Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft
File:                     Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft (raw, json)
Hash identifier:          K4Y0p8FA8VGPkfhxB5hvgi3ejIT8h39iot6K17z3EGk=
Subject key identifier:   C8:B5:77:84:46:4B:A4:65:7A:C7:CC:D5:4C:B3:E5:9F:50:48:88:68
Authority key identifier: 46:7A:38:81:12:E6:8F:4C:7D:4D:80:C3:2D:37:CF:CD:6C:D2:3A:45
Certificate issuer:       /CN=467a388112e68f4c7d4d80c32d37cfcd6cd23a45
Certificate serial:       0197493190C87FE3AA5F59D72F59B1D8F2B6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft
Manifest number:          1239
Signing time:             Sat 07 Jun 2025 07:01:14 +0000
Manifest this update:     Sat 07 Jun 2025 07:01:14 +0000
Manifest next update:     Sun 08 Jun 2025 07:01:14 +0000
Files and hashes:         1: Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl (hash: e7tESHqUlbilwOMNyrSGdpVqBHpZGeHeARip4IKTErw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 07:01:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:49:31:90:c8:7f:e3:aa:5f:59:d7:2f:59:b1:d8:f2:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=467a388112e68f4c7d4d80c32d37cfcd6cd23a45
        Validity
            Not Before: Jun  7 07:01:14 2025 GMT
            Not After : Jun  8 07:01:14 2025 GMT
        Subject: CN=c8b57784464ba4657ac7ccd54cb3e59f50488868
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:9f:a8:5f:1b:7a:28:5f:8a:32:ed:f2:42:1d:
                    08:eb:91:ea:7d:e2:d2:b5:14:b6:31:93:f1:74:94:
                    37:ee:e5:70:b9:ba:35:fe:6c:6a:53:18:64:06:a8:
                    6d:7e:41:8c:c3:a2:ac:a0:cf:05:73:23:c3:bf:07:
                    23:68:e8:21:d4:6b:c7:22:67:bc:07:4f:7e:70:25:
                    94:81:5c:64:95:f1:ff:0f:4e:80:1b:d1:c9:f7:b8:
                    5f:7c:68:a5:84:f1:37:96:e0:0d:64:aa:1e:8d:8f:
                    48:6b:4c:3e:67:79:e4:ed:fe:46:60:d5:74:89:5b:
                    73:10:bf:1c:ca:a8:07:de:46:88:bc:7b:b8:bf:1c:
                    2e:d8:70:97:96:99:16:41:98:90:84:c6:f7:5b:0e:
                    60:95:8c:5a:25:86:db:75:cd:9f:3f:f6:ba:62:f1:
                    82:88:a6:27:a6:0c:07:d9:1c:fe:64:a9:a2:65:e9:
                    fb:97:56:6a:58:32:43:b2:ca:5c:c1:3c:bd:71:28:
                    01:d3:ae:93:79:30:64:6d:af:bb:ac:84:99:ed:c3:
                    87:50:c6:d4:3c:47:ad:b5:1a:9d:54:89:df:29:ec:
                    d5:2b:10:2a:05:70:c6:4f:aa:5e:9d:45:38:56:ad:
                    7a:8e:ad:98:05:e5:a5:c8:ed:51:68:96:96:9e:c7:
                    e9:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:B5:77:84:46:4B:A4:65:7A:C7:CC:D5:4C:B3:E5:9F:50:48:88:68
            X509v3 Authority Key Identifier:
                keyid:46:7A:38:81:12:E6:8F:4C:7D:4D:80:C3:2D:37:CF:CD:6C:D2:3A:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:97:b7:1d:17:80:00:f2:56:85:5e:92:9c:9d:7c:39:3a:07:
         56:4e:94:d8:db:1f:9a:f2:5c:8b:2f:05:53:d4:1d:c3:33:2e:
         a9:53:8a:33:f8:15:32:7f:3e:12:c4:47:93:a4:6d:8e:f0:7b:
         db:6e:a3:b7:ff:31:c4:81:39:ec:92:09:61:c7:b1:21:4e:46:
         f2:f5:7c:a0:f5:30:9a:07:4e:de:c3:22:cd:67:37:ec:ee:6e:
         49:82:ea:05:05:c8:80:c9:68:b7:14:01:be:ab:d2:95:8e:d6:
         7f:5e:da:dc:11:1a:b9:38:dd:d1:4e:6e:a0:70:5a:53:4b:13:
         f2:02:b8:5f:2c:91:92:eb:7a:10:57:b1:69:66:74:dd:a9:6d:
         c1:76:47:e3:8f:29:15:e0:e0:aa:50:82:ab:a6:e3:15:fe:b4:
         3a:3e:aa:9c:23:55:1d:26:aa:f7:27:c7:d7:de:b8:4b:6d:aa:
         46:dc:35:7f:0a:5e:30:2a:2b:c6:58:d3:56:c0:96:9f:5e:ff:
         65:df:e2:fe:f0:51:9c:85:de:14:57:fc:c1:c9:4d:fd:33:68:
         50:44:08:dd:e0:5d:a5:1a:25:07:8e:95:8e:99:80:38:df:79:
         2a:13:8b:43:e3:c5:74:fc:b7:d2:5f:28:8a:ba:b6:5d:88:90:
         7d:20:b0:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----