Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/6b2d86-7f7e-487b-9180-2ed8d28599da/1/pkLcUMWwgtCc5unHvqeug3EHPvI.mft
File:                     pkLcUMWwgtCc5unHvqeug3EHPvI.mft (raw, json)
Hash identifier:          1MFn/4IIhKfq1/VE3n/gHLkVij/MPfdEzxqIMzeZsW0=
Subject key identifier:   63:B1:E1:F8:92:51:67:AB:61:F1:3D:98:A7:CE:2B:44:9B:C6:FA:01
Authority key identifier: A6:42:DC:50:C5:B0:82:D0:9C:E6:E9:C7:BE:A7:AE:83:71:07:3E:F2
Certificate issuer:       /CN=a642dc50c5b082d09ce6e9c7bea7ae8371073ef2
Certificate serial:       01974C68B8F6DF58FD5E5F31CAEAB5E852BF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pkLcUMWwgtCc5unHvqeug3EHPvI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/6b2d86-7f7e-487b-9180-2ed8d28599da/1/pkLcUMWwgtCc5unHvqeug3EHPvI.mft
Manifest number:          157C
Signing time:             Sat 07 Jun 2025 22:00:20 +0000
Manifest this update:     Sat 07 Jun 2025 22:00:20 +0000
Manifest next update:     Sun 08 Jun 2025 22:00:20 +0000
Files and hashes:         1: pkLcUMWwgtCc5unHvqeug3EHPvI.crl (hash: k7cdASaiEw57UMCnU+VuBp4mS7cIKeiTE+HFnTsipDo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/6b2d86-7f7e-487b-9180-2ed8d28599da/1/pkLcUMWwgtCc5unHvqeug3EHPvI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/6b2d86-7f7e-487b-9180-2ed8d28599da/1/pkLcUMWwgtCc5unHvqeug3EHPvI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pkLcUMWwgtCc5unHvqeug3EHPvI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:68:b8:f6:df:58:fd:5e:5f:31:ca:ea:b5:e8:52:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a642dc50c5b082d09ce6e9c7bea7ae8371073ef2
        Validity
            Not Before: Jun  7 22:00:20 2025 GMT
            Not After : Jun  8 22:00:20 2025 GMT
        Subject: CN=63b1e1f8925167ab61f13d98a7ce2b449bc6fa01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:fb:84:cc:45:67:29:ac:84:c9:78:69:e5:12:
                    de:b5:82:22:6b:5b:1e:18:0c:7f:36:35:9c:e8:47:
                    90:a1:36:3e:aa:95:2d:5f:df:4e:cb:bf:18:4e:b8:
                    13:57:7d:6c:f8:a9:4f:ab:97:56:a7:5a:56:02:b4:
                    da:32:81:b6:1c:ad:22:5b:dd:1d:31:61:2c:e8:d2:
                    91:2b:af:09:30:70:27:a0:b8:e7:6f:e9:1b:8f:ae:
                    a5:a5:a1:3e:7d:ef:37:88:72:7c:c7:ce:43:51:6a:
                    b9:02:7d:9f:17:a1:80:b8:fd:c4:e8:ac:04:7a:0d:
                    e7:b1:e3:56:3e:a0:84:2c:cf:e4:0e:21:65:c4:12:
                    eb:77:5d:22:85:89:be:c4:bb:fd:e0:4f:b6:e2:dc:
                    a0:bc:cc:87:66:2d:ee:1c:dc:b0:08:79:e0:27:6b:
                    e3:6c:3e:2c:01:68:76:a6:04:98:e1:32:64:5f:70:
                    43:27:a4:b0:5a:e5:47:4f:ea:65:a0:f9:a0:6e:bc:
                    8f:5b:90:b9:ec:13:46:88:c7:fe:62:12:8b:52:dd:
                    a5:c8:17:92:b5:38:ef:91:a0:07:03:3d:45:fe:6b:
                    57:82:ef:7d:f2:e0:b7:13:37:b5:61:34:0d:65:7e:
                    07:55:db:c2:38:34:ce:c6:c7:e8:ea:59:49:f6:74:
                    d7:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:B1:E1:F8:92:51:67:AB:61:F1:3D:98:A7:CE:2B:44:9B:C6:FA:01
            X509v3 Authority Key Identifier:
                keyid:A6:42:DC:50:C5:B0:82:D0:9C:E6:E9:C7:BE:A7:AE:83:71:07:3E:F2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkLcUMWwgtCc5unHvqeug3EHPvI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/6b2d86-7f7e-487b-9180-2ed8d28599da/1/pkLcUMWwgtCc5unHvqeug3EHPvI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/6b2d86-7f7e-487b-9180-2ed8d28599da/1/pkLcUMWwgtCc5unHvqeug3EHPvI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:03:f7:c6:9d:77:67:e6:01:2b:3f:bf:7e:45:39:8f:67:38:
         c7:42:60:b6:75:8c:d0:a2:9d:2f:3b:97:e3:91:e6:de:c3:cd:
         1f:da:37:60:4b:7b:17:50:06:5c:3c:de:d7:af:c2:3d:1f:ff:
         ce:2b:77:cb:0f:3c:21:cb:ec:13:fe:3a:a9:2a:fc:c1:2f:88:
         ab:f4:c6:91:8e:5d:a7:60:2b:f2:4a:cd:8f:3c:d0:d2:f1:f0:
         c7:c2:9e:a6:7c:34:1e:46:48:1d:8f:61:81:e2:5d:85:86:5c:
         bb:c9:b2:2b:78:66:6d:30:f3:67:e7:82:bf:c1:33:b1:31:9c:
         09:ad:60:35:72:49:2f:94:a2:e2:d9:b0:c8:3c:13:87:a3:aa:
         d5:35:24:0b:19:b0:8b:5b:11:96:4d:7e:19:b4:e2:2c:80:99:
         b2:87:3e:2f:83:e4:75:c3:c8:30:f6:d3:a5:e5:70:a2:56:d0:
         4d:5d:b5:0a:1a:cd:ff:c2:2b:3c:2c:73:cf:11:ca:71:b4:4a:
         ca:e7:a7:78:dc:87:f1:ff:fb:95:71:7f:40:fe:f8:75:49:ff:
         0c:68:14:2c:90:9a:6f:d5:3d:46:a9:47:4e:58:be:cd:15:a3:
         6a:07:95:0a:e3:09:cd:b6:32:ab:f7:e0:6b:91:05:a2:76:55:
         76:cd:01:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----