Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
File:                     YzMz1xUm9TOxwc8L6fwyG2IzltM.mft (raw, json)
Hash identifier:          ixFRXdlpvt9QwCPVloq+KLdOrABt+6UxNqonSXszFqY=
Subject key identifier:   7E:D8:1F:18:FD:C7:EC:E9:A4:A3:B8:4C:42:1E:19:78:C8:94:7F:0F
Authority key identifier: 63:33:33:D7:15:26:F5:33:B1:C1:CF:0B:E9:FC:32:1B:62:33:96:D3
Certificate issuer:       /CN=633333d71526f533b1c1cf0be9fc321b623396d3
Certificate serial:       0197643A31CCA114B33FA0637A755369BAF6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
Manifest number:          061F
Signing time:             Thu 12 Jun 2025 13:00:24 +0000
Manifest this update:     Thu 12 Jun 2025 13:00:24 +0000
Manifest next update:     Fri 13 Jun 2025 13:00:24 +0000
Files and hashes:         1: YzMz1xUm9TOxwc8L6fwyG2IzltM.crl (hash: HdXsajPqcV6yOSxFL5pdPIc3m05/XiHLSP6T4zINsqQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:3a:31:cc:a1:14:b3:3f:a0:63:7a:75:53:69:ba:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=633333d71526f533b1c1cf0be9fc321b623396d3
        Validity
            Not Before: Jun 12 13:00:24 2025 GMT
            Not After : Jun 13 13:00:24 2025 GMT
        Subject: CN=7ed81f18fdc7ece9a4a3b84c421e1978c8947f0f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:a4:a4:f2:00:80:74:62:2b:8d:5a:01:b2:d2:
                    b1:ab:1d:32:b8:e8:72:eb:ff:6f:94:85:2b:79:1c:
                    0e:1f:e8:6d:50:ba:07:c7:c1:c5:67:fa:ca:e8:5d:
                    a5:b5:1c:67:39:16:38:d9:65:ec:92:04:f6:c8:04:
                    57:cf:81:7c:c8:bb:53:c5:4f:a0:a7:c9:69:75:c1:
                    68:8c:26:4f:6c:80:ca:98:73:62:78:49:ad:02:31:
                    59:d8:50:04:c0:76:7d:15:6b:c3:68:a2:1c:3f:f8:
                    17:dd:0c:0e:e4:5a:80:3c:68:69:e9:bb:5f:a2:18:
                    cf:a4:8a:44:b8:b5:ff:51:e5:6f:17:57:81:63:0d:
                    20:5e:db:3c:50:6c:be:c1:53:ca:dd:67:98:7d:a5:
                    66:e8:82:9d:d7:29:d3:07:e6:ba:8f:ef:6c:be:1e:
                    ed:60:c7:5d:68:43:75:52:6e:f3:06:1d:c8:ab:a1:
                    ae:1a:2f:10:53:00:cc:dd:19:5a:69:54:12:08:e5:
                    39:58:f6:80:0a:4b:27:08:f0:11:5e:96:9a:1d:0c:
                    a7:44:13:4b:b1:ec:ed:53:ad:3b:9e:ff:52:80:24:
                    ee:3d:37:c2:c7:8a:02:58:fe:c8:a6:35:73:ff:96:
                    d5:7d:e2:65:1d:d6:83:9f:0c:50:6f:19:41:26:86:
                    f1:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:D8:1F:18:FD:C7:EC:E9:A4:A3:B8:4C:42:1E:19:78:C8:94:7F:0F
            X509v3 Authority Key Identifier:
                keyid:63:33:33:D7:15:26:F5:33:B1:C1:CF:0B:E9:FC:32:1B:62:33:96:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:99:28:43:cd:88:6e:f3:90:d1:46:c5:d8:53:d0:58:67:81:
         bc:1b:82:b3:8b:67:3e:48:1b:a2:8c:6c:74:ad:d9:a9:c3:38:
         ff:fd:40:46:90:a7:11:3a:92:a1:bb:2d:7f:da:3f:b0:de:ef:
         50:d7:ab:cb:9c:c1:a2:7c:d0:89:fd:bc:56:79:2a:76:23:02:
         6f:73:d2:69:04:e2:46:4a:72:2c:22:6f:c4:19:b6:ec:e1:ef:
         8e:6a:ca:a9:0c:c0:aa:00:22:48:8d:bf:83:d1:e0:ed:bf:df:
         08:5c:dc:cb:a6:04:f1:f3:6e:e0:33:d2:38:e1:6d:11:84:4d:
         ce:1e:2c:94:5b:49:e7:ac:4b:75:38:6a:d9:16:b6:f0:fe:b3:
         96:a0:cd:b6:a0:d8:66:05:cd:00:21:1b:30:d5:81:d8:f1:18:
         c4:14:d5:0a:54:11:ef:ac:e1:d8:8e:b5:eb:54:49:fb:57:d0:
         09:30:ba:b9:67:df:f1:08:8f:40:3b:3d:85:5f:a8:16:e3:ad:
         59:15:b5:44:28:5e:26:84:a6:f2:f7:c5:2f:d1:67:0d:fc:a4:
         47:4d:51:21:b2:0d:5f:d8:d3:ca:a8:fa:4a:20:6b:7c:25:9c:
         7c:c1:d9:59:85:44:f1:13:0f:2b:2a:d1:5c:37:0c:f0:3e:a5:
         aa:7d:5f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----