Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
File:                     HRAqymzxNRE4UpTnfb4nN2jAoEs.mft (raw, json)
Hash identifier:          hjY2QiDA9kyVSCnsavqsIQCbLQuTq5ka7Pd/ZynmXBc=
Subject key identifier:   0B:7D:05:07:95:EF:1A:B3:4B:6C:EC:3E:3C:EB:F3:C7:99:82:69:E6
Authority key identifier: 1D:10:2A:CA:6C:F1:35:11:38:52:94:E7:7D:BE:27:37:68:C0:A0:4B
Certificate issuer:       /CN=1d102aca6cf13511385294e77dbe273768c0a04b
Certificate serial:       01975FB92A3BA71B7C15AB999B7BF0B04B7B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
Manifest number:          0A65
Signing time:             Wed 11 Jun 2025 16:00:59 +0000
Manifest this update:     Wed 11 Jun 2025 16:00:59 +0000
Manifest next update:     Thu 12 Jun 2025 16:00:59 +0000
Files and hashes:         1: HRAqymzxNRE4UpTnfb4nN2jAoEs.crl (hash: zrRQRTvnvnbCCFDFmTESePxjSTmLMMU5CirUq8R7+qo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:b9:2a:3b:a7:1b:7c:15:ab:99:9b:7b:f0:b0:4b:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d102aca6cf13511385294e77dbe273768c0a04b
        Validity
            Not Before: Jun 11 16:00:59 2025 GMT
            Not After : Jun 12 16:00:59 2025 GMT
        Subject: CN=0b7d050795ef1ab34b6cec3e3cebf3c7998269e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:9c:92:d1:18:6c:c4:c7:bf:b4:c4:6d:f1:10:
                    c0:5b:5f:52:34:55:3c:87:be:7d:89:44:95:b3:89:
                    86:96:a0:46:da:e6:af:ab:eb:e2:b5:30:3a:0b:7d:
                    30:cc:3d:24:72:02:09:4e:13:02:79:b1:19:ca:f1:
                    5e:7c:fd:41:00:8d:69:f9:ee:a3:2c:98:bc:84:0c:
                    95:ce:ac:c3:70:72:28:ed:8e:e1:48:49:85:8a:c8:
                    a4:8e:9d:1b:f0:de:b8:2c:9f:fa:29:7a:64:d0:50:
                    bb:36:aa:d9:8d:0e:2d:33:85:57:55:a6:fb:f6:d3:
                    21:c0:94:fd:a1:fd:e9:18:49:1e:cc:16:26:e4:69:
                    8d:76:4b:14:15:8d:57:45:6e:a1:94:fd:6d:68:17:
                    54:b1:3c:e3:2c:ad:43:0c:a3:8e:c0:cb:2b:e7:6e:
                    24:9d:1d:85:97:8d:c8:4d:e8:79:06:d4:25:77:bb:
                    20:82:8c:7e:8f:6c:bc:f8:88:78:88:73:af:41:ee:
                    04:d7:64:bc:a6:c5:37:bc:6b:6d:6e:d9:5d:19:f1:
                    c2:29:a4:00:df:9f:01:2f:8e:0f:9d:43:93:e9:64:
                    2d:01:38:a8:8f:df:10:d5:4f:7b:44:89:f7:cf:fc:
                    dd:02:d6:6f:c7:de:b5:9f:4e:b8:4f:0e:02:a2:28:
                    8f:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:7D:05:07:95:EF:1A:B3:4B:6C:EC:3E:3C:EB:F3:C7:99:82:69:E6
            X509v3 Authority Key Identifier:
                keyid:1D:10:2A:CA:6C:F1:35:11:38:52:94:E7:7D:BE:27:37:68:C0:A0:4B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:db:b5:6f:b0:3a:34:ab:1f:55:83:fb:b0:cf:66:6c:08:c9:
         04:94:88:c5:0f:20:c5:f6:bf:67:ca:c7:5d:09:b3:ec:c0:dc:
         47:af:1d:d1:91:f8:e2:80:fe:8e:98:db:52:00:51:e6:b3:56:
         79:81:31:db:c0:22:aa:51:e7:fa:fc:18:75:65:2b:89:f9:4b:
         e6:fc:50:40:56:3b:2e:dd:3e:b8:af:54:54:58:2e:10:93:b8:
         60:66:c9:b1:e1:15:4f:b1:79:0e:62:20:7a:76:96:a3:28:39:
         0d:fe:a4:0c:43:c3:8a:5c:ff:18:a3:98:34:c0:6d:25:bc:fe:
         34:eb:d6:5b:88:37:b9:81:1e:14:6d:c6:86:f9:a0:6d:7f:e6:
         74:ef:6e:9e:56:b9:c1:ec:3f:c4:2f:dd:28:d4:05:4b:40:f6:
         40:b0:20:3c:a7:57:c5:58:d8:3f:3c:dc:cc:2d:7b:71:3f:aa:
         2c:34:d8:d3:96:ef:91:71:93:ee:ac:70:1b:0f:0c:c8:93:2f:
         dd:3d:d5:90:4b:77:80:92:33:48:57:c0:94:b5:66:5f:f1:de:
         9b:f5:35:5f:4c:26:1b:4f:b6:a9:b4:71:50:7d:9e:91:b0:16:
         dc:99:63:42:0f:31:5d:78:58:3a:9f:10:d7:95:82:25:14:43:
         56:27:c8:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----