Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
File:                     jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft (raw, json)
Hash identifier:          AZNxiW1+OleTOmUACNnetwgL9pdEbcrJI/8bnc78Ikg=
Subject key identifier:   16:F4:45:20:46:89:BF:35:A8:CE:2C:6B:4E:3D:C7:0D:A3:A7:A8:7C
Authority key identifier: 8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78
Certificate issuer:       /CN=8c4378b571682d34773b463752701c9405fbed78
Certificate serial:       01974E208382E32BC315B50EBEA2CA8A2F44
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
Manifest number:          0475
Signing time:             Sun 08 Jun 2025 06:00:43 +0000
Manifest this update:     Sun 08 Jun 2025 06:00:43 +0000
Manifest next update:     Mon 09 Jun 2025 06:00:43 +0000
Files and hashes:         1: jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl (hash: aCKxwxaxtetfEWR+VC8056DH8F6uBEusr10xjU1zk/U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:20:83:82:e3:2b:c3:15:b5:0e:be:a2:ca:8a:2f:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c4378b571682d34773b463752701c9405fbed78
        Validity
            Not Before: Jun  8 06:00:43 2025 GMT
            Not After : Jun  9 06:00:43 2025 GMT
        Subject: CN=16f445204689bf35a8ce2c6b4e3dc70da3a7a87c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:1a:b9:8a:16:2a:18:01:2e:87:be:bc:64:43:
                    25:be:e5:3d:c1:03:4a:a4:88:ee:ce:d3:aa:e6:45:
                    cc:da:c3:35:01:5e:a8:78:57:35:1f:a5:02:ba:05:
                    58:29:66:66:e9:18:55:39:20:77:76:3d:e2:64:ed:
                    97:34:99:b9:f7:3c:f2:80:6a:c2:86:03:c3:0d:98:
                    f9:68:6f:f5:05:9e:2a:41:05:eb:22:50:fb:d0:20:
                    f1:8d:2c:7e:46:0a:70:e6:04:c7:fd:6f:b0:76:7a:
                    64:48:70:7a:dc:da:06:40:de:c7:9b:ad:f4:6d:d0:
                    68:fa:00:b6:6d:74:d6:f8:93:00:c7:ca:0e:1c:33:
                    1f:59:46:67:2f:d8:5b:b6:e5:c1:c3:fd:c6:3f:78:
                    c2:40:f7:5c:06:ac:d7:31:d1:33:1c:99:06:64:b3:
                    fd:28:55:9c:5f:ca:2a:76:b0:fc:f0:cb:72:2f:fb:
                    1d:29:d9:1b:82:85:bc:64:fd:27:f3:7d:d6:85:07:
                    cf:b2:15:52:bc:f2:6c:9e:6d:d2:a0:cf:1d:af:07:
                    18:7f:fc:c2:53:b8:f7:de:fe:57:80:a6:ab:28:ed:
                    66:90:73:aa:fa:da:51:6e:24:6d:fb:7d:0e:db:43:
                    67:33:0b:65:2c:70:3a:1a:b7:25:a4:82:cf:a2:93:
                    2d:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:F4:45:20:46:89:BF:35:A8:CE:2C:6B:4E:3D:C7:0D:A3:A7:A8:7C
            X509v3 Authority Key Identifier:
                keyid:8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:ee:62:3e:56:0b:5d:10:c9:2b:07:95:9f:a0:6b:05:7f:2f:
         56:93:b5:90:3d:80:55:83:81:5d:1c:f7:7b:23:b5:f6:63:ee:
         12:71:71:d7:a7:00:ee:d9:f6:d7:2d:c6:43:3a:91:6a:9d:55:
         2f:c5:b1:e7:fe:f4:fb:5f:94:c5:95:73:b5:40:b4:e1:fa:95:
         18:1e:30:43:45:d7:12:00:a0:ed:01:98:e0:85:57:cb:c8:c8:
         58:7e:ce:ba:b3:14:28:3f:46:18:13:c0:b2:ac:0f:f6:cd:e1:
         29:49:ec:db:01:fe:e3:72:3f:b1:88:53:e0:08:eb:aa:ba:1b:
         85:6d:8a:2e:c0:08:6e:9c:48:87:60:81:40:28:8c:2c:83:8d:
         d7:bd:d9:5d:be:cd:53:a3:4e:e6:56:67:c4:94:07:31:7b:42:
         2d:ef:2e:ce:8b:ba:e0:d1:e6:38:ce:53:cc:12:43:9a:d4:15:
         37:10:9c:c7:46:2d:07:9f:49:61:21:dd:fd:c7:13:57:dd:12:
         85:c7:1d:2e:7f:1f:61:ed:2d:26:d7:8a:8d:08:a6:a3:9e:ea:
         18:96:8e:b1:e2:89:6c:2d:6c:d1:ec:9a:68:62:63:04:9d:85:
         7d:a3:b7:1a:57:da:45:fd:c5:5f:ea:7b:37:66:f6:43:73:13:
         05:c9:52:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----