Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft
File:                     jzAoLIbxBGuTEkzycOEU5fAm_3M.mft (raw, json)
Hash identifier:          Tw0DTTxW61VL7lzHGapt2NA7dsDUzsfHr/BbVHh+1bA=
Subject key identifier:   51:C5:EC:30:7F:3B:DD:10:35:F5:1B:B0:1B:98:66:00:F9:B9:E0:31
Authority key identifier: 8F:30:28:2C:86:F1:04:6B:93:12:4C:F2:70:E1:14:E5:F0:26:FF:73
Certificate issuer:       /CN=8f30282c86f1046b93124cf270e114e5f026ff73
Certificate serial:       019761A737EC1915CB1DE1B8703C1190A0FC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jzAoLIbxBGuTEkzycOEU5fAm_3M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft
Manifest number:          0F47
Signing time:             Thu 12 Jun 2025 01:00:38 +0000
Manifest this update:     Thu 12 Jun 2025 01:00:38 +0000
Manifest next update:     Fri 13 Jun 2025 01:00:38 +0000
Files and hashes:         1: jzAoLIbxBGuTEkzycOEU5fAm_3M.crl (hash: UVWlVYetXbvNawbPEISkbyCwLo2Sm1tTsnzdfuLNfas=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jzAoLIbxBGuTEkzycOEU5fAm_3M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:61:a7:37:ec:19:15:cb:1d:e1:b8:70:3c:11:90:a0:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f30282c86f1046b93124cf270e114e5f026ff73
        Validity
            Not Before: Jun 12 01:00:38 2025 GMT
            Not After : Jun 13 01:00:38 2025 GMT
        Subject: CN=51c5ec307f3bdd1035f51bb01b986600f9b9e031
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:9f:5f:a3:61:05:41:85:01:98:bd:a8:83:71:
                    91:86:bb:4e:4a:da:64:11:8b:2d:9d:d8:7c:7d:88:
                    f3:e3:a5:05:c4:fe:29:b8:55:85:f6:6d:43:87:8b:
                    f8:f3:79:b1:6b:68:0e:07:ec:fa:35:a1:b5:94:fd:
                    03:df:28:0c:19:8c:1e:b1:54:6c:a3:73:6c:bd:e2:
                    87:52:19:c4:73:56:1c:3e:05:05:d0:e6:dd:5f:8b:
                    45:c3:1b:2e:a3:c1:dc:9a:43:ac:c2:a4:b6:3c:b4:
                    55:0d:07:28:77:40:aa:bf:af:f8:67:00:84:d1:cd:
                    bb:7e:35:a5:02:16:94:c1:36:94:9e:ac:3e:de:98:
                    93:19:8f:50:80:92:9b:b4:4c:ca:25:d5:0d:78:28:
                    74:b9:73:6d:40:3b:5f:81:21:eb:2e:98:30:dd:5e:
                    74:70:d0:e5:4b:74:e7:0d:a4:97:c6:10:3e:97:b9:
                    60:7b:ed:ed:c6:2f:24:8a:c9:71:21:cb:ce:f0:62:
                    ef:a5:65:3d:d6:4f:fa:db:9f:2c:d4:e0:e5:42:16:
                    77:7a:99:a2:0a:20:c5:c3:c1:3e:6d:09:d6:23:60:
                    f4:4a:e0:58:e3:d5:cc:1d:5d:39:3c:3d:f3:06:d6:
                    b2:9f:4d:43:72:4a:e3:54:ac:1b:6d:b8:34:41:e0:
                    90:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:C5:EC:30:7F:3B:DD:10:35:F5:1B:B0:1B:98:66:00:F9:B9:E0:31
            X509v3 Authority Key Identifier:
                keyid:8F:30:28:2C:86:F1:04:6B:93:12:4C:F2:70:E1:14:E5:F0:26:FF:73

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzAoLIbxBGuTEkzycOEU5fAm_3M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:be:fd:96:e3:7d:8f:97:09:e4:5b:e0:05:6b:9b:f2:e0:d1:
         3d:b9:1f:5e:73:cc:08:86:4f:0a:8f:4e:8a:56:9e:d6:ff:fe:
         09:88:20:9a:40:4c:a1:8b:4e:a9:11:47:64:79:44:67:4b:27:
         5a:ac:b5:fc:1d:db:30:be:a8:69:c6:f6:b2:e7:9f:96:52:88:
         1d:77:d5:e7:9e:f6:05:23:47:c1:e7:af:79:9e:be:b4:b5:8a:
         ff:59:e8:d6:5a:d8:08:9f:04:43:f6:0f:72:30:08:75:7c:b6:
         20:94:ad:ef:b3:6b:44:78:82:ef:0e:2e:2c:69:d2:1a:81:21:
         09:18:79:d3:d6:e9:51:9c:a2:4a:c6:ca:71:d4:51:9a:3b:1c:
         90:ca:6f:92:af:b4:09:3d:dd:8a:22:d9:3e:1e:73:cc:02:c8:
         a1:94:c5:c5:e5:62:0f:fe:b4:fd:0a:21:f0:2b:fe:1c:6a:d7:
         c6:fc:7f:56:55:86:33:54:68:bc:f4:a1:24:00:ae:3a:ea:38:
         4b:10:32:b6:bf:32:26:8c:12:ce:42:31:25:b1:57:44:87:90:
         df:1c:39:67:bb:93:00:78:e7:cc:40:75:a8:68:c0:bf:33:7f:
         f5:a7:98:05:6d:3e:57:69:d8:62:3f:73:4f:af:54:77:c5:76:
         1b:6f:08:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----