Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
File:                     d11030Q8uAUXzkFQ3OImYpQPHXw.mft (raw, json)
Hash identifier:          hgIZbaCoQ6pq3Ibf3wfWIvvXD60sSuuz5kG8mzwTQlo=
Subject key identifier:   85:E8:0E:E9:06:D6:1E:45:63:56:0B:A7:6D:7A:16:1A:89:F9:0F:BF
Authority key identifier: 77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
Certificate issuer:       /CN=775d74df443cb80517ce4150dce22662940f1d7c
Certificate serial:       01974CD74BDD3747862D395431DD52AE07B8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
Manifest number:          09B9
Signing time:             Sun 08 Jun 2025 00:01:07 +0000
Manifest this update:     Sun 08 Jun 2025 00:01:07 +0000
Manifest next update:     Mon 09 Jun 2025 00:01:07 +0000
Files and hashes:         1: d11030Q8uAUXzkFQ3OImYpQPHXw.crl (hash: e9B2Hc2lojfSx5BKMoBhVEi/R/Ta7/Z7L7JhM85r+sc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:d7:4b:dd:37:47:86:2d:39:54:31:dd:52:ae:07:b8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=775d74df443cb80517ce4150dce22662940f1d7c
        Validity
            Not Before: Jun  8 00:01:07 2025 GMT
            Not After : Jun  9 00:01:07 2025 GMT
        Subject: CN=85e80ee906d61e4563560ba76d7a161a89f90fbf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:56:7d:a6:d7:0a:ff:d2:3a:a3:b6:17:d3:ba:
                    07:03:95:bd:10:fa:10:15:c6:d0:7f:8e:ed:0b:3f:
                    58:bb:65:be:92:04:aa:25:90:83:93:9a:39:6d:ab:
                    07:7b:6b:19:ad:4c:60:3e:00:e4:be:b7:33:79:73:
                    61:0b:99:09:3f:36:5d:fc:60:49:91:e5:7c:28:01:
                    7d:e3:65:f3:2d:0f:ce:bc:ae:69:7f:b2:1c:3f:45:
                    45:cd:79:fb:62:d9:6e:bf:20:85:ab:1e:85:d9:76:
                    79:f4:c5:3c:e3:8d:14:c0:89:17:08:12:68:d5:f6:
                    ea:d1:99:f9:51:ee:11:ba:b1:cc:d4:02:c3:8d:cd:
                    88:5d:c4:83:f1:cb:57:b7:6e:65:d3:f5:74:91:8b:
                    cf:4d:28:52:50:fb:57:72:43:77:bc:fd:bd:e4:41:
                    19:50:af:84:2b:f0:88:aa:1a:b3:fe:2c:46:dd:d5:
                    72:27:9c:f5:d5:5b:27:a0:71:b8:d7:ba:9f:d6:e7:
                    7c:f5:81:e1:4b:4a:ca:57:e2:de:dc:74:ce:73:eb:
                    e2:8a:da:19:8b:4e:d9:86:b3:9c:f7:43:59:c1:57:
                    33:0c:f7:ba:0d:d8:72:7b:59:c2:a1:4c:46:a4:73:
                    c3:32:b8:ad:be:2c:72:84:0f:ec:e6:b4:49:e3:6a:
                    4c:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:E8:0E:E9:06:D6:1E:45:63:56:0B:A7:6D:7A:16:1A:89:F9:0F:BF
            X509v3 Authority Key Identifier:
                keyid:77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:85:20:5a:1a:92:b2:10:b3:69:db:87:9b:9f:a4:b3:95:7f:
         41:ff:ac:0c:74:71:ae:28:9c:3d:07:0f:2b:ee:6b:af:22:aa:
         09:46:ac:a5:14:03:8d:48:62:c5:e0:8d:ea:c5:e4:27:d6:9b:
         ba:6e:f7:65:85:38:6a:3d:23:38:8b:e9:72:4c:61:b9:8a:45:
         7a:f7:67:61:28:84:e8:b8:6f:64:9c:4c:e0:bf:79:99:95:9e:
         10:b4:45:9a:9b:16:88:94:3d:3c:9f:bd:b3:9a:27:2b:fd:fb:
         f5:94:4a:08:88:86:dc:48:75:64:e9:ee:77:bd:9c:14:b8:fc:
         a4:73:51:cc:7d:43:a5:b0:28:bb:0d:32:a3:4a:fa:ba:b8:2a:
         dd:bb:99:77:22:1f:e9:77:61:b0:f3:a1:10:20:12:9e:b5:0c:
         94:63:19:c7:e3:46:84:a8:90:b7:d0:a0:a8:06:36:79:fa:12:
         94:b8:3b:23:b2:fa:45:8b:03:b3:d5:36:f2:f1:0e:32:6d:c2:
         d1:f8:bb:67:75:35:f2:bd:3d:4e:c9:cd:49:e9:e6:72:9a:d2:
         c9:5b:2f:89:6c:bf:ea:bb:0d:c0:4e:db:9d:8d:02:f6:98:73:
         45:1d:6f:87:82:ca:d6:82:56:ee:d0:e6:92:13:7b:c6:92:4c:
         e5:a9:fb:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----