Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
File:                     UTIqxJAgylfHTzsUi8BBAsq63IM.mft (raw, json)
Hash identifier:          O0V348IuUoUXP0Utbr4GlfQPWF6Dwxjg5o05exMSQxQ=
Subject key identifier:   15:9E:C5:77:F5:57:39:99:68:CC:A3:42:62:90:7E:4A:4D:0A:5F:1C
Authority key identifier: 51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83
Certificate issuer:       /CN=51322ac49020ca57c74f3b148bc04102cabadc83
Certificate serial:       01974DB2CC9247BA379B060524630067B795
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
Manifest number:          105A
Signing time:             Sun 08 Jun 2025 04:00:52 +0000
Manifest this update:     Sun 08 Jun 2025 04:00:52 +0000
Manifest next update:     Mon 09 Jun 2025 04:00:52 +0000
Files and hashes:         1: UTIqxJAgylfHTzsUi8BBAsq63IM.crl (hash: 4iqhHIMEgIGFuPS9Y+CXAdx3d9sE2CFh4nlfHYc20vU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:b2:cc:92:47:ba:37:9b:06:05:24:63:00:67:b7:95
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51322ac49020ca57c74f3b148bc04102cabadc83
        Validity
            Not Before: Jun  8 04:00:52 2025 GMT
            Not After : Jun  9 04:00:52 2025 GMT
        Subject: CN=159ec577f557399968cca34262907e4a4d0a5f1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:87:f6:a7:b5:0a:05:49:89:a2:a1:f7:27:8c:
                    14:cb:7e:1b:c1:7a:71:51:a8:23:81:95:92:21:08:
                    ff:0c:20:df:4b:dd:17:c7:ff:7e:6d:9c:0d:e1:5f:
                    7f:eb:6f:6d:41:53:aa:3b:cb:5e:31:9d:91:d2:2d:
                    b0:28:02:46:f6:3e:c9:4e:61:a4:c9:1b:de:9b:3e:
                    a9:ae:5a:fe:fe:48:1a:b1:b9:32:1a:93:c7:2c:98:
                    14:a1:58:20:a5:6c:41:df:a0:c7:bd:1e:67:dc:cf:
                    c7:ff:10:13:9e:cf:7b:fb:51:4d:d4:64:4b:67:a5:
                    bc:c5:b2:3e:a7:d1:95:c9:15:e2:77:80:23:ba:76:
                    1e:15:44:31:53:3d:2a:95:c3:c6:68:3a:e8:91:20:
                    7a:13:c0:07:50:2e:6c:38:7e:07:05:b5:97:5c:a9:
                    d1:e9:b7:4f:49:ee:bd:e7:57:f6:06:cb:17:57:e6:
                    49:0b:d3:a0:07:f5:bb:d6:b9:23:5e:2a:0f:c6:9d:
                    c3:cc:8f:06:41:a7:f2:ae:de:d8:10:b1:db:6c:09:
                    b0:5e:db:eb:00:42:66:4d:31:18:75:0d:a0:9d:45:
                    e8:78:ed:8d:1f:01:46:53:78:6b:71:ff:17:e5:1d:
                    4c:49:d8:9b:c5:e4:a1:0e:18:60:17:14:0c:65:4f:
                    b1:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:9E:C5:77:F5:57:39:99:68:CC:A3:42:62:90:7E:4A:4D:0A:5F:1C
            X509v3 Authority Key Identifier:
                keyid:51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:ff:5a:9d:17:87:ca:c4:d8:06:69:55:67:0a:e9:cc:a2:56:
         d9:fc:42:60:94:ad:cc:75:4d:59:3f:d0:87:06:1d:c6:c0:79:
         e1:63:1c:85:3a:4c:c8:1c:4f:c3:32:56:be:84:42:32:8a:50:
         58:20:a1:54:5e:a1:d6:61:ca:37:36:c1:e9:dd:8a:a6:81:9b:
         26:c9:2d:7d:79:27:4f:2e:4c:53:ac:b1:74:14:28:bc:ea:53:
         d6:c7:8a:bb:a7:75:65:c4:5f:cf:37:74:fa:3f:02:e7:02:ab:
         09:d6:24:41:4f:4e:c3:89:58:ad:f2:37:6f:b6:71:dc:ce:4a:
         aa:59:8c:ec:1d:0b:d0:7d:d5:85:50:99:56:c8:61:f4:be:15:
         a7:a5:a6:2d:e6:c8:80:a1:47:34:b2:c2:a2:46:d8:3f:4c:89:
         12:2c:75:d7:7b:cc:32:9f:07:0e:94:f0:80:7c:40:e8:42:b3:
         ff:2f:56:9f:04:92:21:61:5a:bb:93:22:7a:2f:56:d0:8e:d6:
         16:0a:15:0d:da:63:b1:23:ae:63:63:d3:27:9d:16:ce:ab:d7:
         22:c3:f5:8e:58:c0:ff:7c:ea:ab:31:48:51:e4:ca:51:20:d0:
         21:70:8f:71:34:02:40:4c:5c:41:fb:38:97:62:6c:6d:c6:75:
         88:c6:d8:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----