Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
File:                     dgynIUsW9YyV1i3vAFkVhtvSPKo.mft (raw, json)
Hash identifier:          skH39OIBINkjiqvBQfb5mfnDWf5FRfaMQB0eI0eNxUk=
Subject key identifier:   41:14:D1:FA:E1:5A:30:CA:D5:50:7A:BF:0F:BC:55:E7:35:E1:F1:49
Authority key identifier: 76:0C:A7:21:4B:16:F5:8C:95:D6:2D:EF:00:59:15:86:DB:D2:3C:AA
Certificate issuer:       /CN=760ca7214b16f58c95d62def00591586dbd23caa
Certificate serial:       01974A7A6FCC91F6819717146684B7C760B2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
Manifest number:          07EF
Signing time:             Sat 07 Jun 2025 13:00:26 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:26 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:26 +0000
Files and hashes:         1: dgynIUsW9YyV1i3vAFkVhtvSPKo.crl (hash: GF/dYA61cJ9YXKvhgkl903un/2yb1XC16M9oS9CLc20=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:6f:cc:91:f6:81:97:17:14:66:84:b7:c7:60:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=760ca7214b16f58c95d62def00591586dbd23caa
        Validity
            Not Before: Jun  7 13:00:26 2025 GMT
            Not After : Jun  8 13:00:26 2025 GMT
        Subject: CN=4114d1fae15a30cad5507abf0fbc55e735e1f149
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:48:16:e8:51:bb:91:67:0d:88:70:d2:e9:64:
                    9a:66:7a:ff:3a:46:b0:16:59:a5:c0:7c:f5:68:fd:
                    ce:40:94:53:34:0f:6f:b9:04:68:ef:f7:c3:80:98:
                    4c:c8:c8:33:fa:7e:9d:da:ad:ff:b6:d2:9b:91:35:
                    b8:ce:84:0c:c1:b6:fd:05:1f:29:90:ba:a3:a4:4d:
                    f6:19:af:b6:d1:3d:16:ae:6b:0e:29:50:0d:d6:ab:
                    b9:09:f5:0e:43:21:83:81:22:3c:5d:c1:53:b6:1d:
                    7d:0d:c6:92:5c:b5:ec:48:1f:d3:b2:46:40:7c:ad:
                    39:27:3f:2e:4d:a2:f5:7b:2d:94:b9:b1:95:00:ad:
                    56:21:d0:3a:e9:35:0b:45:9c:6e:87:41:82:0d:86:
                    b0:6c:58:ad:f1:44:98:2a:fc:95:37:d7:ba:29:54:
                    6e:15:de:67:b1:8d:f5:be:27:c0:cd:b8:e5:10:e5:
                    a9:99:0c:4e:d7:3b:2a:3d:2c:b4:20:db:38:60:3f:
                    11:fc:75:1f:9a:af:ee:24:60:7c:fe:42:9d:5c:80:
                    30:ad:83:71:c6:51:34:1c:ef:51:4f:ce:b5:0d:b1:
                    b5:37:da:7f:06:6d:5d:e7:db:a6:db:69:58:80:fd:
                    80:4f:a4:51:75:96:88:34:14:12:e1:dd:42:8c:9d:
                    6b:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:14:D1:FA:E1:5A:30:CA:D5:50:7A:BF:0F:BC:55:E7:35:E1:F1:49
            X509v3 Authority Key Identifier:
                keyid:76:0C:A7:21:4B:16:F5:8C:95:D6:2D:EF:00:59:15:86:DB:D2:3C:AA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:06:d5:9b:4b:2a:11:e5:65:ff:ee:ce:63:05:44:9c:d0:a5:
         f5:35:c5:57:33:8f:05:73:35:1f:d7:38:ad:3f:d6:ab:4b:f2:
         d0:e2:ca:b1:93:6a:a3:96:af:32:4b:e9:d6:aa:90:d8:45:7c:
         3d:53:e0:ca:6c:12:f3:37:7a:58:37:b6:d4:8a:2d:3d:25:da:
         1e:72:7c:ca:28:09:5d:75:de:57:be:c0:c0:be:94:4c:39:d6:
         f4:87:5d:65:55:60:8a:88:f0:91:cc:b5:89:79:36:5c:5d:49:
         dd:90:48:f2:f8:f2:ce:c4:8d:67:83:5d:82:08:cd:85:d7:7b:
         6f:2b:49:54:65:b9:f7:db:bb:25:54:fd:a5:b3:2f:21:95:83:
         d5:e6:84:00:00:d0:06:5b:36:a9:e4:88:53:b0:f4:f8:94:a1:
         74:01:7b:28:85:c6:7b:06:ed:f6:2e:d6:d8:87:32:f2:7f:02:
         51:11:fd:84:c1:d9:4f:c6:2e:0f:42:50:66:60:1b:a4:91:79:
         b6:94:7a:64:df:46:02:cd:06:ef:f3:4e:de:c0:62:f2:08:6d:
         69:32:eb:4a:fb:6a:28:36:c5:7d:a6:0c:21:d0:1a:a4:20:28:
         14:ca:d0:6e:63:a0:15:65:a6:66:bf:26:26:3e:93:e6:12:a8:
         65:fe:8d:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----