Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
File:                     YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft (raw, json)
Hash identifier:          MMNf1w2/JpK36IPrisVa23KL+t4SKqQL0CP9uByBTZI=
Subject key identifier:   FE:2D:A5:F8:9A:DB:51:D3:7A:F4:49:92:90:9E:27:22:7C:9A:EA:5C
Authority key identifier: 60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30
Certificate issuer:       /CN=6062b21fb6655b897923e29d6fcb644ab10ac530
Certificate serial:       0197477A029303826CDBA3A033312AC31DC1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
Manifest number:          1578
Signing time:             Fri 06 Jun 2025 23:01:07 +0000
Manifest this update:     Fri 06 Jun 2025 23:01:07 +0000
Manifest next update:     Sat 07 Jun 2025 23:01:07 +0000
Files and hashes:         1: YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl (hash: G1xhtf+FpXN078xl//2nhecsqY264BZ4LYh2Cn82qEQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:47:7a:02:93:03:82:6c:db:a3:a0:33:31:2a:c3:1d:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6062b21fb6655b897923e29d6fcb644ab10ac530
        Validity
            Not Before: Jun  6 23:01:07 2025 GMT
            Not After : Jun  7 23:01:07 2025 GMT
        Subject: CN=fe2da5f89adb51d37af44992909e27227c9aea5c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:9d:42:00:45:fa:a9:72:0a:07:68:b8:4a:cf:
                    3b:d9:40:5a:17:46:f9:b8:c9:3a:80:01:06:78:6e:
                    22:65:18:7d:5e:1b:fe:6c:db:03:21:8d:dd:3d:62:
                    4b:e3:b6:7d:62:8c:db:87:20:92:8e:d7:48:f4:60:
                    bb:97:d0:10:05:74:6b:89:85:f2:e0:9c:3f:80:18:
                    38:38:88:61:13:36:bd:82:73:49:d2:c6:3b:39:e2:
                    95:fe:41:9f:ec:fd:d9:14:82:81:14:24:ea:38:c9:
                    f0:12:f0:43:52:92:61:62:ce:eb:a3:e4:39:5a:5c:
                    cd:ab:4f:af:dc:df:a7:aa:9b:69:59:93:6a:e8:9f:
                    97:df:24:2d:31:89:5b:e0:9d:2d:37:e5:02:fe:44:
                    29:db:df:be:63:92:66:99:95:b4:d3:77:20:b0:cc:
                    41:23:e2:18:97:a4:a9:eb:41:e6:59:f7:37:9e:21:
                    4a:40:b6:dd:ab:c7:50:9d:f2:71:9e:79:ba:91:36:
                    9f:0f:73:22:89:10:a1:e2:2b:a6:78:b9:e9:e4:0d:
                    c5:10:f9:f5:2c:e8:05:a5:6d:49:ee:28:4a:2b:00:
                    36:75:6a:70:41:00:3e:a9:99:64:a3:16:74:55:be:
                    ed:4c:15:ff:92:65:d6:34:5e:83:f0:fc:33:66:59:
                    0b:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:2D:A5:F8:9A:DB:51:D3:7A:F4:49:92:90:9E:27:22:7C:9A:EA:5C
            X509v3 Authority Key Identifier:
                keyid:60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:46:ff:41:16:55:f8:99:84:77:09:44:82:39:3d:b9:64:6c:
         e1:3e:d1:15:5b:3b:26:2f:85:d1:d3:15:64:1e:65:65:c5:b8:
         7e:45:68:61:b4:cb:c0:48:c3:40:ed:f7:c4:d8:ed:8f:e1:4a:
         5b:28:15:f1:6f:74:8c:92:d0:cd:dc:d1:2b:2e:06:38:12:5c:
         56:d4:0e:da:95:d1:bb:0b:0f:e1:40:02:69:aa:3a:af:8f:d7:
         5c:e9:a5:a9:a9:67:5d:cb:14:da:3b:ab:26:1d:3a:c1:95:0d:
         9e:11:bf:95:b9:a1:f7:6c:31:e3:52:0c:e9:a0:c2:27:c7:9b:
         bc:1d:78:c3:cf:a4:fd:71:f3:59:1b:28:96:f3:4d:e3:f4:cc:
         3f:34:bc:fc:89:7c:19:00:50:bc:a0:2a:23:4b:65:7a:1b:24:
         a5:92:42:61:4a:11:47:cb:f0:95:0d:73:7d:2e:d9:84:87:a5:
         58:80:77:52:8b:8f:7e:9b:72:1c:dc:18:73:71:bd:a1:ec:83:
         40:87:9d:5a:e5:a7:34:3d:4d:d8:38:ab:22:8c:df:c2:6c:52:
         f4:b1:01:37:1c:f5:c0:a6:d4:49:88:c5:19:82:0b:6b:50:3b:
         03:ef:0b:d0:3a:bc:23:f6:28:27:d5:2d:de:2c:5e:79:85:10:
         fc:f8:0f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----