Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft
File:                     IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft (raw, json)
Hash identifier:          efSgRQxYwj7px5xUwMVih/EwHfa1jgBEFxv4I95dJGU=
Subject key identifier:   FE:1E:31:28:6C:F8:FE:B8:9A:B5:9A:D6:8E:73:31:54:93:32:50:FE
Authority key identifier: 21:D8:5D:23:1A:D5:4B:84:39:C2:AA:ED:91:A5:77:58:6A:C4:60:00
Certificate issuer:       /CN=21d85d231ad54b8439c2aaed91a577586ac46000
Certificate serial:       01974DB2D1BFBB030F22D9143E2188B630DC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft
Manifest number:          1080
Signing time:             Sun 08 Jun 2025 04:00:54 +0000
Manifest this update:     Sun 08 Jun 2025 04:00:54 +0000
Manifest next update:     Mon 09 Jun 2025 04:00:54 +0000
Files and hashes:         1: IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl (hash: q8MLG64t1E93zO+vbG43UlshYF32bRUO2VEfyYpzAj4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 04:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:b2:d1:bf:bb:03:0f:22:d9:14:3e:21:88:b6:30:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=21d85d231ad54b8439c2aaed91a577586ac46000
        Validity
            Not Before: Jun  8 04:00:54 2025 GMT
            Not After : Jun  9 04:00:54 2025 GMT
        Subject: CN=fe1e31286cf8feb89ab59ad68e733154933250fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:00:ed:cd:c1:cc:fa:c1:be:fe:b1:47:4c:40:
                    ac:bc:01:ef:2d:67:5e:db:6f:a8:16:92:7b:bc:71:
                    f0:22:87:68:09:d1:0b:44:7d:c1:7f:e8:01:5a:be:
                    e8:a4:54:ee:9f:c1:a2:4e:46:7f:58:16:8c:f0:4e:
                    e3:ae:67:cf:e2:49:fd:90:49:e1:38:2c:6b:d2:03:
                    40:d9:dc:36:89:8b:17:40:28:75:d2:b9:fe:54:98:
                    c6:f6:63:86:0b:b1:35:b7:b0:c2:ad:73:b5:c0:c8:
                    e9:35:ca:7b:e8:88:58:14:d4:16:e2:4e:fb:88:70:
                    a6:13:53:87:ae:cd:c3:d6:8a:f8:ef:97:3a:fe:52:
                    43:5b:55:c3:77:01:ce:27:36:10:16:de:f6:3e:91:
                    8a:4b:91:07:97:b7:09:63:07:fe:61:de:46:f3:6b:
                    6d:af:6f:08:f7:1a:9c:01:2b:d8:83:d4:39:d0:21:
                    94:2d:89:03:f2:78:8c:f9:f9:c0:5a:4c:ac:e5:7d:
                    cc:ca:b9:2d:5d:3d:5a:39:f8:7e:8a:56:29:e8:9e:
                    d6:7d:17:84:02:9a:88:6c:2a:ef:e0:da:44:19:4a:
                    7f:71:cd:53:8e:7c:85:c0:2e:66:85:19:78:db:a7:
                    4b:09:d7:24:e2:eb:c7:64:96:65:e0:2a:dc:18:82:
                    1b:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:1E:31:28:6C:F8:FE:B8:9A:B5:9A:D6:8E:73:31:54:93:32:50:FE
            X509v3 Authority Key Identifier:
                keyid:21:D8:5D:23:1A:D5:4B:84:39:C2:AA:ED:91:A5:77:58:6A:C4:60:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:35:cc:7d:7d:33:89:73:89:46:68:ca:1e:6a:64:81:90:43:
         ca:39:f1:9c:ba:01:65:86:92:94:5c:ef:b8:a0:b5:16:b5:cf:
         a8:69:8e:c6:6a:ad:29:05:f0:a9:c2:6a:f9:3e:d4:77:e9:42:
         39:a6:5d:44:21:92:ca:da:09:74:b1:c9:6b:cb:4f:09:6b:2a:
         da:1e:68:1d:6b:29:dd:d3:c5:8e:9c:83:30:1e:e5:16:df:3f:
         aa:38:ce:a8:a9:d7:15:62:32:a3:89:d1:d6:05:32:5c:22:44:
         19:cb:eb:27:9f:02:9e:20:03:fe:c3:a4:af:50:7b:af:bc:41:
         f3:56:46:7d:0c:19:e1:04:c3:c6:b3:20:15:3f:fa:8a:d7:72:
         1d:8d:5f:5b:ef:ae:e9:14:dd:41:87:f0:65:e1:dd:5f:12:34:
         ad:25:2c:bc:cc:cc:73:95:61:2c:c3:ea:a5:4c:0c:e5:d3:c9:
         b7:09:54:76:d2:20:b8:9c:0a:c5:71:4b:b9:0f:45:7f:a8:6d:
         e9:f7:a8:20:1e:2f:17:86:27:78:8b:b8:dd:e5:7f:c6:34:47:
         6c:8a:a0:d9:85:9f:90:ba:ca:b3:c3:7e:bf:ce:e0:bb:31:cb:
         91:bc:12:31:d1:23:f7:60:ef:40:c2:70:05:3d:05:a1:b1:e3:
         52:45:22:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----