Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
File:                     lvMFpB83TbAVgTN3CNHHnr6nlxw.mft (raw, json)
Hash identifier:          VIbyxiKgIKn0p2WilhXw0ZsvQZXaNGNGANRm3w2tAqA=
Subject key identifier:   38:0C:59:14:86:6E:ED:7A:6B:54:E1:60:E1:AE:98:83:36:DA:61:65
Authority key identifier: 96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C
Certificate issuer:       /CN=96f305a41f374db01581337708d1c79ebea7971c
Certificate serial:       01974AB14946EFA1574DE841245872988A55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
Manifest number:          03FF
Signing time:             Sat 07 Jun 2025 14:00:21 +0000
Manifest this update:     Sat 07 Jun 2025 14:00:21 +0000
Manifest next update:     Sun 08 Jun 2025 14:00:21 +0000
Files and hashes:         1: lvMFpB83TbAVgTN3CNHHnr6nlxw.crl (hash: hZjvyUHNsWGCEKicF0GZP+de3ex0fyv4tgORO5z86Sc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 14:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:b1:49:46:ef:a1:57:4d:e8:41:24:58:72:98:8a:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96f305a41f374db01581337708d1c79ebea7971c
        Validity
            Not Before: Jun  7 14:00:21 2025 GMT
            Not After : Jun  8 14:00:21 2025 GMT
        Subject: CN=380c5914866eed7a6b54e160e1ae988336da6165
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:50:78:91:14:28:1d:4f:6c:38:ca:f7:8a:c3:
                    7c:50:bc:0f:57:6c:4c:51:01:7f:7e:75:33:06:99:
                    6e:8b:ce:be:09:7d:8a:8e:fe:2d:45:80:37:0a:a3:
                    bc:22:0d:cd:0c:1e:2f:ad:c0:80:7d:e1:79:98:7f:
                    21:52:1d:30:3a:84:01:83:81:90:11:f4:f5:76:2c:
                    6b:fd:1a:ad:96:dc:a0:be:5c:44:6b:29:25:be:d9:
                    47:0e:3a:4e:ec:ea:41:cc:d7:ae:1a:38:a8:62:36:
                    79:f5:b9:0f:ea:49:ed:7b:20:49:3b:b5:75:28:aa:
                    e4:67:a5:d2:ac:ac:14:b5:1c:fe:e4:68:54:8b:14:
                    4e:12:fa:d6:31:55:e9:76:fa:df:7a:74:7e:2b:1b:
                    99:33:88:20:71:62:e9:55:1e:d6:c9:4a:7f:ea:28:
                    04:5c:88:44:f1:b7:02:aa:64:46:65:06:cb:d1:0d:
                    59:92:a9:ad:62:ea:58:9b:09:8f:86:69:38:f7:d0:
                    f7:96:60:15:ed:88:f8:94:92:f3:bf:a0:1d:27:02:
                    61:6e:b7:8a:6b:e1:1c:f9:4e:48:1e:29:e2:35:66:
                    fe:d5:68:56:75:f8:c6:63:e1:bd:53:84:85:5a:8f:
                    64:b7:39:ed:c6:66:51:d6:d5:3a:13:c4:9b:18:d1:
                    08:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:0C:59:14:86:6E:ED:7A:6B:54:E1:60:E1:AE:98:83:36:DA:61:65
            X509v3 Authority Key Identifier:
                keyid:96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:c2:cd:5a:62:3d:cb:eb:5e:eb:67:82:f7:ed:dd:50:90:e7:
         d3:23:99:22:83:61:ce:fb:ea:a9:47:3b:ab:93:ea:9f:35:60:
         ac:95:0b:47:7d:ec:ee:36:03:e4:9e:ae:f5:2b:d8:ef:5d:1b:
         7e:64:74:50:b3:14:df:63:b7:80:2e:14:43:81:2f:47:99:7f:
         18:43:38:66:76:ff:34:79:70:37:a8:b6:d4:c8:e1:0c:95:0e:
         51:ac:9b:40:fb:4e:4b:dd:ca:c5:0f:44:2c:58:ed:09:ff:d6:
         8a:ec:98:a2:fb:e8:30:22:71:8e:39:67:d7:40:bf:9d:60:ea:
         b4:01:c7:45:5b:ec:28:04:7a:e3:3c:e8:1b:19:c9:65:1d:e3:
         d0:dd:75:25:17:aa:a1:82:0a:f2:f8:92:e6:7b:f4:9a:1e:9f:
         be:ca:66:f1:b5:62:21:2e:77:a3:8a:37:a8:0a:36:d7:59:3c:
         3f:08:ca:98:5d:6c:c5:e7:a3:25:d9:cc:78:03:88:81:fa:0a:
         3d:f9:cb:cb:4c:9d:ab:fd:15:3a:27:43:97:ba:33:b0:4e:fe:
         be:de:83:17:95:0d:c3:0f:0f:5e:e4:12:26:ec:fb:31:50:95:
         ac:e5:6c:e3:7d:14:52:ab:f8:31:54:33:53:e7:92:7b:4c:a6:
         c9:85:9f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----