Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft
File:                     St2XYC4ZGOerwfYtz9TaynNJmz4.mft (raw, json)
Hash identifier:          LD22fXTTxbJjOFT6QvtfxuJJzEJeJ0H9T76z30IRlTs=
Subject key identifier:   FA:E4:61:4F:D8:D3:60:DF:C5:6E:55:DB:5F:08:48:B9:2A:1F:9C:E9
Authority key identifier: 4A:DD:97:60:2E:19:18:E7:AB:C1:F6:2D:CF:D4:DA:CA:73:49:9B:3E
Certificate issuer:       /CN=4add97602e1918e7abc1f62dcfd4daca73499b3e
Certificate serial:       01974EC555CA485F97B340A64138D10B5C5C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/St2XYC4ZGOerwfYtz9TaynNJmz4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft
Manifest number:          EB
Signing time:             Sun 08 Jun 2025 09:00:44 +0000
Manifest this update:     Sun 08 Jun 2025 09:00:44 +0000
Manifest next update:     Mon 09 Jun 2025 09:00:44 +0000
Files and hashes:         1: St2XYC4ZGOerwfYtz9TaynNJmz4.crl (hash: BUlz85GbLJLO+Noyy5z1+dQ4LP2n3+6+l5x0MdZ6FBs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/St2XYC4ZGOerwfYtz9TaynNJmz4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:c5:55:ca:48:5f:97:b3:40:a6:41:38:d1:0b:5c:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4add97602e1918e7abc1f62dcfd4daca73499b3e
        Validity
            Not Before: Jun  8 09:00:44 2025 GMT
            Not After : Jun  9 09:00:44 2025 GMT
        Subject: CN=fae4614fd8d360dfc56e55db5f0848b92a1f9ce9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:10:12:a4:f4:46:24:f6:a4:0c:b6:47:63:68:
                    93:cc:e4:1a:a1:3c:17:47:23:e0:1c:66:d4:26:17:
                    41:26:73:c3:a6:f8:2b:a0:9d:0e:0c:88:4d:94:68:
                    f5:f5:f4:b5:c2:93:ec:1f:bc:a8:0d:ca:f9:24:cd:
                    de:34:9d:a2:a0:d0:9d:c5:88:f1:e8:b8:c3:4e:88:
                    0f:f8:70:3a:cb:f9:b6:6e:ef:3a:81:ba:da:e6:2e:
                    7d:71:32:c8:b9:f5:cf:6b:1a:44:ac:bc:be:56:e0:
                    04:1c:37:28:e7:45:b6:bf:72:89:f0:08:88:50:4a:
                    eb:aa:9d:93:63:94:46:bb:3d:73:31:93:ee:f3:d6:
                    2b:2f:37:67:65:28:80:99:e7:5e:49:4c:77:41:af:
                    50:97:83:ad:df:08:b5:1c:bf:6f:bb:36:ce:e4:66:
                    56:ea:76:13:9e:2a:af:8f:3b:a0:8a:f8:8f:81:ff:
                    ef:31:88:2c:37:b9:d7:b2:b7:ce:76:5b:e2:d7:81:
                    d4:ed:a1:c0:c6:7f:76:db:e2:fd:73:ce:b4:03:4d:
                    88:1c:fc:69:e9:f2:15:82:2f:e3:0a:d8:32:ca:05:
                    55:71:33:91:b2:61:41:5f:ba:a1:5f:3f:56:20:14:
                    8d:7b:9f:4d:b6:c2:94:8d:c8:54:a1:2f:8e:66:7d:
                    b1:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:E4:61:4F:D8:D3:60:DF:C5:6E:55:DB:5F:08:48:B9:2A:1F:9C:E9
            X509v3 Authority Key Identifier:
                keyid:4A:DD:97:60:2E:19:18:E7:AB:C1:F6:2D:CF:D4:DA:CA:73:49:9B:3E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/St2XYC4ZGOerwfYtz9TaynNJmz4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:c5:db:0d:b3:8e:4a:a3:d3:d8:31:1b:5b:bc:05:13:20:32:
         81:4a:ea:6d:b0:35:df:d4:82:4b:d1:e9:39:81:0f:b9:a1:bd:
         f7:31:f7:bf:cb:21:7d:44:0e:2b:1d:1b:bc:9f:19:37:2d:0c:
         ac:b7:ee:42:50:11:97:4d:e6:b0:48:34:8b:3b:cf:4d:c2:a3:
         d9:d6:7e:21:8b:a2:79:c5:64:4f:36:d6:c3:51:14:08:47:70:
         55:a8:12:41:ee:85:2a:bd:55:bc:79:f0:c7:0a:58:fd:66:a2:
         48:89:9c:fc:52:52:97:37:dd:3b:fc:f1:8a:eb:4a:58:f8:c9:
         6c:24:02:d5:0d:cc:1f:99:9a:bc:28:93:a5:73:d8:00:2a:2c:
         d1:fd:c6:96:96:45:18:cf:74:28:7b:08:4b:51:8e:b3:43:f8:
         5e:3e:17:32:6f:81:fd:28:43:8f:00:b6:a6:a1:04:5b:cb:e6:
         cb:14:47:60:a2:67:f6:f1:04:59:cd:65:cf:0d:03:ec:fa:b1:
         e5:1c:dd:93:2d:08:31:24:36:92:68:05:f9:6a:d2:f7:8e:8a:
         f4:97:de:b7:a4:90:a4:11:6f:6a:df:92:e8:8c:71:b5:a3:7d:
         b5:3f:4a:ff:df:a8:b4:d0:18:41:23:ac:fb:e9:9f:7d:30:20:
         bb:d0:f1:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----