Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft
File:                     SYN20qIgPYbnmm1ESVq_xIkDFGU.mft (raw, json)
Hash identifier:          IsnCyzL23mpDB4H+eOeotyqL8gkJHuqhji6r3MViL/g=
Subject key identifier:   99:EE:4F:6D:54:8A:2E:01:A1:D5:2B:95:A3:78:3A:BC:EF:12:89:32
Authority key identifier: 49:83:76:D2:A2:20:3D:86:E7:9A:6D:44:49:5A:BF:C4:89:03:14:65
Certificate issuer:       /CN=498376d2a2203d86e79a6d44495abfc489031465
Certificate serial:       01974CD723427906489033935821516D73E1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SYN20qIgPYbnmm1ESVq_xIkDFGU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft
Manifest number:          0C63
Signing time:             Sun 08 Jun 2025 00:00:57 +0000
Manifest this update:     Sun 08 Jun 2025 00:00:57 +0000
Manifest next update:     Mon 09 Jun 2025 00:00:57 +0000
Files and hashes:         1: SYN20qIgPYbnmm1ESVq_xIkDFGU.crl (hash: KExMTdGs0omUYz/uRHZD2sE9zXQuVxoPHFHKjVox7jY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SYN20qIgPYbnmm1ESVq_xIkDFGU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 20:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:d7:23:42:79:06:48:90:33:93:58:21:51:6d:73:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=498376d2a2203d86e79a6d44495abfc489031465
        Validity
            Not Before: Jun  8 00:00:57 2025 GMT
            Not After : Jun  9 00:00:57 2025 GMT
        Subject: CN=99ee4f6d548a2e01a1d52b95a3783abcef128932
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:5d:6d:2e:12:f3:77:1c:3b:2f:f7:38:3a:ea:
                    b8:8d:3a:a0:06:2f:74:46:9b:a5:bc:ce:24:64:6f:
                    15:ab:bd:d0:7c:99:01:6e:5d:d6:71:65:7a:24:5b:
                    7b:52:72:6b:2e:a8:0e:30:5d:e8:a2:39:8d:26:85:
                    ca:4c:6e:57:ca:c5:31:aa:f6:28:3f:ad:27:7b:87:
                    e2:58:f9:e0:8a:a9:34:91:64:e3:12:a4:4c:2a:59:
                    5b:2d:f4:86:e0:11:bf:7c:c4:fe:1e:39:29:c6:04:
                    65:b8:42:f9:9c:80:3e:d4:4f:6e:c3:f4:a4:0c:61:
                    f6:67:0e:09:1b:05:88:ed:20:d4:29:f2:1a:72:ad:
                    6c:0f:ce:07:1f:b8:85:94:97:34:fa:50:0b:2c:69:
                    10:d8:d8:a2:97:82:3f:9c:ac:54:33:4a:9e:c4:49:
                    b9:65:68:a8:85:67:a4:90:11:5c:1c:c3:65:16:27:
                    ae:e0:79:40:a0:48:10:1e:e0:1b:b7:c7:7c:4b:95:
                    a5:b8:86:d5:44:d7:c2:fe:79:57:a4:63:f1:ef:3c:
                    91:92:7a:61:e8:b3:7e:7b:dc:c9:77:1d:3e:b8:31:
                    a3:b7:93:16:4a:af:d1:31:d9:10:ab:61:d8:8c:b2:
                    5d:51:23:e9:44:03:07:69:7b:20:65:c1:cc:1a:8c:
                    c5:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:EE:4F:6D:54:8A:2E:01:A1:D5:2B:95:A3:78:3A:BC:EF:12:89:32
            X509v3 Authority Key Identifier:
                keyid:49:83:76:D2:A2:20:3D:86:E7:9A:6D:44:49:5A:BF:C4:89:03:14:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYN20qIgPYbnmm1ESVq_xIkDFGU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:e1:53:33:9b:f9:cc:27:85:a6:9f:69:c8:30:6e:5f:72:94:
         1e:fb:e7:f4:60:46:da:a0:29:12:76:78:a1:83:50:1d:20:ae:
         f4:e9:d5:04:5e:28:58:3c:fd:ef:29:74:24:20:01:9c:6b:11:
         cb:93:30:f4:a3:b4:20:db:62:e1:8b:b5:6e:1a:2e:72:f8:b0:
         b7:e5:26:cd:81:bb:13:82:07:8e:36:a9:6c:c9:cd:0b:50:8f:
         bb:25:0b:b0:f0:9d:a9:f8:f1:e5:12:3c:3d:49:7f:b2:a4:20:
         cf:f8:09:e3:64:27:4b:0b:a8:f1:a0:eb:28:a1:9f:cd:29:d4:
         91:4d:5b:b7:9a:40:40:5b:64:62:22:8b:b6:ec:58:45:36:cc:
         a9:d1:86:9a:b5:93:7a:65:73:24:34:08:ed:a1:2d:95:30:6c:
         99:b5:7a:7a:0b:63:8a:4e:7c:4b:92:ab:50:e7:9a:d3:e8:a0:
         64:a0:fb:b9:a5:e0:1b:33:a9:52:87:2a:52:8d:ef:c7:aa:f4:
         b0:8c:dc:ca:78:72:27:27:cd:4c:c6:cf:68:56:7d:20:53:da:
         27:38:f6:b3:b8:4c:d4:64:59:f5:dc:ae:f1:56:b2:32:ae:4f:
         9f:42:57:41:f7:e9:20:dc:64:50:a0:af:44:92:23:24:c2:c5:
         51:ec:1c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----