Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
File:                     3C8IdW9U7NcoDR6sz4eK6z8orE8.mft (raw, json)
Hash identifier:          41STpXxx7jyMMxvjdY8zeXFzetSka3xDkZuZTgdGJN8=
Subject key identifier:   8B:05:75:9E:85:09:45:F7:AC:24:63:18:91:CB:71:86:83:57:0B:B0
Authority key identifier: DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F
Certificate issuer:       /CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
Certificate serial:       019765F214439DBA78A50BB771299A4A9F0A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
Manifest number:          1299
Signing time:             Thu 12 Jun 2025 21:00:53 +0000
Manifest this update:     Thu 12 Jun 2025 21:00:53 +0000
Manifest next update:     Fri 13 Jun 2025 21:00:53 +0000
Files and hashes:         1: 3C8IdW9U7NcoDR6sz4eK6z8orE8.crl (hash: lk0O1Z39J4gaQ6/uFioLa9Qxy6O8fYw8gzT1Jix/2tA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 21:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:f2:14:43:9d:ba:78:a5:0b:b7:71:29:9a:4a:9f:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
        Validity
            Not Before: Jun 12 21:00:53 2025 GMT
            Not After : Jun 13 21:00:53 2025 GMT
        Subject: CN=8b05759e850945f7ac24631891cb718683570bb0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:de:93:a7:08:9b:00:8a:35:55:df:55:29:20:
                    f6:b0:f9:48:62:c8:e7:36:a9:00:d5:8f:5b:9a:19:
                    96:5c:f1:25:5c:c5:48:60:a3:1f:ab:d6:0b:a7:fa:
                    df:0b:79:88:37:0b:6f:5f:5f:2d:9b:54:ab:52:7c:
                    9c:bb:d7:c5:64:19:20:b8:f5:e5:24:9f:0c:c4:04:
                    c7:c3:1d:77:15:af:c3:89:e2:35:29:ff:9f:ef:b8:
                    d8:67:1d:fa:3d:c1:08:f7:99:df:7a:93:4b:7a:e1:
                    b8:fa:b3:b6:87:9e:2e:74:7c:ba:92:50:c3:e0:b3:
                    58:75:15:fb:9c:e3:94:50:19:d9:66:4d:37:74:dd:
                    fe:9d:06:05:7e:f5:a0:8d:69:c6:8e:48:00:9e:f5:
                    af:a5:00:ad:d2:2f:8a:72:5c:55:b4:0b:25:79:a2:
                    30:98:8f:a0:99:39:6f:d5:83:89:99:ec:3f:de:d0:
                    d2:9b:fe:a3:14:f3:7d:72:e8:a3:62:f5:46:54:03:
                    c0:0d:7e:c8:1c:48:b9:59:e6:b4:7c:8e:d4:d9:c7:
                    88:54:de:10:02:d7:64:41:02:4f:d4:b6:ed:30:1c:
                    71:23:43:0d:66:a4:67:91:23:70:a2:23:6b:16:2c:
                    c9:57:eb:ab:c4:40:69:27:cf:31:fa:37:b8:af:2d:
                    39:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:05:75:9E:85:09:45:F7:AC:24:63:18:91:CB:71:86:83:57:0B:B0
            X509v3 Authority Key Identifier:
                keyid:DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:fa:8f:dd:85:d6:23:62:c9:76:d5:9c:d7:fa:11:47:90:b4:
         d8:19:4d:0f:39:00:99:da:fe:5c:f4:3a:e2:de:5e:75:65:19:
         82:3d:28:16:ed:4d:c4:9b:f0:9a:2e:a7:67:17:47:b5:42:96:
         e8:3b:21:57:00:85:74:52:f3:3c:e3:1e:da:8e:5b:08:3f:a9:
         e2:b1:1f:3d:64:bd:df:ed:cb:4c:72:23:0c:d6:9e:fa:d0:f1:
         41:66:5f:05:e2:59:ee:a7:f7:fe:71:fe:cf:49:9a:32:ca:12:
         5a:a8:ad:9f:0f:7e:1f:1e:ea:45:ad:5e:4d:5f:e3:29:81:6e:
         1c:07:0e:c3:6a:bd:3b:8e:a5:1f:2f:99:38:5e:a2:05:b0:9c:
         85:98:d9:b1:8d:82:58:bd:14:3f:88:b0:1a:e9:2a:7e:96:75:
         97:13:d1:f6:c8:18:70:72:ba:1b:e7:8b:e3:13:97:d9:59:c5:
         c2:21:33:b4:dc:c7:36:31:89:b2:ee:24:57:dc:e3:3a:4b:90:
         0b:ef:91:96:c7:d3:07:09:85:f3:43:9d:78:56:db:f0:e7:bc:
         19:d9:81:73:df:a2:f1:dc:32:0e:2c:ba:0d:8a:2c:25:cc:24:
         c9:21:16:63:53:a8:3c:27:41:00:d0:b2:bf:7f:2d:d4:4c:56:
         be:50:bb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----