Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
File:                     j7phV8tS0RaPUIRsXlB5IkDt8-A.mft (raw, json)
Hash identifier:          cr6ORrN7YjwOxLB0fCZA8Na9vctvSbwSTsZfzFVK/UY=
Subject key identifier:   24:BB:26:42:A7:CC:81:AF:42:26:8B:C3:ED:8D:40:75:4F:B9:12:C5
Authority key identifier: 8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0
Certificate issuer:       /CN=8fba6157cb52d1168f50846c5e50792240edf3e0
Certificate serial:       01976BBD0737BC4508D919611ED554F8F987
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
Manifest number:          08BE
Signing time:             Sat 14 Jun 2025 00:00:39 +0000
Manifest this update:     Sat 14 Jun 2025 00:00:39 +0000
Manifest next update:     Sun 15 Jun 2025 00:00:39 +0000
Files and hashes:         1: j7phV8tS0RaPUIRsXlB5IkDt8-A.crl (hash: lDeO6NXAv/vrZyyPdK/yx4RGjq6RK2Nzt6+N9mLYuSw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:bd:07:37:bc:45:08:d9:19:61:1e:d5:54:f8:f9:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8fba6157cb52d1168f50846c5e50792240edf3e0
        Validity
            Not Before: Jun 14 00:00:39 2025 GMT
            Not After : Jun 15 00:00:39 2025 GMT
        Subject: CN=24bb2642a7cc81af42268bc3ed8d40754fb912c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:04:9c:e7:08:72:4c:f8:2b:83:71:57:80:b7:
                    f7:23:3d:fd:c4:de:8a:ac:f3:93:ff:9b:78:25:5a:
                    d4:2e:f8:c2:a9:33:a8:8f:23:e6:83:86:9b:d1:c4:
                    14:95:61:0c:0e:89:09:72:93:f0:78:25:d1:da:78:
                    3b:44:21:d7:d5:91:05:be:07:91:b8:0d:cc:96:89:
                    80:a6:56:99:97:2a:6f:d0:d2:d0:87:94:38:6d:2f:
                    8a:95:b2:2a:66:a9:2d:00:f4:7b:ad:1f:c6:7c:cc:
                    62:29:02:57:f6:76:5a:28:48:5d:ee:ba:8e:0e:a2:
                    77:ce:fa:ed:dd:d9:23:91:36:fd:d1:de:d9:64:07:
                    10:60:68:ed:d6:e7:d3:02:8c:b4:29:8e:3b:0a:73:
                    fe:a8:8f:b0:bb:59:ff:0b:e8:e6:d9:07:4d:bb:57:
                    30:f4:86:07:8f:80:e3:62:aa:24:ec:ee:34:8e:f5:
                    67:5b:63:65:43:c6:d5:27:f4:a9:8b:75:54:21:77:
                    5b:41:45:b3:31:ef:6a:76:23:87:17:80:ac:6b:4d:
                    8d:5d:36:d4:af:5a:ce:c8:a4:80:4d:5f:1d:eb:9e:
                    73:dc:9d:46:72:f9:8d:3e:2d:20:6e:ca:9d:c1:a1:
                    6a:22:81:35:ca:da:01:88:7e:67:73:d6:ef:37:f8:
                    e2:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:BB:26:42:A7:CC:81:AF:42:26:8B:C3:ED:8D:40:75:4F:B9:12:C5
            X509v3 Authority Key Identifier:
                keyid:8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:fc:cd:1d:f7:87:28:07:15:ef:ee:48:a9:28:0f:1e:20:d3:
         a5:23:df:64:dd:b5:31:26:fd:99:5d:1b:58:21:66:86:14:65:
         2a:b6:d4:1c:5a:57:83:3a:12:d2:ba:57:b5:5c:70:cc:80:c8:
         b3:0d:7a:b3:34:02:6d:10:1c:f3:07:9b:2c:69:df:17:58:69:
         6a:8e:c8:e8:ef:ca:8b:1e:09:48:74:0f:d9:8a:2d:df:b7:d8:
         06:a1:4f:a3:ba:45:f2:8e:0e:8a:0e:40:9d:20:f3:94:4b:f4:
         94:b6:c6:ab:55:f7:95:f7:89:07:89:88:76:a5:b0:bc:1e:8a:
         bf:ad:83:d7:ef:21:37:e3:5e:58:09:bb:c6:62:e2:87:76:7e:
         31:3a:05:d9:0b:7f:be:37:cd:13:0f:90:c2:0b:de:6a:7b:a7:
         ee:3f:5e:3b:14:03:2c:3b:48:aa:1d:d7:b1:39:d4:0e:fc:19:
         e2:36:12:e3:27:ed:0e:06:b7:aa:5c:b4:42:86:c9:51:8d:16:
         8c:96:3c:12:75:d7:70:c3:4d:b8:a2:a1:fe:eb:bc:6b:94:82:
         ab:a6:59:db:88:a8:f4:63:d2:a5:97:7e:da:d1:13:32:61:a4:
         11:ed:90:c8:5a:a8:3f:17:c9:5b:0e:d4:cc:ce:d3:77:24:d7:
         13:37:c4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----