Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
File:                     _VnTVh_4rdtfGww2o90laLdMpRU.mft (raw, json)
Hash identifier:          oW/qsWKjcrMsse5mS35u+FoWDix2foPqgihGmHqDDZ0=
Subject key identifier:   33:56:B5:44:A8:2D:38:81:19:6E:6B:88:DE:71:E5:FD:B0:1B:8E:3F
Authority key identifier: FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15
Certificate issuer:       /CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515
Certificate serial:       019752D8C33F70129D660EBC5CEF9EC1A782
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
Manifest number:          0A64
Signing time:             Mon 09 Jun 2025 04:00:26 +0000
Manifest this update:     Mon 09 Jun 2025 04:00:26 +0000
Manifest next update:     Tue 10 Jun 2025 04:00:26 +0000
Files and hashes:         1: _VnTVh_4rdtfGww2o90laLdMpRU.crl (hash: iXCcRWJ3qOj78uqrFZkslnTMwLG5LvH5Cs2ogMJb8NE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:d8:c3:3f:70:12:9d:66:0e:bc:5c:ef:9e:c1:a7:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515
        Validity
            Not Before: Jun  9 04:00:26 2025 GMT
            Not After : Jun 10 04:00:26 2025 GMT
        Subject: CN=3356b544a82d3881196e6b88de71e5fdb01b8e3f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:88:9e:ba:ab:29:1d:57:6d:8c:76:b8:e5:0e:
                    c7:21:50:9f:ae:21:9c:1a:8e:98:69:d4:6e:58:d8:
                    89:0d:a2:d2:ab:15:57:9c:5c:07:e3:32:3c:a8:38:
                    f7:a0:06:a3:81:06:89:d9:55:a8:98:58:ee:31:11:
                    e9:bc:33:e2:39:4d:f7:ba:a6:f0:d9:34:dc:35:1e:
                    df:6e:83:0a:d5:4f:4e:1d:ec:c0:f1:9c:20:89:1f:
                    06:4b:aa:cc:3e:06:26:5e:36:8b:6e:44:6c:02:a2:
                    0a:7e:bb:fd:ff:55:6e:59:c0:c7:3d:a0:0b:e7:84:
                    f2:82:ee:86:65:8f:36:fd:ca:0b:f3:e3:82:d0:00:
                    b8:43:ba:7f:d3:68:01:5d:d4:43:11:ce:9c:32:b4:
                    67:99:08:27:ed:af:73:e5:9a:fe:e4:42:3d:ad:df:
                    a3:9c:1e:57:13:9e:fd:d2:26:0a:89:17:45:67:98:
                    e7:57:47:e5:5a:cb:53:2a:ff:06:6e:0b:de:c1:10:
                    ee:55:58:d5:ad:13:e0:34:58:43:ee:c0:1d:23:d6:
                    ae:5c:12:e8:3b:8b:c9:94:3a:51:be:99:8c:23:bf:
                    7c:78:50:85:cd:38:45:85:6d:a3:80:54:15:07:6a:
                    48:e8:52:72:e6:5e:67:4f:ce:53:0e:2e:b9:2a:2b:
                    cd:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:56:B5:44:A8:2D:38:81:19:6E:6B:88:DE:71:E5:FD:B0:1B:8E:3F
            X509v3 Authority Key Identifier:
                keyid:FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:6d:66:13:a6:35:2f:5c:c8:67:85:72:7d:8e:be:a4:25:09:
         87:be:ac:0f:b8:bc:ef:ab:ee:84:7b:08:7d:cf:df:91:4f:f9:
         94:58:f6:6b:4c:c5:7d:ce:18:86:f2:80:cb:4d:9d:ab:4f:b0:
         28:05:7b:3b:ae:43:9e:55:dd:5d:d4:5c:b2:60:35:78:11:62:
         e8:15:ae:4f:4e:6d:e3:a1:16:7b:30:db:8a:69:7b:73:8b:d4:
         ce:ea:3a:ef:76:40:39:15:d7:0a:32:c8:20:c8:df:a7:27:cc:
         c3:1b:18:02:66:f6:a6:13:e6:ef:56:f7:d1:ef:35:43:23:e9:
         6e:06:db:5d:ea:7c:c7:f4:65:0e:87:3d:5a:d7:f1:50:d3:04:
         f9:96:53:01:91:e3:f1:b3:a6:f2:85:7d:74:8d:f0:4e:54:39:
         20:0a:25:e6:00:0a:6c:1f:2a:9f:c3:d3:13:68:27:ce:2c:75:
         31:cc:c9:00:ec:ea:02:bf:97:cc:3e:56:21:78:64:47:52:f6:
         41:31:52:33:70:57:b1:35:f6:e7:f9:34:43:a7:ed:1a:2e:e7:
         20:ea:a4:40:46:d1:ab:d1:72:7d:f8:b1:25:ba:a0:72:dc:48:
         1d:d8:4d:54:11:06:4b:8c:9d:3f:bb:fd:f7:59:cb:10:ef:b6:
         70:a0:39:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----