Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
File:                     Tle6dst9bSrsBSA89BuOZxbufqA.mft (raw, json)
Hash identifier:          TUW1ITaJwGxUQDWa+BX6PU0lFZ7DVhxRro01l3Alqbw=
Subject key identifier:   68:8F:BA:E5:25:62:2C:DF:1D:D3:08:A3:3C:28:9B:B8:6A:33:1C:8A
Authority key identifier: 4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0
Certificate issuer:       /CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0
Certificate serial:       0197488D0BBAAEE702BA8F295E5C6E7EC6E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
Manifest number:          0EA1
Signing time:             Sat 07 Jun 2025 04:01:32 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:32 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:32 +0000
Files and hashes:         1: Tle6dst9bSrsBSA89BuOZxbufqA.crl (hash: t6eZJZdpQ56mq0t30/mPmcr0DRBcz8xPOCt1qhmsUzk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 04:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8d:0b:ba:ae:e7:02:ba:8f:29:5e:5c:6e:7e:c6:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0
        Validity
            Not Before: Jun  7 04:01:32 2025 GMT
            Not After : Jun  8 04:01:32 2025 GMT
        Subject: CN=688fbae525622cdf1dd308a33c289bb86a331c8a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:59:ef:f4:24:72:c9:a3:f7:11:62:8d:28:cd:
                    e8:51:6c:8b:ca:aa:62:8e:b0:9d:51:dd:c7:26:16:
                    9e:4f:89:ed:55:40:69:ec:0c:8e:dd:9d:51:9c:44:
                    e1:48:d8:9a:8e:23:00:3f:a0:6e:5a:6a:80:a2:27:
                    b2:72:dd:d1:d6:15:7f:76:99:42:69:7d:89:74:9a:
                    f0:db:80:b5:ae:08:8d:90:7a:e9:19:2d:bd:f5:2f:
                    2b:57:5a:6b:d8:43:ee:2f:b3:35:ff:f7:8e:29:c7:
                    e6:0f:24:a0:bd:63:8d:73:7a:af:c5:9a:6a:b4:b9:
                    13:0a:26:a5:af:32:1c:04:c3:cd:7e:bc:70:b1:58:
                    54:35:a8:62:6a:79:3e:df:a2:c4:a7:5f:6f:cc:8e:
                    68:b0:b5:9b:73:05:a4:09:15:37:28:ca:c1:5d:d6:
                    7c:28:56:38:fe:e8:4d:29:28:a6:05:d8:90:ef:73:
                    ea:81:93:86:50:82:d0:cd:7e:30:56:98:05:a3:b4:
                    7f:a4:2e:db:41:a6:ae:fb:00:17:e5:cd:8b:1a:c1:
                    ad:ea:e2:80:1e:ae:18:aa:d7:51:b3:f1:55:de:96:
                    14:15:3a:b4:75:06:7b:c2:fc:31:f8:f9:58:0f:b5:
                    50:aa:08:f7:99:95:4d:57:be:24:46:b3:42:f4:6f:
                    a0:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:8F:BA:E5:25:62:2C:DF:1D:D3:08:A3:3C:28:9B:B8:6A:33:1C:8A
            X509v3 Authority Key Identifier:
                keyid:4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:69:68:8c:3b:52:b2:d1:54:9e:26:2a:b2:40:8b:85:7d:05:
         85:03:be:f7:76:9a:71:93:63:7a:e5:6a:7f:dc:e9:2d:bd:c3:
         db:56:cc:9a:21:12:6a:46:54:b3:a0:24:7a:5f:5c:cd:48:5a:
         fe:8c:88:18:89:8c:d1:aa:14:db:11:07:cb:fa:4c:b2:13:1a:
         27:3d:a1:44:e1:7f:bf:a9:7d:4c:78:72:cb:46:63:fa:39:a2:
         a2:a4:10:bb:82:4a:fb:4e:ce:27:84:c9:f9:bb:36:8f:47:99:
         60:5b:19:5e:26:5e:a7:9a:45:a2:eb:e3:3d:bb:f0:79:29:4b:
         4b:3c:d2:55:55:95:7e:cf:25:03:a5:7d:a0:e8:6b:ee:1e:af:
         54:f2:70:3b:e2:04:25:c2:f5:7f:7b:62:06:a4:46:55:70:7a:
         be:f6:a3:5e:48:f1:99:d7:f9:91:43:aa:f1:0d:4d:42:a2:81:
         f4:7c:0e:42:ba:18:88:e2:bf:cf:4f:fe:cc:44:d3:41:35:aa:
         ae:c7:85:5f:58:d8:e5:c3:d1:d3:c2:29:83:a0:49:fc:8e:78:
         5a:52:ba:c3:fc:db:db:c4:a1:3f:24:b0:ec:bf:f8:97:23:f3:
         24:73:b9:7d:f0:81:37:13:eb:23:8b:ac:25:7b:53:3d:7a:91:
         0a:e0:c5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----