06:2f:fd:53:ea:43:84:35:
         a3:fd:5f:fc:c2:17:e9:77:c2:0c:bb:4a:fd:e5:33:09:bc:54:
         e9:e8:ff:d0:24:60:ff:55:6f:6d:36:55:9f:63:f1:18:9b:c9:
         06:e4:cc:e5:58:b5:19:a2:54:d7:10:8d:ee:97:12:47:56:2d:
         19:0e:6f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----