Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft
File:                     VRDNubrguTLHmin42XktMJ9617c.mft (raw, json)
Hash identifier:          skB2UXvKQb7tQ2uqvENIx6rd3limKIx3N04/h/+n6dw=
Subject key identifier:   51:F1:03:F6:1A:A0:31:81:63:2F:84:55:ED:43:90:23:F9:21:9C:0B
Authority key identifier: 55:10:CD:B9:BA:E0:B9:32:C7:9A:29:F8:D9:79:2D:30:9F:7A:D7:B7
Certificate issuer:       /CN=5510cdb9bae0b932c79a29f8d9792d309f7ad7b7
Certificate serial:       01974AB18FEEDEC287B4EAE524CF414C932A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VRDNubrguTLHmin42XktMJ9617c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft
Manifest number:          0223
Signing time:             Sat 07 Jun 2025 14:00:39 +0000
Manifest this update:     Sat 07 Jun 2025 14:00:39 +0000
Manifest next update:     Sun 08 Jun 2025 14:00:39 +0000
Files and hashes:         1: VRDNubrguTLHmin42XktMJ9617c.crl (hash: Z9p65qGh9Yn9Yn1zLxgy+5mkEDokxFLCjvruFMqCPwk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VRDNubrguTLHmin42XktMJ9617c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:b1:8f:ee:de:c2:87:b4:ea:e5:24:cf:41:4c:93:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5510cdb9bae0b932c79a29f8d9792d309f7ad7b7
        Validity
            Not Before: Jun  7 14:00:39 2025 GMT
            Not After : Jun  8 14:00:39 2025 GMT
        Subject: CN=51f103f61aa03181632f8455ed439023f9219c0b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:88:a8:68:df:3c:1b:38:a9:fa:6d:c9:d7:64:
                    5a:85:ed:48:1a:06:e3:2b:02:30:10:ac:cf:0a:4e:
                    f1:ba:d6:57:55:4f:be:ac:6a:99:ac:60:a1:ff:cc:
                    63:f4:8d:05:bb:ea:b0:3d:5b:ed:bc:0a:59:d6:35:
                    bb:5e:af:5e:b3:7a:87:cc:f5:75:84:e3:3d:7c:4e:
                    be:9e:a7:0f:0f:5b:da:c8:06:26:64:97:6f:4d:a5:
                    69:eb:e0:46:1a:27:2f:9e:22:ff:ae:c4:95:17:a1:
                    2b:26:81:74:07:53:c9:4e:e0:49:60:19:ca:30:7b:
                    95:bb:14:aa:05:33:bb:3e:f4:49:de:2b:23:ee:83:
                    dd:ad:c7:2a:ab:ef:7b:19:20:3d:4d:d7:f5:7e:a9:
                    7e:e4:b8:4f:e7:e6:7d:3b:be:a0:dd:f9:82:ed:3b:
                    9e:6b:1c:55:10:11:8b:c6:c4:e4:d0:e0:92:ec:94:
                    80:bb:23:0b:11:98:dd:d4:db:1e:8c:94:f2:17:a3:
                    df:7b:46:64:44:8f:2d:f0:7e:49:76:9a:bb:46:00:
                    58:46:90:2e:ac:53:66:0e:dc:3b:44:dd:c2:c1:d1:
                    42:fe:98:74:ac:a5:21:6c:61:8a:e0:50:7f:c4:43:
                    90:70:a8:35:7a:e8:c6:53:7d:e3:d1:60:8c:d5:23:
                    3b:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:F1:03:F6:1A:A0:31:81:63:2F:84:55:ED:43:90:23:F9:21:9C:0B
            X509v3 Authority Key Identifier:
                keyid:55:10:CD:B9:BA:E0:B9:32:C7:9A:29:F8:D9:79:2D:30:9F:7A:D7:B7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VRDNubrguTLHmin42XktMJ9617c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:44:ed:14:2f:77:ad:9e:f4:85:e5:71:ae:10:ef:05:9c:aa:
         0a:77:de:9e:bb:07:55:00:8a:86:89:0c:88:20:2c:7d:09:dc:
         29:f6:a0:46:e0:14:71:fe:84:72:c3:aa:27:06:3b:cf:3b:85:
         ed:5c:83:ea:8a:19:e1:42:9d:8e:4b:90:2f:1e:3e:1a:f3:54:
         db:ac:75:3e:6d:0e:a5:a3:b5:59:a4:84:d9:fe:5d:ac:8e:b2:
         18:b4:8e:61:a8:c2:a3:dc:e3:e3:e7:d9:54:f6:84:1c:72:a7:
         d5:98:08:1f:8e:22:d1:bd:93:a1:ab:fa:15:ae:cb:89:82:31:
         5e:c7:ee:0f:70:5e:99:af:23:82:fd:9b:6e:84:43:2d:1a:43:
         0d:a8:5b:62:c7:20:a6:95:5e:95:ae:14:0d:49:f5:35:19:1d:
         67:cf:f8:b1:49:e8:a2:e8:1b:38:c8:cc:fa:65:1a:95:41:00:
         e5:1d:f6:87:9d:1a:05:16:b5:ec:38:42:83:ce:17:eb:e2:cd:
         9d:f9:d7:22:b0:5e:9b:54:05:9f:81:d6:1e:8f:27:b6:4e:4f:
         ea:b2:3b:ea:57:a1:1a:89:40:8c:bd:43:c0:d1:ab:4e:99:95:
         74:17:5b:f6:06:96:c9:de:45:7c:ee:cc:69:1c:97:b2:fa:fe:
         8a:e8:ad:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----