Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
File:                     5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft (raw, json)
Hash identifier:          6EWBoNLTIOig0HwScQjVb3IaiFBV+aDu1UlkdGTEios=
Subject key identifier:   7D:E3:1A:7C:93:68:0F:74:BB:C8:FD:7C:F6:F4:E5:4E:2F:75:99:AC
Authority key identifier: E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
Certificate issuer:       /CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Certificate serial:       019767E0390C2CFF5C6C901D366E52501AFC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
Manifest number:          14CD
Signing time:             Fri 13 Jun 2025 06:00:37 +0000
Manifest this update:     Fri 13 Jun 2025 06:00:37 +0000
Manifest next update:     Sat 14 Jun 2025 06:00:37 +0000
Files and hashes:         1: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl (hash: EuHatuhqF0KmkQQbavSaZNQQ+qdoH0oIMJ6uw2yu3DY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:e0:39:0c:2c:ff:5c:6c:90:1d:36:6e:52:50:1a:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
        Validity
            Not Before: Jun 13 06:00:37 2025 GMT
            Not After : Jun 14 06:00:37 2025 GMT
        Subject: CN=7de31a7c93680f74bbc8fd7cf6f4e54e2f7599ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:79:f5:fd:d0:48:98:40:6e:f5:b8:c9:37:0d:
                    ac:d4:02:a6:2e:7c:2c:46:1d:6e:a7:42:b9:95:8a:
                    24:20:4f:7e:30:33:98:9f:f5:9c:fe:13:0d:82:5b:
                    91:d5:4e:20:c7:a7:89:79:e0:0f:2a:d2:f6:0f:04:
                    1b:eb:05:29:23:14:cd:74:44:cf:49:59:93:8f:60:
                    be:53:2e:be:98:62:33:b9:d4:7f:d0:53:1d:66:87:
                    24:90:42:ba:77:ae:42:12:ad:a3:bc:7e:6c:8e:5d:
                    2d:ce:ae:16:94:ea:83:34:57:8c:14:a5:2c:94:bd:
                    92:c5:2a:8b:0e:42:75:81:b1:78:4a:41:dc:84:67:
                    a6:1c:c0:32:37:e2:e1:3f:12:d5:33:16:31:8b:51:
                    3a:2a:9e:f4:83:36:aa:db:99:2e:a8:2c:29:c1:b2:
                    24:2d:38:63:bf:6b:b7:de:b6:b6:53:60:30:bd:35:
                    40:38:c4:93:e4:85:c6:c1:9e:a8:00:9a:3d:72:e6:
                    ed:2d:5c:1c:3e:19:dc:62:66:a3:51:4f:09:e9:70:
                    04:1b:55:2c:6d:3a:f5:00:19:7b:52:56:f9:d3:b4:
                    93:49:8d:f4:4d:84:82:f2:e7:8e:1b:e7:7d:11:cb:
                    8d:9f:e3:fe:a4:d4:91:44:82:ba:7f:b4:41:fc:0f:
                    0a:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:E3:1A:7C:93:68:0F:74:BB:C8:FD:7C:F6:F4:E5:4E:2F:75:99:AC
            X509v3 Authority Key Identifier:
                keyid:E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:2f:5c:89:a3:a9:38:db:eb:c0:f4:f2:a6:9f:3c:6a:f7:c1:
         f6:7c:eb:fe:e0:c7:6a:11:3f:56:cc:fa:96:89:22:dd:a2:55:
         16:84:1a:2c:ec:a1:d0:2c:5b:f9:91:82:0e:e8:ef:6b:87:b5:
         9b:cd:54:67:45:30:0f:0d:86:2a:3f:75:65:da:6d:df:db:e6:
         2b:57:91:ca:63:34:43:f7:a8:1d:b3:7e:4e:db:78:d2:60:6c:
         31:56:36:78:03:7b:2e:8b:a7:7e:c3:dc:5f:07:8b:89:b1:c6:
         46:0b:20:83:f1:b2:5a:39:14:26:3d:f7:72:1a:79:76:7b:9f:
         53:32:85:cc:d0:2d:4d:a5:89:4c:85:35:b1:30:63:64:e3:b2:
         28:3f:8e:21:55:df:b5:5d:a9:65:41:f8:c1:bf:d1:4f:ef:e4:
         81:da:02:50:16:55:2c:96:8b:f9:90:4e:a5:a8:22:99:b0:26:
         91:28:62:3f:e8:da:26:72:50:c5:68:c6:83:c1:2b:0b:70:33:
         f2:b3:65:95:74:1e:88:2f:9a:ef:e3:26:c5:7d:a4:cb:c8:be:
         1b:d0:f7:cd:6d:2c:d2:e3:8a:f1:ac:d4:01:a1:d9:8b:4a:be:
         bb:e8:cf:66:94:64:09:99:90:a1:ef:00:5a:82:c4:1a:1d:eb:
         b1:5d:a3:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----