Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
File:                     orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json)
Hash identifier:          JsBMzowJ2qNIAQvDkfGY0T0uiJYYCGqHz8Fcizfbiq4=
Subject key identifier:   34:64:DF:DC:D7:03:5B:9B:80:94:F4:B3:BF:71:D2:AB:31:C5:68:E4
Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62
Certificate issuer:       /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
Certificate serial:       01974A7AB63006F9F36EF07493F651B25E12
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
Manifest number:          031D
Signing time:             Sat 07 Jun 2025 13:00:45 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:45 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:45 +0000
Files and hashes:         1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: 6eYDv0biyn2ig3VdojYFx/Zy0z1La50DughJRIzDxsA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:b6:30:06:f9:f3:6e:f0:74:93:f6:51:b2:5e:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
        Validity
            Not Before: Jun  7 13:00:45 2025 GMT
            Not After : Jun  8 13:00:45 2025 GMT
        Subject: CN=3464dfdcd7035b9b8094f4b3bf71d2ab31c568e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:37:20:fd:cf:67:6e:88:0c:b0:d6:f5:07:9c:
                    c4:15:0a:9c:21:43:31:f7:1e:43:0d:9a:96:59:b3:
                    a3:f4:a6:58:d8:58:31:64:c5:75:8f:c2:35:bc:46:
                    14:87:a4:f6:ac:7f:c1:84:b5:2b:02:96:b0:f8:ad:
                    6d:af:6f:ba:bb:83:0b:c5:81:09:ba:dd:28:fd:58:
                    e9:f8:97:2e:bb:39:ea:44:bc:d1:b5:d4:29:d0:77:
                    b2:17:c9:d8:da:91:1a:1e:38:47:23:33:fb:4a:93:
                    e0:b6:78:f7:4a:2c:80:1f:e9:82:2b:88:78:93:01:
                    30:7b:40:98:c0:72:04:35:02:32:b6:8e:97:19:53:
                    3e:fd:94:31:e2:ef:06:c5:ae:52:5d:72:bd:2d:95:
                    bf:6c:59:d5:1c:30:3d:e4:7d:da:c1:79:fc:5e:ee:
                    85:ae:90:31:66:5b:a3:03:6e:2d:8d:10:34:18:f8:
                    50:a8:e9:df:16:b8:31:ae:6b:93:5c:f1:4d:e6:4d:
                    0e:fa:58:43:d8:ff:4f:cf:3d:17:09:42:e8:ac:45:
                    17:23:f7:5e:34:ad:d5:8f:1d:f7:49:a2:6a:c2:73:
                    ed:c8:b7:f4:a6:40:5d:a9:64:c4:72:19:b9:61:9b:
                    f4:3e:d3:b9:f0:85:75:c7:fe:e3:87:aa:f1:c9:32:
                    45:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:64:DF:DC:D7:03:5B:9B:80:94:F4:B3:BF:71:D2:AB:31:C5:68:E4
            X509v3 Authority Key Identifier:
                keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:c0:ea:ad:e6:2f:45:23:85:28:0a:16:69:ee:ce:c9:42:32:
         0e:d0:8c:4a:30:a1:d5:4b:02:77:0e:e2:d2:e5:e0:84:6c:12:
         58:d9:fc:42:8f:bd:b8:c2:a2:0b:be:3a:31:d8:8d:9b:ac:c4:
         8c:31:8d:76:d3:bf:a1:5a:f2:1a:ad:e3:1f:95:e7:e3:4b:1e:
         6b:a5:a2:ab:85:56:60:55:c2:9e:50:a8:07:7b:51:a2:d5:f3:
         21:74:57:d0:35:ff:5a:e2:7c:f3:6c:a7:1b:72:89:0c:08:b6:
         d5:59:95:28:8d:c3:2c:f9:35:57:48:a1:61:1e:e8:7c:2d:87:
         f8:f3:5e:b8:d8:b0:ba:35:24:7c:48:62:e0:1d:bb:b3:8c:27:
         f7:f4:b9:88:70:c9:f7:75:e8:1d:94:96:86:d3:b1:d6:60:ac:
         b3:cc:83:c0:f7:fa:4f:0a:36:d4:99:5f:16:05:57:f0:41:33:
         85:61:60:94:9b:1b:9d:a9:f8:f7:f9:c9:b3:bb:3b:80:09:dd:
         52:7e:96:1b:ed:a6:77:69:14:cd:57:76:b0:a6:a6:39:37:49:
         20:87:c9:72:2d:50:1e:71:00:c4:aa:d2:14:a1:e3:57:8a:b5:
         b1:51:dd:11:28:29:4b:99:ce:f7:03:d9:22:95:ab:37:20:ae:
         0a:d5:68:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----