Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
File:                     4WU0PZW9Tbww89ciSVQanUfnbZE.mft (raw, json)
Hash identifier:          ICsU1FOFcG0jiOjZ+c5xN6Ffus3q9C/C3bL2zDyaUh4=
Subject key identifier:   BA:63:4A:A4:1F:0A:43:0F:2E:78:8F:94:01:24:D7:81:BF:CF:A6:AE
Authority key identifier: E1:65:34:3D:95:BD:4D:BC:30:F3:D7:22:49:54:1A:9D:47:E7:6D:91
Certificate issuer:       /CN=e165343d95bd4dbc30f3d72249541a9d47e76d91
Certificate serial:       0197500EB5B905B17AC0A73BCA6EDEA15F6D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
Manifest number:          0E83
Signing time:             Sun 08 Jun 2025 15:00:30 +0000
Manifest this update:     Sun 08 Jun 2025 15:00:30 +0000
Manifest next update:     Mon 09 Jun 2025 15:00:30 +0000
Files and hashes:         1: 4WU0PZW9Tbww89ciSVQanUfnbZE.crl (hash: avgfLTGIBALeK2UUrkiESb+SigUaS1Ce88YYtv0/KBQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 11:44:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:0e:b5:b9:05:b1:7a:c0:a7:3b:ca:6e:de:a1:5f:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e165343d95bd4dbc30f3d72249541a9d47e76d91
        Validity
            Not Before: Jun  8 15:00:30 2025 GMT
            Not After : Jun  9 15:00:30 2025 GMT
        Subject: CN=ba634aa41f0a430f2e788f940124d781bfcfa6ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:ba:7a:31:5e:91:0a:18:f8:38:1e:0b:a0:34:
                    73:ea:4f:ab:ee:99:0e:ef:51:ec:39:7d:aa:1f:fa:
                    bd:b0:65:2f:dd:23:a5:ba:e0:cc:14:ad:51:13:df:
                    84:5a:33:ca:d8:4b:c6:9b:38:a6:5a:0b:26:00:80:
                    9e:1f:5b:1d:b7:08:62:90:c3:04:ec:cc:77:4a:fd:
                    e0:86:62:5c:0d:04:cb:8e:7b:cd:e2:08:5f:88:82:
                    6b:b5:8a:77:82:a2:26:42:33:80:ee:d6:0a:75:2d:
                    f8:9d:18:84:34:15:ae:18:e3:42:6a:92:10:69:44:
                    6e:ed:c1:e7:c8:e6:d3:12:39:7a:32:d7:45:69:56:
                    ef:b9:e4:b8:45:71:bb:de:f7:ca:a8:98:10:00:3e:
                    a2:fc:10:ce:93:b9:f8:ea:02:7d:bf:e9:c5:49:5e:
                    b7:53:8e:42:5d:e6:b5:2d:95:cb:5e:57:44:3e:c1:
                    19:69:9f:6c:87:93:a6:c8:4d:02:b6:66:04:f6:cf:
                    b9:3d:25:39:d7:e2:65:6c:d2:52:73:e4:c2:e7:12:
                    45:d4:53:44:f1:f8:92:30:cb:2c:b6:0b:a5:97:14:
                    3d:51:f0:3c:7a:68:89:88:a3:59:a1:7e:2e:4a:59:
                    2a:ac:5c:1a:8d:bc:ff:55:87:19:ed:0d:c2:d9:65:
                    12:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:63:4A:A4:1F:0A:43:0F:2E:78:8F:94:01:24:D7:81:BF:CF:A6:AE
            X509v3 Authority Key Identifier:
                keyid:E1:65:34:3D:95:BD:4D:BC:30:F3:D7:22:49:54:1A:9D:47:E7:6D:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:18:38:58:e3:67:48:fd:93:6a:40:ec:72:87:ef:81:22:81:
         46:64:96:cc:51:ec:73:a7:ea:36:47:4c:5d:2d:36:da:82:3b:
         c6:88:99:97:ce:76:35:1b:6f:24:b5:04:fd:49:1e:48:40:20:
         37:67:22:00:5b:af:37:fa:72:e0:4a:4f:14:ce:f8:a1:94:98:
         c9:22:32:f5:21:3b:04:75:db:fe:4f:0e:ad:3b:5b:6e:f0:9f:
         ed:cd:6a:ec:c2:2d:e0:2b:3b:11:23:78:9e:e5:17:40:c0:4f:
         c4:15:b5:bd:a1:0a:45:de:07:17:b3:25:32:79:41:d6:2e:08:
         23:68:4f:5a:b6:f6:d8:8c:b9:40:f5:09:88:13:91:cc:5a:c8:
         72:be:3a:8b:34:5e:b0:cf:9e:b0:cb:92:38:ae:22:a3:95:3b:
         3c:94:14:f9:f6:e3:b5:1f:af:38:05:a3:17:e6:d1:97:22:16:
         40:ad:17:4f:76:56:f8:03:8b:14:b0:92:b5:ae:0d:2c:95:c2:
         9e:20:11:81:2f:cc:8e:d3:5f:4e:3f:c1:02:ed:de:88:e3:fd:
         61:6f:df:71:25:1c:ab:13:98:15:d3:b3:db:1c:94:b1:74:0a:
         4a:aa:4b:64:3d:c0:d1:bb:2b:df:17:3d:d6:c7:3a:e9:f7:01:
         33:58:56:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----