Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
File:                     daRvv8jeUjM5XHPeUflVO7doRgU.mft (raw, json)
Hash identifier:          eRrcvc4iqFWjHlApoENTZyUtHwl2T7mnJ7WvOsCpWdQ=
Subject key identifier:   C9:12:AD:E6:A7:E7:0C:B2:CE:37:1E:CF:45:EA:43:53:55:93:AB:35
Authority key identifier: 75:A4:6F:BF:C8:DE:52:33:39:5C:73:DE:51:F9:55:3B:B7:68:46:05
Certificate issuer:       /CN=75a46fbfc8de5233395c73de51f9553bb7684605
Certificate serial:       01974A7BA29B73166C30099AFC550E855C34
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 13:01:45 +0000
Manifest this update:     Sat 07 Jun 2025 13:01:45 +0000
Manifest next update:     Sun 08 Jun 2025 13:01:45 +0000
Files and hashes:         1: daRvv8jeUjM5XHPeUflVO7doRgU.crl (hash: x+bfwJc6crKpxWh1W2B2cvqRRgd7VaIjwlszkhUTwz8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7b:a2:9b:73:16:6c:30:09:9a:fc:55:0e:85:5c:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75a46fbfc8de5233395c73de51f9553bb7684605
        Validity
            Not Before: Jun  7 13:01:45 2025 GMT
            Not After : Jun  8 13:01:45 2025 GMT
        Subject: CN=c912ade6a7e70cb2ce371ecf45ea43535593ab35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:51:b9:63:1f:47:2c:d0:8e:a6:b2:3d:fe:1d:
                    6f:0b:9c:84:b3:8d:c8:75:59:3e:54:00:e7:e4:6d:
                    cc:51:9b:9b:e9:be:66:89:e5:d9:bd:7c:62:47:7f:
                    d8:df:7e:fc:7a:14:30:d4:c1:43:62:3b:1c:d4:da:
                    cf:90:7c:ec:1d:b5:ae:91:6a:19:ad:9f:4d:33:12:
                    1a:0b:7b:41:9e:0d:ea:28:f7:04:90:4f:f7:c3:9e:
                    81:dd:52:ca:c4:58:d4:84:86:89:ca:15:7d:f5:e3:
                    ea:ee:b0:17:40:d9:9f:cd:60:40:7f:14:49:90:a1:
                    4c:bf:ee:0c:f5:b8:10:20:fc:e6:6d:5f:ea:5c:62:
                    f5:7e:c2:6b:10:74:9f:e6:e0:12:94:2e:d5:f8:02:
                    1e:d9:9d:f1:77:3b:99:a7:fc:5a:8c:50:6a:56:08:
                    20:4e:9a:37:cd:ad:df:12:f2:21:e8:2a:84:0f:0f:
                    72:51:69:25:cc:24:77:39:e7:51:24:0b:13:5c:09:
                    01:3f:39:98:08:3d:ed:f0:73:e3:ba:9f:d4:8c:aa:
                    29:4a:21:a3:0b:02:20:6e:4c:a1:2a:a1:34:af:43:
                    cd:68:ce:95:98:3f:30:21:fe:60:e9:05:8e:bc:11:
                    fc:e1:af:d2:71:28:9c:a1:10:10:e4:d1:0e:78:68:
                    e1:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:12:AD:E6:A7:E7:0C:B2:CE:37:1E:CF:45:EA:43:53:55:93:AB:35
            X509v3 Authority Key Identifier:
                keyid:75:A4:6F:BF:C8:DE:52:33:39:5C:73:DE:51:F9:55:3B:B7:68:46:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:a5:38:78:7a:37:5a:a3:55:79:02:17:86:a2:1d:e1:2e:07:
         4e:1f:4c:6c:0d:1b:48:33:02:b1:9b:d4:07:43:8b:6d:44:39:
         5a:f7:79:4d:58:5c:b4:2b:fa:d9:42:cc:ea:18:e6:69:c8:a4:
         94:0d:67:9d:a0:1c:4b:63:f7:ec:b8:95:5a:af:f0:82:c2:68:
         0f:63:cf:12:9f:b7:18:d1:a7:23:d8:17:ca:43:73:92:bb:d4:
         da:ee:ef:8b:5f:40:d7:f7:f4:da:01:ea:31:ff:0a:74:5f:79:
         16:2a:14:32:7f:fa:a2:9d:64:4b:3b:5c:bf:11:05:8f:4e:14:
         a3:f1:93:fc:56:0e:79:8a:33:1e:5b:6e:f1:88:6a:b3:df:d4:
         c5:f1:95:f9:34:19:51:fc:a1:f8:22:b8:02:70:ce:c5:87:74:
         b7:74:0b:c8:3d:b9:0c:91:78:32:6d:39:80:61:f1:0a:6b:2c:
         b8:cb:39:b0:56:ee:a8:69:0f:41:0d:53:29:73:d4:06:b3:f6:
         13:9e:66:d8:d1:f7:90:85:de:73:61:b7:60:a8:23:9b:4e:7a:
         9b:dd:73:eb:c5:e1:20:1f:be:b0:20:03:ad:77:25:95:7d:cc:
         68:b1:3a:d1:21:b5:cf:38:3d:0d:0f:2f:51:d2:17:5b:ea:4f:
         25:f5:04:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----