Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft
File:                     d1xabqkPXz0AfBDkROO5Y7bTDMU.mft (raw, json)
Hash identifier:          hR1h1s8ShSuAeWY6wwFWSLHyGM2p6VRBdC7DBfjK0Yg=
Subject key identifier:   49:07:0C:6A:6C:E9:8C:CD:20:3E:14:BB:60:07:74:F9:21:3B:90:5D
Authority key identifier: 77:5C:5A:6E:A9:0F:5F:3D:00:7C:10:E4:44:E3:B9:63:B6:D3:0C:C5
Certificate issuer:       /CN=775c5a6ea90f5f3d007c10e444e3b963b6d30cc5
Certificate serial:       01974F3319778B20ECF3CF3F726341C0EE8D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d1xabqkPXz0AfBDkROO5Y7bTDMU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft
Manifest number:          0359
Signing time:             Sun 08 Jun 2025 11:00:38 +0000
Manifest this update:     Sun 08 Jun 2025 11:00:38 +0000
Manifest next update:     Mon 09 Jun 2025 11:00:38 +0000
Files and hashes:         1: d1xabqkPXz0AfBDkROO5Y7bTDMU.crl (hash: tVRKfnLEpi0Hq4d9de+Wn3aU/Mip/w94EfJehv4Efuo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d1xabqkPXz0AfBDkROO5Y7bTDMU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 11:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4f:33:19:77:8b:20:ec:f3:cf:3f:72:63:41:c0:ee:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=775c5a6ea90f5f3d007c10e444e3b963b6d30cc5
        Validity
            Not Before: Jun  8 11:00:38 2025 GMT
            Not After : Jun  9 11:00:38 2025 GMT
        Subject: CN=49070c6a6ce98ccd203e14bb600774f9213b905d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:fa:d1:e0:9a:f3:c9:36:a0:09:6f:aa:cc:57:
                    ad:14:75:e7:4d:fa:49:0f:df:7b:d6:7f:fb:db:66:
                    42:f3:7b:8c:67:8d:c2:2f:bd:2a:38:e9:5f:5e:1d:
                    f4:c4:0f:52:7a:ab:86:12:36:8e:1e:56:a7:e2:97:
                    87:f9:87:8f:6b:4c:79:90:5e:78:50:a6:f3:d0:4f:
                    a8:0e:38:c9:5b:0d:a3:da:19:f1:74:66:b5:0b:88:
                    22:ee:0c:96:67:54:7d:f4:3a:82:4a:28:8e:80:8e:
                    82:f6:ee:02:d1:a8:e3:cb:9b:3e:98:b0:38:ee:fc:
                    24:74:bf:be:7b:48:b7:bd:94:ba:da:c3:42:51:14:
                    8b:e6:0a:b4:10:f3:7e:67:3e:14:f5:99:a1:08:a0:
                    73:a4:8c:86:ba:b4:ff:8b:4a:16:a0:88:1a:69:66:
                    11:e5:98:01:fc:75:85:fa:f3:29:23:48:4a:69:ff:
                    f1:44:3c:aa:bd:e7:5c:a2:ad:be:e6:dd:28:77:e8:
                    87:6c:b7:de:d8:1a:7c:b6:db:cf:a1:93:0a:8b:56:
                    b7:1e:9d:8e:e2:44:d0:7e:3c:bf:4d:2e:8c:80:57:
                    74:cd:52:cc:4b:93:41:6f:87:28:52:c7:c6:d4:3b:
                    be:11:95:c2:40:90:c1:9b:b7:8d:ac:8c:58:a6:fc:
                    6d:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:07:0C:6A:6C:E9:8C:CD:20:3E:14:BB:60:07:74:F9:21:3B:90:5D
            X509v3 Authority Key Identifier:
                keyid:77:5C:5A:6E:A9:0F:5F:3D:00:7C:10:E4:44:E3:B9:63:B6:D3:0C:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1xabqkPXz0AfBDkROO5Y7bTDMU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:cc:6b:84:cd:d9:3f:13:96:22:04:04:49:b1:ef:b7:69:11:
         fc:64:ac:0f:3d:8f:31:63:f8:31:ad:ef:29:a0:fa:ee:bc:ca:
         80:02:01:ea:5c:65:e2:5e:6f:76:57:93:cd:39:d6:5f:dd:cc:
         e1:cd:d6:54:3f:25:0a:a5:49:52:4e:a3:3f:31:36:1e:2a:a6:
         2f:3f:fe:30:b9:0a:05:03:94:77:d6:2b:5a:b1:b9:9c:66:7a:
         18:4f:6c:27:52:5a:61:c6:0a:c7:2a:f3:67:88:43:60:6a:a6:
         b4:21:c8:6e:70:56:ee:a4:9f:69:e2:d3:b0:b1:1f:78:66:3a:
         33:d2:6c:b1:e6:76:ab:57:ee:f2:cc:43:80:42:b9:27:9f:26:
         09:58:ce:1b:89:ae:17:3f:63:09:0b:81:0d:e9:65:23:e6:a1:
         55:c5:56:4b:31:67:c5:73:b0:1f:ad:44:1c:17:1d:5f:09:9a:
         f8:69:e3:cb:7c:48:aa:85:c4:2e:d0:72:8c:c8:94:b6:b8:5e:
         bf:ec:58:ce:b4:6c:ff:05:99:47:3b:26:44:84:40:05:66:cf:
         5e:f8:f2:3b:ae:09:ff:00:6b:cb:87:94:2a:3e:ed:21:33:82:
         09:a5:20:72:ab:4e:6d:94:9e:c8:c1:8e:8f:cb:fe:63:ee:8a:
         37:15:38:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----