Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
File:                     fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft (raw, json)
Hash identifier:          NNXRz0zownqEHSG3HmTXLJhWVgxh8GgH5O69KQ/FVO0=
Subject key identifier:   B9:93:D8:65:DD:2E:86:38:98:4C:54:A1:46:58:4D:6F:9C:CF:68:12
Authority key identifier: 7E:04:DD:9C:82:B1:91:A5:F0:9D:60:6C:A5:50:C0:17:78:5A:EE:C4
Certificate issuer:       /CN=7e04dd9c82b191a5f09d606ca550c017785aeec4
Certificate serial:       01974C6996EEEB67CF02CE3438B162255423
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
Manifest number:          157A
Signing time:             Sat 07 Jun 2025 22:01:17 +0000
Manifest this update:     Sat 07 Jun 2025 22:01:17 +0000
Manifest next update:     Sun 08 Jun 2025 22:01:17 +0000
Files and hashes:         1: fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl (hash: ByHgIQOJkxCkOIt2F29i6ue+WPDHoCh63y1CcpiDQk0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 22:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:96:ee:eb:67:cf:02:ce:34:38:b1:62:25:54:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7e04dd9c82b191a5f09d606ca550c017785aeec4
        Validity
            Not Before: Jun  7 22:01:17 2025 GMT
            Not After : Jun  8 22:01:17 2025 GMT
        Subject: CN=b993d865dd2e8638984c54a146584d6f9ccf6812
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:d8:59:a1:e0:27:dd:8f:2d:19:f1:04:f6:49:
                    70:f4:6f:11:74:66:d2:ec:10:84:97:ae:d0:3b:42:
                    4a:cc:0a:19:90:93:cb:0d:16:71:bf:4f:aa:84:bd:
                    43:3c:b9:9b:71:b0:ea:78:45:1a:cd:7d:b3:0c:0a:
                    5d:8e:e0:b2:4e:5c:0f:c7:a3:91:42:d7:17:aa:01:
                    6d:bb:18:71:47:f5:9b:b0:5f:cf:64:9e:9b:1a:e4:
                    73:b9:ac:bf:93:7d:a5:76:34:f5:61:93:84:0c:26:
                    40:28:94:27:a6:8b:96:88:95:50:2b:a8:0e:e6:04:
                    45:e8:55:b0:8b:52:fc:ad:2c:31:8f:c1:cb:8e:f1:
                    9e:cd:d9:74:19:f1:f5:d5:91:ea:c1:2b:02:b0:38:
                    8f:99:92:1f:9e:7d:74:8d:e8:ed:02:b5:57:f5:42:
                    41:af:e8:0c:48:f2:ed:da:92:c3:5f:9b:26:d5:bc:
                    3f:7c:b8:6c:00:8a:5d:cf:ff:5f:4c:25:f7:9d:a2:
                    34:1e:8b:a3:1d:55:c7:fb:8b:b0:ee:14:5e:04:b6:
                    2b:36:1a:b5:a7:61:05:c1:4d:be:7f:ad:57:4d:35:
                    d7:10:f1:64:24:77:eb:7e:e1:33:92:83:82:5b:ce:
                    ab:74:28:ae:0c:0f:23:f3:ea:35:87:e7:d2:b0:2d:
                    95:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:93:D8:65:DD:2E:86:38:98:4C:54:A1:46:58:4D:6F:9C:CF:68:12
            X509v3 Authority Key Identifier:
                keyid:7E:04:DD:9C:82:B1:91:A5:F0:9D:60:6C:A5:50:C0:17:78:5A:EE:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:a0:2b:75:89:f8:b2:c0:11:96:f7:3b:7f:88:f3:91:6d:c8:
         1b:82:d3:5e:67:79:92:f9:b0:79:a3:b5:1d:57:e3:ac:d1:ac:
         8d:e7:45:53:93:8c:91:5e:39:e4:94:3c:e3:43:2a:81:af:32:
         ff:21:6b:e1:a3:19:1e:4d:9b:ee:7d:69:7d:ab:36:f6:b5:ef:
         eb:d1:7c:ed:a2:de:6b:7f:1e:e3:03:ae:f3:8f:4e:66:ed:e7:
         77:0b:8d:46:d2:77:57:af:76:3e:67:7a:35:1f:91:55:9f:84:
         f1:3c:1d:00:69:5c:0a:81:c7:6e:16:81:15:5f:a3:43:ec:c6:
         f4:f4:e9:02:62:8f:32:ef:2f:91:79:65:99:56:9e:9d:29:7a:
         f9:07:b0:32:a7:c4:21:a1:63:cd:e9:8e:4c:42:33:1f:30:12:
         c2:4b:f4:1f:c2:c2:4b:f4:33:0a:ea:3f:73:d2:11:81:a0:50:
         14:cb:e2:fb:72:b0:4f:a7:e0:07:37:d1:ef:15:69:8a:68:6f:
         51:87:75:4b:a5:a1:75:7f:0b:ad:73:db:85:04:d0:f1:15:11:
         b3:c7:3a:1e:aa:22:b0:d0:e8:09:af:50:ad:7d:85:be:fc:9b:
         61:61:0e:f0:c1:78:88:c0:6d:a8:68:19:04:e8:ae:67:3f:c7:
         d3:1b:fb:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----