Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
File:                     k0F7oKbrs_OxuCr3UPviioakGzU.mft (raw, json)
Hash identifier:          YWWEdqMH+J9As4mMGi79R9QeZi8NxxHDu/0i7HvtnBc=
Subject key identifier:   1E:17:A4:76:19:8F:AB:42:0E:C8:5F:DB:DF:C9:E7:96:46:BF:AC:95
Authority key identifier: 93:41:7B:A0:A6:EB:B3:F3:B1:B8:2A:F7:50:FB:E2:8A:86:A4:1B:35
Certificate issuer:       /CN=93417ba0a6ebb3f3b1b82af750fbe28a86a41b35
Certificate serial:       01975FB96D3F7B0C714178DF687DD6617280
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
Manifest number:          08A9
Signing time:             Wed 11 Jun 2025 16:01:17 +0000
Manifest this update:     Wed 11 Jun 2025 16:01:17 +0000
Manifest next update:     Thu 12 Jun 2025 16:01:17 +0000
Files and hashes:         1: k0F7oKbrs_OxuCr3UPviioakGzU.crl (hash: TEauDNjnMwknI3RDnip+BeKFWA9T/1TVGF9RgiU0h8U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:b9:6d:3f:7b:0c:71:41:78:df:68:7d:d6:61:72:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=93417ba0a6ebb3f3b1b82af750fbe28a86a41b35
        Validity
            Not Before: Jun 11 16:01:17 2025 GMT
            Not After : Jun 12 16:01:17 2025 GMT
        Subject: CN=1e17a476198fab420ec85fdbdfc9e79646bfac95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:45:a8:49:f2:75:a9:4c:e0:fe:4c:ec:f4:bc:
                    9f:42:22:32:a6:0a:4e:8a:f8:fe:03:7c:c4:47:ba:
                    61:c5:ed:b7:76:4d:6f:13:75:18:59:e7:99:c0:49:
                    b8:d2:e8:e4:6a:47:39:82:b9:e1:ec:e9:51:db:e4:
                    4b:d0:7d:12:2a:fb:26:9a:c3:29:f1:64:df:70:f1:
                    32:10:dc:79:fc:84:89:2d:9f:4c:1f:4f:18:5c:74:
                    5d:9f:76:be:93:f6:aa:29:6d:77:63:f8:83:4b:a5:
                    f8:16:cb:e8:20:17:43:e0:c8:fa:fc:24:de:13:10:
                    20:f3:85:5c:28:ab:5a:fe:50:47:e4:e9:da:1f:f6:
                    bc:cb:b7:b2:af:4f:a5:bb:eb:a6:32:e3:bb:8f:d3:
                    e9:82:13:d4:e1:98:10:7f:8d:36:86:8f:59:63:05:
                    f7:4b:d1:a8:0f:55:1b:7e:7d:ef:2e:fd:e2:48:ad:
                    e2:96:b0:61:b2:db:1f:53:6d:d1:85:c6:79:6d:5e:
                    19:c9:d1:cc:f8:ad:8b:c6:95:1c:f7:c9:0c:72:b4:
                    2b:d9:a4:29:21:a6:c4:4f:3c:0a:62:bf:63:e2:27:
                    1a:21:5a:54:e1:21:03:98:15:99:8d:e8:9c:74:66:
                    60:ea:ae:be:d0:d0:9c:97:67:55:d3:66:5b:68:8d:
                    41:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:17:A4:76:19:8F:AB:42:0E:C8:5F:DB:DF:C9:E7:96:46:BF:AC:95
            X509v3 Authority Key Identifier:
                keyid:93:41:7B:A0:A6:EB:B3:F3:B1:B8:2A:F7:50:FB:E2:8A:86:A4:1B:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:aa:66:ed:fb:74:e3:c8:4e:0c:14:ec:b3:40:b8:9c:c1:ce:
         3f:a8:cc:a1:d0:85:e6:a4:24:cb:db:18:b7:1e:28:72:f8:08:
         bd:51:5e:f3:6a:af:13:e7:d4:cb:88:09:56:33:2f:5a:0e:a6:
         27:60:d9:47:de:5f:7f:14:c9:f7:78:67:55:5b:2c:3a:1c:9a:
         f8:ca:c3:7e:bc:6a:3b:f8:a7:8f:37:0d:f9:e8:ec:66:7a:d7:
         f7:9f:99:f7:b5:9a:f6:0c:1a:b0:8e:24:c2:7e:cb:e3:22:e0:
         a8:9d:d5:53:b0:56:35:c5:66:e6:b4:0d:42:e8:8a:ac:57:b7:
         8f:4d:73:73:4c:c7:5f:eb:c7:6c:71:d6:cb:65:2d:4c:cc:de:
         e2:a2:51:cb:78:bb:25:48:9e:f2:e9:7c:d1:60:0f:6f:35:a2:
         b5:fd:b6:76:75:34:4c:52:99:69:4f:d8:34:74:1c:cb:c7:c2:
         6e:f5:7e:23:9e:68:8a:b1:7f:d7:ce:5e:28:1c:0b:4e:1f:cb:
         46:86:29:51:70:53:00:ea:3a:0f:d7:74:04:92:0f:63:59:db:
         82:9c:c3:b5:d0:2b:af:9f:40:07:c8:f6:14:41:fe:ff:48:25:
         c3:47:7a:dd:ed:aa:ef:f7:e3:ef:bb:2c:ef:09:60:c7:13:55:
         33:53:5c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----