Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
File:                     5_y3rNVfY0m52BRheGwSRY-G9y4.mft (raw, json)
Hash identifier:          8/9f+OAqXy/JBrJvLsoCKTbXnES+kFN6g1WLb6/XsKI=
Subject key identifier:   5D:46:33:84:5E:4F:7C:74:DE:8F:E0:04:88:93:0C:86:CB:74:B0:5B
Authority key identifier: E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E
Certificate issuer:       /CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
Certificate serial:       01976102A80A8B8DEFDB1269B8F366DA0F3C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
Manifest number:          1585
Signing time:             Wed 11 Jun 2025 22:00:53 +0000
Manifest this update:     Wed 11 Jun 2025 22:00:53 +0000
Manifest next update:     Thu 12 Jun 2025 22:00:53 +0000
Files and hashes:         1: 5_y3rNVfY0m52BRheGwSRY-G9y4.crl (hash: uXmZqeP/D3kw3rW+WeD19yNuyTO9nu9c227cwW9xf6g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 21:26:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:61:02:a8:0a:8b:8d:ef:db:12:69:b8:f3:66:da:0f:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
        Validity
            Not Before: Jun 11 22:00:53 2025 GMT
            Not After : Jun 12 22:00:53 2025 GMT
        Subject: CN=5d4633845e4f7c74de8fe00488930c86cb74b05b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:70:a9:a5:17:44:bb:35:2b:c2:b1:6b:f2:4d:
                    8a:70:24:be:60:f9:16:a2:72:d1:fd:9e:cb:4d:8b:
                    60:f5:64:37:37:ef:35:bd:0b:e1:d2:36:ec:51:1b:
                    6d:a8:d5:ab:4f:31:ca:76:71:61:1e:f9:0c:3f:b5:
                    3c:b3:43:5b:b1:fa:71:a4:ee:5a:9d:68:db:f8:9c:
                    80:62:e2:7b:07:25:bb:55:8e:db:24:c6:3a:30:24:
                    d3:3e:8d:3b:82:f7:d2:a7:c7:10:26:2d:8b:79:b9:
                    3b:ee:19:5d:e9:bb:1d:81:f9:a4:f5:15:5f:b3:81:
                    07:4d:c0:ce:ff:26:a2:8c:73:03:3d:4e:2c:f5:cf:
                    f8:aa:e6:a0:40:6d:73:73:f8:60:d9:c2:08:87:7c:
                    2d:13:93:73:d2:c2:5f:97:e1:1f:27:ff:11:b5:f3:
                    7b:86:4a:77:26:20:dc:c0:76:81:30:f2:44:e1:a9:
                    42:d0:9d:f4:c1:04:ac:ed:d4:5c:60:c2:68:92:52:
                    4f:40:d7:f8:71:ff:83:66:65:63:fa:d3:95:45:c0:
                    19:0c:a4:20:68:88:ce:ec:43:74:8c:8a:b7:30:3c:
                    c8:ac:9d:f4:52:b9:31:f1:a7:20:9a:60:cf:0f:8b:
                    94:1d:1b:df:8c:44:41:f2:a7:98:74:ef:c1:18:b8:
                    3d:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:46:33:84:5E:4F:7C:74:DE:8F:E0:04:88:93:0C:86:CB:74:B0:5B
            X509v3 Authority Key Identifier:
                keyid:E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:4c:52:88:2c:d4:fc:a5:d6:d0:cf:f5:df:16:c6:ea:fa:b2:
         55:77:6e:2e:34:30:82:04:88:e0:e5:5e:b6:4b:52:eb:32:e9:
         13:e0:67:6e:d0:e5:5d:34:bb:d9:5b:6c:95:ab:8c:07:9c:f2:
         7f:59:cc:dc:c5:5a:a7:b5:12:4d:13:76:f7:08:32:f6:b4:bd:
         c9:e7:de:bb:f6:f8:b8:7a:fa:f9:c8:df:d9:36:43:f8:f3:3e:
         d9:ee:5f:ae:45:7c:fb:06:34:b4:e0:e1:82:27:98:fc:53:18:
         83:6b:ca:86:1a:88:7c:ab:c7:fd:89:5b:d0:b4:e2:fb:b7:b5:
         69:c0:e0:21:a5:4f:57:e6:fb:77:a1:1f:2c:f3:52:58:c4:33:
         7a:ea:19:48:37:d4:89:c5:c8:49:dd:78:3c:d5:35:b8:80:ad:
         28:28:8c:c9:9b:1d:4c:6f:c3:a2:62:54:72:51:c6:1f:c9:7b:
         83:e2:fd:b5:44:1b:f1:61:cc:8a:d0:0a:7e:ee:65:cf:f9:4c:
         0e:c0:b8:a1:23:c4:0c:65:50:60:29:be:85:ba:17:29:bc:47:
         6c:a6:10:61:56:25:2b:8b:86:c9:a6:bc:a3:8f:be:d8:5b:6f:
         21:ed:48:4a:82:08:16:a4:43:eb:ed:f4:36:48:67:10:3d:53:
         1b:07:90:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----