Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft
File:                     DSC_pCDAzV9fGNuOe9o1X-joW30.mft (raw, json)
Hash identifier:          GM3Ygui2bk5jDiG8pUjcuw4lnEgaO5mLfrFKCUyX5Ys=
Subject key identifier:   0B:15:50:4C:E0:06:24:E9:46:E9:BC:AA:93:11:5E:D8:8C:CB:28:37
Authority key identifier: 0D:20:BF:A4:20:C0:CD:5F:5F:18:DB:8E:7B:DA:35:5F:E8:E8:5B:7D
Certificate issuer:       /CN=0d20bfa420c0cd5f5f18db8e7bda355fe8e85b7d
Certificate serial:       019747E796503B4E196596C5014F215D8FFB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DSC_pCDAzV9fGNuOe9o1X-joW30.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft
Manifest number:          75
Signing time:             Sat 07 Jun 2025 01:00:48 +0000
Manifest this update:     Sat 07 Jun 2025 01:00:48 +0000
Manifest next update:     Sun 08 Jun 2025 01:00:48 +0000
Files and hashes:         1: DSC_pCDAzV9fGNuOe9o1X-joW30.crl (hash: GMJnNMkD4lktxXKzI0OtOM0I3RDBGLUxEfxsUwGd4j4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DSC_pCDAzV9fGNuOe9o1X-joW30.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:47:e7:96:50:3b:4e:19:65:96:c5:01:4f:21:5d:8f:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d20bfa420c0cd5f5f18db8e7bda355fe8e85b7d
        Validity
            Not Before: Jun  7 01:00:48 2025 GMT
            Not After : Jun  8 01:00:48 2025 GMT
        Subject: CN=0b15504ce00624e946e9bcaa93115ed88ccb2837
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:03:c5:f0:94:cc:6c:7c:f3:fe:65:6f:c9:95:
                    37:ba:16:80:6f:29:5c:9b:38:94:24:eb:5e:10:d3:
                    6b:5d:6c:55:4b:65:d3:d3:3d:60:f8:4f:30:31:a8:
                    c3:69:cb:83:02:11:72:32:6e:4e:45:e5:e9:28:1b:
                    b5:2f:e7:f8:51:3f:37:32:8d:c5:41:b3:4d:3b:91:
                    f2:62:b8:c2:e8:91:04:4b:25:52:74:6d:2d:f5:80:
                    6c:57:27:4f:1e:89:d6:b2:5a:00:b9:5b:49:15:e6:
                    d2:83:8c:d2:20:16:2b:5e:9c:1e:0b:4a:d7:58:67:
                    1d:60:ae:9d:1f:e4:30:e8:ca:84:81:67:7e:a9:47:
                    ef:6c:5b:6b:10:f4:f3:f8:64:b1:f0:b6:92:c3:8b:
                    cd:58:8f:c1:37:ef:b6:ce:4c:26:f9:3d:f1:a3:38:
                    ea:2d:8c:2f:89:a6:00:9f:b7:b2:ab:df:a4:83:b9:
                    9d:94:c2:c1:3e:17:f4:b0:a9:98:a5:6d:98:00:67:
                    fb:e7:f7:b0:26:67:0e:76:e5:d1:21:6a:df:79:b0:
                    51:a0:8d:df:fe:c5:42:d0:91:69:6a:e2:3d:6b:70:
                    b6:1a:58:5b:02:7f:0d:f8:a1:3e:89:c3:b3:ed:34:
                    b3:b2:b1:03:a0:80:31:29:b1:36:5c:ce:8b:02:9c:
                    12:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:15:50:4C:E0:06:24:E9:46:E9:BC:AA:93:11:5E:D8:8C:CB:28:37
            X509v3 Authority Key Identifier:
                keyid:0D:20:BF:A4:20:C0:CD:5F:5F:18:DB:8E:7B:DA:35:5F:E8:E8:5B:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSC_pCDAzV9fGNuOe9o1X-joW30.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:95:34:2b:4e:91:63:b9:56:f1:ec:9b:f8:3f:59:72:e2:92:
         f8:20:4e:c1:3c:52:6a:05:be:34:46:cb:2b:bb:9b:0b:8c:e8:
         25:94:75:96:e9:7c:45:86:aa:65:12:07:ce:e3:2b:a7:4a:3c:
         b0:2c:f3:75:63:ee:5f:7e:30:93:01:4d:cf:50:05:ea:aa:62:
         ce:52:4d:ff:31:f8:22:b7:f0:f7:30:a0:24:08:66:ea:b5:21:
         c9:4a:f8:ff:e9:c3:d2:bb:0f:01:bf:bc:f9:bb:44:13:0c:54:
         64:6f:35:b0:ed:95:77:44:2e:67:ef:37:e9:04:dc:46:b5:b9:
         02:e3:cf:a2:6c:d6:d4:be:f9:12:69:56:7c:26:0c:17:97:92:
         2b:de:de:b7:05:ce:53:b7:2d:84:ab:98:26:53:8b:aa:c9:19:
         bd:80:de:0b:46:91:e9:af:e4:5b:74:b9:65:61:1a:86:38:2c:
         71:23:f6:cf:24:42:d1:29:ef:27:29:95:f9:95:d4:96:8a:9e:
         7d:21:70:d7:09:8f:29:b7:67:6e:5c:38:1d:7d:ab:d3:c4:f2:
         d5:bf:44:70:b8:34:f0:87:44:20:21:0a:8e:28:19:1f:2c:14:
         75:03:0e:1a:0a:6a:cb:ef:e1:c4:bf:dd:68:a2:7d:72:8f:02:
         2c:76:45:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----