Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
File:                     qK9MCjctAUVV99TXyJz5lvBRQvU.mft (raw, json)
Hash identifier:          1sdp6stJ2FabK7MLfe96//LeaCASnv5BMcscq1Yxbxg=
Subject key identifier:   D6:6B:F6:B5:D0:B3:6B:22:1A:CE:A5:9D:2D:7B:A5:DC:74:B9:15:3E
Authority key identifier: A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
Certificate issuer:       /CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Certificate serial:       019765841591DB0B0AA51DEE56747ADE11C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
Manifest number:          031E
Signing time:             Thu 12 Jun 2025 19:00:44 +0000
Manifest this update:     Thu 12 Jun 2025 19:00:44 +0000
Manifest next update:     Fri 13 Jun 2025 19:00:44 +0000
Files and hashes:         1: qK9MCjctAUVV99TXyJz5lvBRQvU.crl (hash: +1e9A7PeZHpGT+8O4O7cZAqA3pESko2CHc7idDauFeg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 19:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:84:15:91:db:0b:0a:a5:1d:ee:56:74:7a:de:11:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
        Validity
            Not Before: Jun 12 19:00:44 2025 GMT
            Not After : Jun 13 19:00:44 2025 GMT
        Subject: CN=d66bf6b5d0b36b221acea59d2d7ba5dc74b9153e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:0c:24:a7:90:96:42:83:11:e6:36:c8:19:7f:
                    84:f7:b6:ad:8f:2c:5c:63:01:45:fa:ca:ec:d4:e1:
                    96:83:6d:2a:cf:07:b7:0b:b9:79:78:fb:66:03:22:
                    83:90:58:46:ac:74:01:19:25:98:03:c6:07:d2:09:
                    8b:ea:01:91:ae:c8:b8:63:50:c4:0c:00:b8:1f:2e:
                    cd:61:4b:62:be:e5:f1:58:f4:c9:a2:7e:1f:ba:46:
                    f4:25:41:dd:1d:ba:71:cf:88:a5:34:10:48:f9:9f:
                    c8:80:36:35:79:70:e8:c6:f7:ec:d3:25:b4:8a:ee:
                    dc:76:a7:d9:bf:8b:54:74:32:51:bb:1d:38:e5:9e:
                    73:0e:b3:48:9c:1b:17:ec:37:06:ff:43:ff:13:3a:
                    47:20:ac:7f:da:55:4c:33:8a:ab:82:e2:08:d5:2b:
                    6e:57:9a:28:49:e8:b7:3f:b4:18:c1:d2:13:9e:0f:
                    be:86:f0:68:ce:91:22:cd:72:28:e4:a5:91:44:de:
                    7a:2b:38:41:c2:b7:32:e1:ea:57:08:f3:1a:89:4f:
                    3c:94:e7:2c:6d:ca:b1:69:cf:2d:d4:c0:0b:17:23:
                    00:b8:e2:30:47:b7:33:6a:5e:0a:bb:02:2e:8a:0c:
                    71:d1:db:30:7b:53:69:66:c2:49:b0:dd:b2:6d:da:
                    b8:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:6B:F6:B5:D0:B3:6B:22:1A:CE:A5:9D:2D:7B:A5:DC:74:B9:15:3E
            X509v3 Authority Key Identifier:
                keyid:A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:22:f8:17:b8:90:8b:83:3c:0d:f7:11:f8:8f:32:00:98:57:
         7b:39:fd:35:9c:b5:dc:a8:4c:c2:af:f1:93:7c:ee:21:c4:ff:
         41:26:26:6c:3a:89:ba:ba:d0:d1:8c:e4:80:08:ea:21:34:e4:
         c4:48:65:b8:89:85:19:c5:24:bf:41:44:79:41:0f:c4:c5:b4:
         de:6e:02:c4:05:ed:a4:2e:3c:2b:c2:55:14:73:3d:67:db:9a:
         f4:20:27:e5:56:dd:56:78:aa:1f:ff:65:a0:da:ef:06:f4:a5:
         4e:56:61:b1:20:76:62:36:41:d5:dd:9f:67:b0:54:94:9a:c6:
         a1:46:0d:77:de:db:d7:67:f4:63:d7:80:d4:16:97:44:d5:7a:
         24:ad:b4:45:34:f5:3a:6b:d5:c7:eb:ae:e9:54:b1:f1:17:50:
         ad:74:8f:71:5d:ab:0c:87:76:7b:2c:4e:71:12:20:3f:ce:2f:
         f0:f0:a0:a4:6d:fc:c8:87:80:e0:45:33:20:18:f5:bd:17:ec:
         1e:f2:fc:f1:e0:81:c7:99:de:57:dd:b0:cd:39:b5:45:d9:1e:
         03:b7:9f:cb:63:d3:fe:7b:4a:69:5b:3b:7e:31:0d:d0:d3:aa:
         71:7c:fa:db:40:a7:45:81:47:b1:a5:09:d7:f1:67:32:e2:d4:
         dc:8e:52:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----