Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File:                     LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier:          j414DLtkmB+8zFRi+++/pLWBiRkqYTEuOaVQ/LoyZic=
Subject key identifier:   E6:CB:44:4D:00:D1:85:7D:B8:DF:C8:CD:DE:06:40:6D:27:1A:61:C0
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer:       /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial:       01976AAA16925ABA8C910DA3CA66D1425E22
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number:          132C
Signing time:             Fri 13 Jun 2025 19:00:21 +0000
Manifest this update:     Fri 13 Jun 2025 19:00:21 +0000
Manifest next update:     Sat 14 Jun 2025 19:00:21 +0000
Files and hashes:         1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: P2VEtySS6vzqK44pO00Qwl0aLgkTO5OWgdMXmA8GWhE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:aa:16:92:5a:ba:8c:91:0d:a3:ca:66:d1:42:5e:22
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
        Validity
            Not Before: Jun 13 19:00:21 2025 GMT
            Not After : Jun 14 19:00:21 2025 GMT
        Subject: CN=e6cb444d00d1857db8dfc8cdde06406d271a61c0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:72:41:38:bd:7e:23:7c:83:58:e5:18:a7:54:
                    2d:73:5c:9d:f8:0e:e6:68:2c:b7:11:60:87:13:9b:
                    b9:53:08:db:5b:f1:1c:01:d7:ca:ef:36:ee:ed:85:
                    c5:63:d8:20:8e:d2:fe:87:80:d2:48:03:26:f8:27:
                    9b:7e:41:ef:07:8f:69:15:23:ff:fb:3a:43:fe:e4:
                    37:d2:c3:3d:f3:5f:61:6a:03:d7:74:17:58:fe:c8:
                    4c:35:29:4a:d0:d0:32:1c:64:96:ef:51:fe:6b:1d:
                    13:ca:8a:c7:1e:8a:4c:dc:38:f5:f0:00:30:4b:40:
                    63:95:28:d9:d0:0b:53:26:e3:03:89:bc:3e:04:e4:
                    22:c2:95:df:96:b8:ec:d5:2d:8f:77:e5:04:f4:ff:
                    51:c2:61:fc:c0:0d:21:f3:03:0c:90:6c:92:ad:de:
                    22:1a:51:2a:31:88:ca:9a:57:cc:bc:43:7d:0b:de:
                    cf:85:a9:1c:8c:25:65:6d:8a:ae:74:17:a4:27:b1:
                    83:17:ed:a9:39:be:f7:a3:03:ba:db:06:59:54:73:
                    d7:13:02:da:6e:26:93:3d:a9:e5:60:a7:a9:7d:1e:
                    b3:85:e9:76:f8:bc:9f:5b:f5:d5:cf:dc:4a:3e:83:
                    32:9d:ad:37:f5:32:1f:8d:72:97:49:64:d5:e6:a3:
                    a5:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:CB:44:4D:00:D1:85:7D:B8:DF:C8:CD:DE:06:40:6D:27:1A:61:C0
            X509v3 Authority Key Identifier:
                keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:9c:b3:5c:8a:8d:71:a3:19:93:28:d2:99:db:84:47:8f:b0:
         91:bd:1b:ea:eb:32:43:64:ab:1c:63:5a:a3:01:13:b4:d8:00:
         91:fd:d6:87:52:11:8d:3f:f8:56:c2:75:69:28:c7:e1:9c:6e:
         c5:62:6d:17:6a:f4:b8:29:9c:9b:f9:67:b1:5f:33:8a:2a:12:
         88:8a:cd:4e:33:16:37:7b:47:29:d5:d8:1d:38:fa:99:9b:20:
         d2:0f:b5:0f:02:84:3d:fd:7f:ca:07:dd:d3:76:b0:f1:61:19:
         67:61:a0:a3:f9:bc:de:9a:46:e2:8e:c7:6d:80:84:d8:70:44:
         33:9f:80:f5:98:de:92:df:07:2c:17:d8:38:1c:ec:88:7f:9e:
         a2:ec:5c:11:78:27:61:9c:b9:38:db:b9:80:a0:27:91:e6:85:
         8d:b9:37:23:62:3b:de:0b:a1:9a:89:1a:ca:eb:d8:ff:89:3f:
         4f:a1:18:c8:32:f1:4c:a6:ad:f8:3c:6d:99:07:10:ec:a6:65:
         9f:52:f6:88:58:35:bc:01:d4:fd:3c:22:6c:fc:f2:11:73:b2:
         b6:c5:f7:63:5a:92:27:3f:ca:77:55:c4:40:9f:58:57:c3:e0:
         72:6c:1c:16:99:bf:aa:92:16:15:2c:ed:08:37:00:62:7c:a7:
         80:a1:bf:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----