Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File:                     OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier:          iyOJmwNeC+g09BwI9Rw8dqYjz55Ipud6/PJt8gIk6gc=
Subject key identifier:   A6:82:4A:76:AA:0F:D4:4B:FA:5D:B5:E2:14:81:AF:40:AB:A8:92:7D
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer:       /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial:       0197488CCDD15AC408059769AADDF8D7942C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number:          1579
Signing time:             Sat 07 Jun 2025 04:01:16 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:16 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:16 +0000
Files and hashes:         1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: 4E8tqSUgUIU/fyJTFh47enl/kQ9kk77oAN9bu0g+bqg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 04:01:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:cd:d1:5a:c4:08:05:97:69:aa:dd:f8:d7:94:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
        Validity
            Not Before: Jun  7 04:01:16 2025 GMT
            Not After : Jun  8 04:01:16 2025 GMT
        Subject: CN=a6824a76aa0fd44bfa5db5e21481af40aba8927d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:e6:04:9b:dc:9a:3e:e5:79:fa:7a:49:da:90:
                    dc:73:d5:4e:39:d9:bf:d5:98:1c:9d:07:ca:63:da:
                    60:8a:0d:59:24:d3:3c:32:ac:b8:fb:5d:af:1c:86:
                    ef:77:a5:63:0f:25:60:8d:49:bd:85:eb:63:bb:fc:
                    11:8c:0c:6c:2f:05:58:74:ea:db:80:1f:b6:39:61:
                    09:a8:b6:20:ea:f7:c0:4d:93:3a:81:a3:3b:95:9e:
                    88:76:9f:57:3d:ff:9a:ee:c7:df:9b:38:5c:ad:32:
                    4b:2e:36:05:24:5b:59:b6:a6:3d:2c:14:e9:bf:cf:
                    04:01:28:d2:03:ae:72:de:2c:99:1b:27:7c:1b:86:
                    f4:f4:59:c8:7f:ee:1f:bb:ee:de:9b:dd:e3:24:1c:
                    ed:e4:13:32:63:44:83:36:7a:9c:48:f8:f4:41:2a:
                    f1:79:90:5d:c4:96:1f:0a:42:05:6e:43:6e:5d:fe:
                    86:c5:a0:28:9f:83:b6:b8:80:d1:f0:d7:f9:a3:11:
                    ac:bb:c2:b8:fd:ae:89:81:c7:1d:38:60:fc:bb:4f:
                    b8:b0:56:de:ec:61:0c:bd:ec:09:52:6f:1d:ca:d3:
                    3b:3e:65:a5:20:e3:c7:a8:3c:01:22:b2:10:ea:45:
                    bc:97:2c:c3:28:cb:ab:95:f8:d0:1d:40:9d:9b:81:
                    f6:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:82:4A:76:AA:0F:D4:4B:FA:5D:B5:E2:14:81:AF:40:AB:A8:92:7D
            X509v3 Authority Key Identifier:
                keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:c7:9d:99:81:cd:12:f3:25:bb:d0:28:4d:65:a8:58:ca:8d:
         c1:2e:a3:5f:af:3f:ac:6c:33:db:96:3c:18:27:2b:4f:cb:92:
         24:48:09:67:b3:db:4b:b3:99:d7:ff:15:9b:79:b6:f4:88:5a:
         e5:b5:ff:3c:94:79:c1:8d:bb:64:b5:5d:50:89:ad:21:93:e1:
         83:9f:79:51:30:8f:e4:17:36:a0:a3:69:f2:73:84:1b:23:16:
         34:fa:98:e1:b2:2e:b3:29:e2:33:73:7c:c9:69:a5:a6:ab:6a:
         40:01:5b:9e:72:88:3e:8d:cd:a0:bc:ef:87:04:bb:25:e0:29:
         74:c9:3c:1d:ab:45:1b:f8:1f:f2:9a:95:8b:c5:9a:09:39:6c:
         e1:90:39:d4:81:1e:b9:f7:62:37:44:82:fc:8b:f3:aa:c7:2c:
         ce:9e:e5:c3:33:2e:73:4b:c5:7d:6a:9a:02:2d:32:f3:9c:58:
         c9:54:a0:14:e7:2c:bd:36:86:81:05:eb:08:3d:16:ff:27:84:
         48:cf:32:13:40:de:a6:57:97:83:48:44:f1:ac:e2:b8:d1:a7:
         63:e4:18:66:4a:79:e1:b8:e3:e3:17:e3:df:3a:3b:7f:ad:4e:
         ed:b2:ac:36:0d:a5:be:3d:37:37:ab:dd:0e:42:ce:07:cc:4c:
         a2:a0:5b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----