Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
File:                     4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft (raw, json)
Hash identifier:          53ZSr2RWE49DlfkM4McwfwZxrl3L4+YLFfDHdw4AALQ=
Subject key identifier:   DE:F5:B6:2A:1B:B5:97:BC:96:E2:CC:B4:2C:B7:1B:FB:F9:C0:D5:46
Authority key identifier: E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC
Certificate issuer:       /CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
Certificate serial:       01976D3D5C4F86C0A845F81E5C8491E032B6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
Manifest number:          158C
Signing time:             Sat 14 Jun 2025 07:00:27 +0000
Manifest this update:     Sat 14 Jun 2025 07:00:27 +0000
Manifest next update:     Sun 15 Jun 2025 07:00:27 +0000
Files and hashes:         1: 4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl (hash: 5wNz8oPiMd7296HWLMrTVhpU3RMDJ632vu4Feupxldw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3d:5c:4f:86:c0:a8:45:f8:1e:5c:84:91:e0:32:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
        Validity
            Not Before: Jun 14 07:00:27 2025 GMT
            Not After : Jun 15 07:00:27 2025 GMT
        Subject: CN=def5b62a1bb597bc96e2ccb42cb71bfbf9c0d546
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:2e:04:d0:9c:a2:0d:ed:d7:ff:69:18:62:fc:
                    91:83:7d:72:2b:83:7e:11:1f:24:68:e4:03:8b:e0:
                    46:a3:56:49:68:a5:eb:40:da:b7:ee:a5:55:62:42:
                    ba:7a:c7:12:93:3a:58:58:34:12:41:89:d1:aa:22:
                    63:23:7a:9d:5b:12:0c:f5:62:68:b6:f0:90:97:99:
                    9b:6e:08:bf:ad:42:63:44:16:ab:45:a4:c7:9b:e6:
                    20:69:65:f8:08:75:35:73:a3:27:a2:d2:31:22:05:
                    a7:78:6f:63:ff:e2:98:e6:64:76:aa:25:47:5d:bc:
                    e3:ef:8f:73:46:a8:03:5e:a8:db:31:39:9e:11:f9:
                    94:d8:57:bf:e6:db:24:cf:d2:2d:16:cb:5b:0c:6f:
                    4e:cd:3d:23:6d:ba:8a:3c:43:bd:88:eb:83:dc:09:
                    35:89:51:e7:9c:0e:08:a2:d5:db:2e:9c:93:73:b7:
                    31:55:b8:e8:dd:f2:c8:a1:1a:7e:4a:47:d0:0b:10:
                    eb:69:fa:6a:76:1b:7d:e4:92:8b:a1:a0:d7:ab:70:
                    7d:f0:0a:18:86:75:69:be:28:dc:da:45:5e:af:0b:
                    24:32:32:09:89:b5:45:38:03:81:a8:17:4f:44:d7:
                    f9:7d:38:d2:63:78:8b:74:18:7d:8d:b2:79:b7:1e:
                    17:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:F5:B6:2A:1B:B5:97:BC:96:E2:CC:B4:2C:B7:1B:FB:F9:C0:D5:46
            X509v3 Authority Key Identifier:
                keyid:E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:96:4f:89:5b:a3:ec:58:51:a7:7a:88:22:86:5a:70:94:34:
         9d:e8:c7:79:b9:d7:81:fe:f5:1d:81:7e:22:65:aa:a2:0f:6e:
         ea:51:29:d4:d8:3c:d5:2a:c2:6e:f3:b1:57:95:8e:0d:72:cd:
         a8:d7:60:a5:8c:3f:c5:84:d5:4b:5c:35:13:36:cb:30:09:12:
         a0:28:62:ec:ee:f3:82:4f:47:f9:2b:f9:1b:dd:23:af:40:a1:
         64:c6:c0:0d:27:22:1a:cf:79:d1:6d:fc:40:bb:97:56:b4:c9:
         82:74:95:60:b7:c0:d1:32:3c:ec:b5:4f:45:11:1e:9a:a8:73:
         5f:03:fc:42:74:1e:e1:2c:0a:a1:1d:aa:bc:e1:8b:e7:81:2f:
         e4:cb:4c:22:27:59:a2:d0:8f:fe:e5:c6:28:33:d5:81:62:42:
         08:e2:50:66:d0:5b:8a:3b:5f:2e:4d:a0:6f:0d:f2:7b:89:a8:
         95:23:e7:b6:b1:8d:c4:9d:e5:f8:38:aa:2a:a4:01:a1:b2:eb:
         29:bd:6c:35:bf:9b:81:39:d1:dc:0b:a6:79:d1:86:26:5e:b3:
         75:7d:12:b8:f2:91:1e:7f:d8:00:7e:0c:41:45:8b:01:e2:8e:
         00:8b:b4:aa:d4:7c:f5:87:d6:4e:e3:e0:75:bc:03:bd:10:0a:
         64:3c:87:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----