Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
File:                     ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft (raw, json)
Hash identifier:          orF55UzcAXpBOlmets/EYZAw/OFJsZJz093prAXIr08=
Subject key identifier:   AA:83:BE:EA:D0:BF:D9:50:79:B2:15:5A:6C:B5:7A:50:3B:53:D6:14
Authority key identifier: 22:DC:6E:47:43:ED:5C:C8:43:03:28:52:89:6E:F1:5F:48:92:ED:B0
Certificate issuer:       /CN=22dc6e4743ed5cc843032852896ef15f4892edb0
Certificate serial:       01974B1F1C1156D71C18035A8DCCC3F690D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
Manifest number:          0B81
Signing time:             Sat 07 Jun 2025 16:00:19 +0000
Manifest this update:     Sat 07 Jun 2025 16:00:19 +0000
Manifest next update:     Sun 08 Jun 2025 16:00:19 +0000
Files and hashes:         1: ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl (hash: bAqQCdv7MMK3LUrMo2IW0cD0lXC7DIEownfS4d8cs4Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:1f:1c:11:56:d7:1c:18:03:5a:8d:cc:c3:f6:90:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=22dc6e4743ed5cc843032852896ef15f4892edb0
        Validity
            Not Before: Jun  7 16:00:19 2025 GMT
            Not After : Jun  8 16:00:19 2025 GMT
        Subject: CN=aa83beead0bfd95079b2155a6cb57a503b53d614
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:b7:72:2f:4e:e4:98:51:30:39:b0:7a:9b:84:
                    8d:4f:4a:f0:e6:b0:64:77:61:00:89:e1:f3:44:d5:
                    f8:64:30:a1:f4:95:0a:70:1c:d0:6a:b0:25:26:d3:
                    e9:b3:ad:e4:4c:e4:e1:8d:e2:0c:06:20:12:63:20:
                    ce:7a:ce:bd:6d:59:23:76:83:3f:07:f7:e4:53:98:
                    42:55:54:7b:74:77:ea:fc:a3:59:09:22:a8:78:19:
                    b1:6e:ee:31:2d:18:dc:66:54:9d:54:db:cd:2a:3e:
                    0c:98:01:67:fa:26:52:79:3a:95:ba:0a:b9:12:6a:
                    5a:bc:0b:d1:8f:cf:27:f3:2c:63:c6:b9:00:a5:5d:
                    a2:4f:34:f5:0f:79:0f:2a:a4:a9:39:6b:33:0e:5d:
                    19:2e:2b:86:56:67:9b:7a:20:d1:18:dd:c4:f1:c4:
                    85:3b:c5:c3:4e:0e:a6:3d:b0:74:62:bf:8c:97:a8:
                    10:89:c3:dd:7e:bf:1a:75:c5:46:8e:e9:ce:69:ad:
                    05:ae:a6:a3:3e:1c:89:af:50:ca:85:a7:f5:df:57:
                    c8:d4:82:9d:fc:0c:06:b1:45:8d:e1:b7:6b:12:6c:
                    7e:5c:81:6a:d3:a3:a4:0b:60:01:9f:b1:d7:69:b6:
                    80:1e:ac:71:d2:2c:a7:c4:9f:97:5b:ab:db:ee:0e:
                    f1:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:83:BE:EA:D0:BF:D9:50:79:B2:15:5A:6C:B5:7A:50:3B:53:D6:14
            X509v3 Authority Key Identifier:
                keyid:22:DC:6E:47:43:ED:5C:C8:43:03:28:52:89:6E:F1:5F:48:92:ED:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:24:ae:b1:0e:29:e1:ec:1f:5c:2d:e9:17:b4:30:11:f7:35:
         65:1b:23:cd:b5:9e:63:08:1e:75:9b:e3:00:52:ef:25:a1:11:
         a2:47:88:9a:bd:85:fa:f2:4d:63:fa:21:06:ce:7e:b9:8a:1a:
         93:5d:64:73:12:fd:a2:a3:05:3e:e0:a4:52:72:4d:0a:34:ac:
         3f:2d:6b:8a:f9:c1:8a:78:dc:49:fa:4e:d3:ac:42:98:87:39:
         e0:80:42:13:49:6b:e6:6d:e1:95:dd:eb:2d:f9:31:ea:01:db:
         b1:91:69:6c:11:36:e7:09:41:65:5b:87:b2:8f:e2:2c:82:2e:
         f2:5d:36:0d:6b:83:b7:59:1b:57:b3:40:eb:d7:a4:e5:d0:49:
         99:b6:cb:2f:91:0f:bb:88:49:9f:8e:6f:92:23:b2:dc:72:a0:
         39:9b:28:db:5f:de:0e:fb:eb:88:bc:c9:eb:57:c1:65:8c:7f:
         d9:38:22:ad:23:d7:9f:0f:4f:96:d9:ff:22:73:d0:6d:5b:e9:
         41:57:b4:1b:cb:ba:72:50:d6:40:5d:04:c2:ef:4e:c6:7f:a0:
         96:97:a7:25:14:76:69:39:cd:84:a6:4d:78:36:46:aa:c6:a7:
         56:62:28:06:22:2b:71:08:4e:19:90:7a:f4:61:30:d6:20:c5:
         51:34:7a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----