Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
File:                     71j4Vyvdd9mBQRGA4u-aioAsdqw.mft (raw, json)
Hash identifier:          p2i1sk71Sd17jtM+NEyBF1AjLTcToH/YiEHOcnxXgmI=
Subject key identifier:   4D:D1:41:DA:52:8A:B9:D6:D3:BE:EE:95:D8:48:AC:5A:75:B4:2C:E0
Authority key identifier: EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC
Certificate issuer:       /CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
Certificate serial:       01974BC48B79FCD6860DFDC725C336403479
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
Manifest number:          F9
Signing time:             Sat 07 Jun 2025 19:01:01 +0000
Manifest this update:     Sat 07 Jun 2025 19:01:01 +0000
Manifest next update:     Sun 08 Jun 2025 19:01:01 +0000
Files and hashes:         1: 71j4Vyvdd9mBQRGA4u-aioAsdqw.crl (hash: 3kI479ghR1Vk2AferAX3eD2FD1sv0hcGwl6OAsREckk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:c4:8b:79:fc:d6:86:0d:fd:c7:25:c3:36:40:34:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
        Validity
            Not Before: Jun  7 19:01:01 2025 GMT
            Not After : Jun  8 19:01:01 2025 GMT
        Subject: CN=4dd141da528ab9d6d3beee95d848ac5a75b42ce0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:94:04:9f:5b:91:25:5b:2e:77:da:63:f8:cd:
                    22:05:3f:cf:9c:e6:93:81:f8:6f:1d:c4:29:13:9a:
                    09:c0:ab:67:69:cf:2c:47:66:b0:e2:53:8c:50:cb:
                    44:65:a0:c1:bc:63:41:3b:0e:cd:10:d3:3b:d3:86:
                    2f:59:2b:4d:d8:38:c0:91:56:cc:17:0c:a2:0a:9b:
                    03:96:f0:62:e3:fc:ce:72:e5:43:b9:83:1a:b4:74:
                    19:4e:2b:6c:8c:c4:a6:14:42:45:41:78:44:2a:18:
                    99:9e:92:3a:04:25:e1:18:58:f3:c3:40:49:1d:75:
                    f7:46:f7:26:4b:31:8b:06:9f:33:07:02:ec:58:a8:
                    16:53:4e:e0:33:fd:6c:48:22:b1:34:cb:5d:da:67:
                    7c:40:5e:f4:f1:67:1b:f6:1a:f5:50:f4:a1:19:be:
                    99:31:96:3a:83:2f:d2:c4:3d:1e:8b:d3:88:5a:93:
                    f1:2d:0c:2e:e0:b9:0b:61:26:c1:3a:a6:8c:70:71:
                    81:db:b1:df:95:e2:5c:6e:fc:b9:f6:9d:0e:70:1c:
                    23:a6:5e:92:29:da:0b:1f:dc:d2:48:29:70:45:9c:
                    31:ad:85:d9:bb:46:a7:fd:f5:14:71:25:b4:1e:6d:
                    a6:e9:f5:69:5e:26:d9:35:9a:ae:63:de:73:fe:ff:
                    e6:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:D1:41:DA:52:8A:B9:D6:D3:BE:EE:95:D8:48:AC:5A:75:B4:2C:E0
            X509v3 Authority Key Identifier:
                keyid:EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:69:18:e6:59:69:b2:74:f9:57:e3:cd:bc:a4:ee:11:c4:2b:
         be:ca:77:cf:f0:5e:d6:99:52:32:11:bc:63:a5:3a:c5:6d:37:
         59:3f:bd:a8:67:1a:b2:8b:3e:af:06:69:43:ab:99:52:0b:9a:
         a8:dc:23:fe:46:35:7b:2b:e3:25:8e:6e:f1:5a:a0:24:2c:8c:
         49:6d:73:fe:bc:14:66:2e:fa:12:d3:04:17:da:f1:8b:8e:ce:
         bd:24:dd:e1:c0:9f:39:c6:00:4e:cf:f3:46:8c:3f:1d:17:14:
         1d:85:3c:45:df:d0:f2:9d:ed:5f:41:3c:c4:4f:0a:25:01:02:
         32:e5:08:70:cd:45:5b:ae:ab:b8:b4:73:ee:23:d3:4a:0c:de:
         25:78:3c:b5:1f:92:0e:fd:7a:e5:35:ae:57:ff:79:56:45:0e:
         35:94:4b:06:76:7a:ff:10:4a:6f:5c:c2:a6:d6:e5:2c:81:1d:
         7e:3d:c2:ae:b3:be:19:1f:19:9b:9b:2a:e0:54:9f:9c:0a:4c:
         95:3a:57:4c:79:4c:31:3c:b8:3b:e3:a5:44:8f:ba:d7:89:50:
         5c:8a:d5:b8:89:3a:4b:ab:1e:13:09:2d:e4:1b:1b:d7:82:ec:
         ec:45:87:95:97:ad:49:b7:28:c5:0d:86:a7:01:93:4c:40:5b:
         94:7c:c0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----