Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
File:                     vPI0wEREFriFL7NHh4rTdtCBjWQ.mft (raw, json)
Hash identifier:          ZyKtTcxsvT6A0hvlqwiVLgqytNFinP5fc+0bhPbOFOo=
Subject key identifier:   CB:68:BF:DF:A8:36:0F:B4:42:07:70:C6:EC:12:06:26:A4:11:74:DC
Authority key identifier: BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64
Certificate issuer:       /CN=bcf234c0444416b8852fb347878ad376d0818d64
Certificate serial:       019768BC412498BD99379B6EA75569087940
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
Manifest number:          0917
Signing time:             Fri 13 Jun 2025 10:00:57 +0000
Manifest this update:     Fri 13 Jun 2025 10:00:57 +0000
Manifest next update:     Sat 14 Jun 2025 10:00:57 +0000
Files and hashes:         1: vPI0wEREFriFL7NHh4rTdtCBjWQ.crl (hash: 4oDnSaYMyoxvx2rhFS1ULismkuvxqvu9LfAiVNvTewc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:bc:41:24:98:bd:99:37:9b:6e:a7:55:69:08:79:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bcf234c0444416b8852fb347878ad376d0818d64
        Validity
            Not Before: Jun 13 10:00:57 2025 GMT
            Not After : Jun 14 10:00:57 2025 GMT
        Subject: CN=cb68bfdfa8360fb4420770c6ec120626a41174dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:46:ea:0e:52:95:d6:fb:c0:3d:cd:f5:c8:fb:
                    63:59:ec:09:27:0f:65:01:da:a7:41:c2:3a:ee:52:
                    95:0f:93:68:36:d0:ec:01:7e:55:c2:da:b0:e3:4e:
                    36:09:0d:9e:da:32:e1:f5:64:79:3a:79:6c:7f:8e:
                    5e:04:09:a4:39:16:61:55:e2:62:e0:da:94:5a:e9:
                    a8:10:cf:fc:65:56:17:0e:54:2d:58:4a:a6:52:13:
                    b5:a5:29:37:64:09:d0:6d:7d:75:17:1f:d8:4b:fe:
                    2f:82:ca:cf:20:87:ff:21:8d:66:a8:82:fa:9d:58:
                    a3:76:04:9c:1b:0b:1c:af:f5:2d:39:e7:19:91:b7:
                    25:6c:c5:a9:e6:6c:4d:d5:f4:ee:a1:b6:a9:68:ac:
                    05:df:92:4e:8a:63:e1:2d:e7:4a:c1:13:ef:d3:4a:
                    57:bc:41:ce:e2:c2:7c:65:37:6c:8e:2e:c3:6a:aa:
                    8d:6f:7d:2f:2b:8a:84:c0:f8:dc:07:98:43:c7:a6:
                    92:ba:38:43:bb:19:f1:cb:61:75:75:b6:7c:a3:6c:
                    7b:94:88:32:6e:65:22:e1:63:24:27:1d:c7:29:d9:
                    1e:10:2e:6e:13:a3:84:97:2c:0e:e0:10:63:62:52:
                    74:fd:f9:fb:e6:da:6b:ac:d7:87:2e:20:c9:66:07:
                    e7:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:68:BF:DF:A8:36:0F:B4:42:07:70:C6:EC:12:06:26:A4:11:74:DC
            X509v3 Authority Key Identifier:
                keyid:BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:0b:6e:f9:6a:83:df:17:d0:8f:f2:b7:4b:b3:d4:a9:cd:38:
         e6:54:15:92:06:c8:e5:dd:5d:19:75:b3:89:13:5c:a5:53:92:
         af:14:03:06:b0:ae:80:c8:69:da:08:7f:7b:26:c0:85:f4:87:
         f5:76:27:08:a0:d2:d6:57:f4:5b:7c:a5:f1:e0:a3:a6:76:87:
         37:7e:25:80:b7:1d:61:f3:38:cf:b9:98:6b:f8:28:cc:07:2a:
         30:83:93:e8:4c:98:c9:dc:92:11:15:46:a1:4c:5b:c6:b9:79:
         14:27:1d:29:15:77:7c:8a:df:2a:aa:06:18:9e:c4:0c:b8:9e:
         1a:36:95:64:1c:99:84:8f:d4:d5:ae:2a:02:83:16:e4:93:c9:
         0b:78:d4:f6:d9:a1:95:75:d4:98:e8:a4:9b:9c:1a:93:e4:d3:
         b8:f8:29:a2:46:5f:30:6f:26:31:d6:82:12:0b:98:e3:58:e2:
         ac:75:d1:3c:f3:4b:ca:ab:72:56:1a:91:f2:0e:9a:f4:03:36:
         57:31:af:93:b4:10:05:92:92:94:58:28:85:62:b0:ae:90:60:
         82:09:40:30:9b:66:4f:d2:bf:e4:0d:72:2d:62:ba:36:86:76:
         3a:56:c4:6f:35:f3:18:2b:fa:64:41:43:c8:b1:b2:61:96:6b:
         f4:a6:ba:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----