Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft
File:                     JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft (raw, json)
Hash identifier:          D5NqDrs46yVqYg+EnPK3WvBYOZms8Zfjpf2WuGdixzM=
Subject key identifier:   0E:27:23:61:1A:6B:FC:E5:CE:AB:B4:18:1C:0B:B0:35:79:6E:F5:01
Authority key identifier: 25:A2:90:55:9F:72:A7:01:23:1C:02:8E:70:A2:50:69:03:55:A6:39
Certificate issuer:       /CN=25a290559f72a701231c028e70a250690355a639
Certificate serial:       01975DCB2B073179C2D189CEED70BCD173D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft
Manifest number:          12C6
Signing time:             Wed 11 Jun 2025 07:01:25 +0000
Manifest this update:     Wed 11 Jun 2025 07:01:25 +0000
Manifest next update:     Thu 12 Jun 2025 07:01:25 +0000
Files and hashes:         1: JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl (hash: eaPO/ntzia8cR+zzdVU6jvxsG9bYRmmvOAlh+x2UCHk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 07:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:cb:2b:07:31:79:c2:d1:89:ce:ed:70:bc:d1:73:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=25a290559f72a701231c028e70a250690355a639
        Validity
            Not Before: Jun 11 07:01:25 2025 GMT
            Not After : Jun 12 07:01:25 2025 GMT
        Subject: CN=0e2723611a6bfce5ceabb4181c0bb035796ef501
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:c4:75:98:25:2b:1c:6b:25:1b:f5:20:a1:8f:
                    94:ff:80:f5:0b:b1:a0:81:4c:1e:5d:2d:85:cc:75:
                    93:58:ed:c2:87:1b:4a:17:40:1d:4f:1e:7b:15:68:
                    03:11:24:64:70:81:92:8a:ff:30:9d:8f:a3:11:98:
                    ee:95:fe:56:21:e3:2d:18:b9:99:44:c2:b3:09:87:
                    5c:cb:3e:c7:0a:1b:fa:84:90:c2:28:d5:d5:04:38:
                    90:3a:c1:3d:a7:40:51:6e:ca:b8:73:bc:50:9b:7c:
                    4d:11:7b:a3:73:fa:bc:41:a6:8f:c0:6f:f8:ef:5a:
                    cf:3b:22:cc:00:2b:26:7e:d6:14:91:19:6b:3a:3a:
                    27:9e:ab:93:ef:9d:36:c2:be:a6:07:19:ec:c4:16:
                    d3:6e:0c:e0:76:d2:8e:74:42:01:f4:4d:bd:52:0e:
                    f4:07:01:a1:b1:ae:93:62:79:3f:74:55:35:53:fa:
                    72:c9:cc:6c:b3:d3:69:60:33:f8:e5:65:f5:6e:29:
                    f8:0e:af:91:2b:44:5a:d3:aa:36:bf:bd:f5:3e:88:
                    29:c3:f7:c3:8d:a4:39:a6:4d:91:c8:50:07:20:45:
                    d9:84:a1:a7:87:e6:31:f9:d6:91:05:c1:d7:09:de:
                    f8:a2:58:89:13:1a:ca:47:df:1c:66:2b:9f:c0:ce:
                    f4:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:27:23:61:1A:6B:FC:E5:CE:AB:B4:18:1C:0B:B0:35:79:6E:F5:01
            X509v3 Authority Key Identifier:
                keyid:25:A2:90:55:9F:72:A7:01:23:1C:02:8E:70:A2:50:69:03:55:A6:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:05:83:89:5b:6c:e7:ba:52:e8:b4:97:62:7c:c1:51:c3:56:
         ed:f9:b5:bf:5c:90:3a:5f:64:ab:a7:50:54:92:1e:33:88:34:
         9e:0e:88:f6:a9:92:ab:1c:7c:04:67:42:75:a3:87:9f:f7:18:
         67:33:35:a3:41:d6:d4:cf:47:48:e8:bc:46:b2:16:83:e1:03:
         6d:76:88:d6:9f:66:e9:a7:2e:93:d0:3b:77:4c:b4:57:7f:2a:
         dd:ca:8b:fe:07:49:61:f2:94:d1:52:ec:5d:fb:a0:ad:0f:fa:
         e7:22:f1:54:8f:ad:e1:5f:29:71:04:f8:a5:4b:c2:18:3c:e1:
         b8:dc:8e:b6:35:dd:b3:f8:bc:12:41:23:b7:a5:ea:eb:2e:1e:
         30:45:80:be:d4:2a:e8:d3:97:a1:fe:ca:e6:ca:e0:f1:0f:f0:
         eb:ce:2f:ed:70:ba:d2:6b:60:13:4a:7d:26:b2:c1:35:45:24:
         5f:1e:c3:da:a5:c8:f3:21:66:c8:6d:58:ec:18:9a:35:41:d3:
         31:28:69:41:26:45:26:ba:1a:3c:4b:77:e4:a4:ec:e9:14:48:
         d2:33:0c:a3:95:88:16:bd:13:35:fc:d5:f6:fe:89:e8:e5:5d:
         35:86:90:29:0d:59:b4:f3:d2:b1:e2:50:ad:2f:5d:3e:d0:1c:
         29:50:09:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----