Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
File:                     Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft (raw, json)
Hash identifier:          PNJyftKuZeyKZjCypLLEqjD0HoBTLQBnRk7RQ36EPyU=
Subject key identifier:   05:82:6B:A8:DE:78:C7:AB:7F:22:02:AD:B3:CF:D1:6E:71:DF:64:9F
Authority key identifier: 3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77
Certificate issuer:       /CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
Certificate serial:       01975C80987B3F9210CFEFA2183867930542
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
Manifest number:          0405
Signing time:             Wed 11 Jun 2025 01:00:20 +0000
Manifest this update:     Wed 11 Jun 2025 01:00:20 +0000
Manifest next update:     Thu 12 Jun 2025 01:00:20 +0000
Files and hashes:         1: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl (hash: BjZVPUs3Rgkg4nyrFILoj1GuNEyRXn7SlJUh5EdJcGE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 23:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:80:98:7b:3f:92:10:cf:ef:a2:18:38:67:93:05:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
        Validity
            Not Before: Jun 11 01:00:20 2025 GMT
            Not After : Jun 12 01:00:20 2025 GMT
        Subject: CN=05826ba8de78c7ab7f2202adb3cfd16e71df649f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:16:a8:dd:cb:81:12:36:33:08:bb:2b:82:66:
                    72:a8:fa:3b:7d:2f:7c:f6:7a:2d:08:e7:58:04:76:
                    32:53:e5:b3:32:18:1a:b5:e0:b6:e8:fb:53:1c:02:
                    de:2b:40:d6:54:98:b0:83:04:66:61:f6:47:d4:28:
                    74:8b:60:0e:19:ca:71:08:c7:8f:59:52:65:34:cc:
                    24:47:69:f9:e6:fc:de:de:a9:8c:da:a2:b3:fd:c6:
                    de:42:b7:a0:57:52:8e:74:47:87:2d:43:19:b8:89:
                    4c:a0:00:cb:5a:c7:e1:d3:18:29:76:16:b0:3b:24:
                    a6:c5:5d:06:65:f9:76:4f:f8:23:5b:a1:55:5d:39:
                    ab:1d:6d:3a:48:ae:dd:3b:a0:aa:76:d2:f4:96:fe:
                    41:d9:e1:11:cb:d8:e7:fa:e9:a2:b5:ac:8c:01:a4:
                    bf:bb:f2:b3:bb:a6:d0:6d:b9:6f:98:8c:4f:eb:ec:
                    87:2f:5b:74:c7:df:15:c1:71:d4:3a:05:df:cf:7d:
                    01:71:f2:a7:73:40:6d:b4:f7:f6:55:3f:63:4a:ab:
                    4b:3b:8a:58:40:f1:9c:3e:f9:1a:d4:97:92:af:04:
                    92:07:e0:4f:49:7c:61:58:d0:08:c6:f1:b9:39:c5:
                    07:79:e2:ad:c2:1d:ef:a2:92:52:24:27:3f:c7:58:
                    95:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:82:6B:A8:DE:78:C7:AB:7F:22:02:AD:B3:CF:D1:6E:71:DF:64:9F
            X509v3 Authority Key Identifier:
                keyid:3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:a4:3b:52:61:cc:ad:6d:d1:98:d7:49:7e:91:d1:90:bd:d0:
         5e:7c:f7:7f:23:4b:e9:28:e5:3f:ec:7d:94:8b:1b:02:ab:19:
         9b:f1:dc:0b:e4:4d:a7:9b:06:58:c9:61:99:92:c9:89:5b:cf:
         9c:6d:30:ae:5a:a1:eb:8b:dd:d7:da:28:41:47:43:07:f8:5c:
         55:1a:31:62:cc:99:35:bb:8e:8f:ea:e4:83:e0:9a:91:53:19:
         f2:7b:17:ca:fe:30:7b:f4:a7:07:be:d2:28:d7:40:b7:42:c3:
         d8:ed:45:33:3d:98:38:22:99:05:00:71:6b:eb:66:af:aa:45:
         60:f1:72:6e:9f:be:32:7d:42:32:95:3e:d0:78:0a:74:ac:7c:
         98:08:69:ed:22:76:4a:08:86:86:d5:44:c4:6d:f7:e6:9a:74:
         fb:77:07:c0:e3:33:d3:7a:e9:ae:cf:49:da:82:25:83:d4:03:
         8a:f4:4b:cf:09:cf:6c:6b:b4:b4:f4:84:10:6f:2b:6e:1f:e2:
         bd:7d:8f:7a:45:49:a8:6a:3d:cd:1d:9f:09:a8:de:d9:cc:6a:
         d1:24:c3:4b:14:ea:ee:bc:a8:4f:cd:e3:81:3f:b4:3a:aa:2d:
         c1:05:fe:9a:ad:97:62:b9:76:e2:aa:d3:9e:32:63:0b:7d:88:
         25:95:4e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----