Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft
File:                     MAhC2wg32vMRozS3IjGOcLWIsAk.mft (raw, json)
Hash identifier:          INNr73wxybooruXhWYaVTVz3W6CQqVnXvs/swigiwLw=
Subject key identifier:   7E:6B:D1:87:D3:26:54:FB:6C:29:AD:40:AB:80:DD:43:5B:7B:78:03
Authority key identifier: 30:08:42:DB:08:37:DA:F3:11:A3:34:B7:22:31:8E:70:B5:88:B0:09
Certificate issuer:       /CN=300842db0837daf311a334b722318e70b588b009
Certificate serial:       0197488D42802C262F8C90483947F8E9A8F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft
Manifest number:          1579
Signing time:             Sat 07 Jun 2025 04:01:46 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:46 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:46 +0000
Files and hashes:         1: MAhC2wg32vMRozS3IjGOcLWIsAk.crl (hash: LoBynmHIc3fZA7IFoyObZCkSVnWlOboO75/a3vyIVPY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8d:42:80:2c:26:2f:8c:90:48:39:47:f8:e9:a8:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=300842db0837daf311a334b722318e70b588b009
        Validity
            Not Before: Jun  7 04:01:46 2025 GMT
            Not After : Jun  8 04:01:46 2025 GMT
        Subject: CN=7e6bd187d32654fb6c29ad40ab80dd435b7b7803
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:be:98:6a:03:58:ef:3e:74:7b:2a:18:da:1c:
                    49:e1:54:ab:93:f1:36:eb:c2:8e:6a:65:fb:7e:cc:
                    a9:7b:ab:36:84:05:48:23:03:69:2c:4c:98:54:f9:
                    58:b5:9a:67:d6:1d:3b:4d:a9:f9:44:49:b4:6b:00:
                    c0:6b:8f:bd:e1:19:98:e5:65:27:f5:8a:80:d2:cc:
                    67:1a:fb:4a:ac:f0:fc:56:af:99:6f:d6:57:02:0a:
                    3c:00:2b:27:28:b6:f9:64:ee:a2:e8:1f:3d:0c:e4:
                    b5:fd:ac:92:80:d2:c5:2f:36:70:d0:f4:aa:7e:d7:
                    fb:06:7d:cc:df:e1:d2:73:a0:cf:2b:58:9b:d7:32:
                    92:e2:83:cc:37:e9:8b:f3:cc:4d:6a:e0:1e:94:b5:
                    f7:6f:4d:a6:72:ec:d3:28:74:66:74:eb:c2:9f:e2:
                    3f:8b:05:b1:4f:d3:28:6b:c5:c9:66:4a:76:f4:5b:
                    fb:39:6b:b2:3c:56:84:9b:67:cd:88:ec:49:a4:f0:
                    f6:87:8f:e2:73:cd:43:01:e7:e4:3d:67:de:8f:59:
                    62:8d:54:00:23:1f:53:3a:5e:ee:ba:ee:49:01:7f:
                    f5:1e:a2:5f:ea:a4:a0:49:6d:73:db:f4:08:e8:ca:
                    96:56:2e:ce:ca:91:ad:e5:37:c9:2a:7d:84:a0:1e:
                    46:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:6B:D1:87:D3:26:54:FB:6C:29:AD:40:AB:80:DD:43:5B:7B:78:03
            X509v3 Authority Key Identifier:
                keyid:30:08:42:DB:08:37:DA:F3:11:A3:34:B7:22:31:8E:70:B5:88:B0:09

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:36:cf:3e:9b:44:35:9d:aa:ed:b3:90:f6:93:26:67:df:ff:
         22:e8:7b:08:3c:41:5a:d0:d1:fb:d5:8c:5e:24:1d:0d:3c:73:
         c9:58:81:c8:58:be:15:1e:89:10:2d:55:71:e1:ed:3b:f4:c0:
         19:41:23:f6:ba:53:d2:7d:6b:3d:f9:bb:fb:4d:dc:17:5d:3f:
         f0:96:67:d3:4f:58:f6:f1:8c:3e:de:94:11:a9:fc:b9:0d:ed:
         8e:cb:7d:d4:22:e8:3e:98:c5:64:f4:1c:ee:6c:87:c0:95:47:
         2b:5b:e4:f8:d3:b5:83:00:2e:19:5b:b1:96:98:78:1b:34:20:
         3e:47:70:51:77:47:a9:9e:16:30:8d:21:b3:ed:ee:3c:56:08:
         4d:8d:bc:f3:17:4b:d1:64:d7:25:84:da:5b:c3:bc:ab:6a:36:
         36:bf:40:0b:fc:14:50:ee:2e:b8:81:76:2e:20:98:c4:55:a0:
         61:97:31:74:3d:97:9f:84:d1:04:ca:ec:33:c5:ee:a4:31:05:
         77:07:28:b2:59:13:fd:15:08:96:d7:e9:93:f6:08:f1:65:54:
         8c:83:52:80:d3:51:6c:3c:45:39:29:05:60:26:83:7d:cd:58:
         fb:00:58:90:4d:70:01:64:3e:7e:f6:d8:7c:c0:d8:91:d7:4f:
         0d:d9:d2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----