Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
File:                     yPGA3UiWddR5NSX-5s__Rpcv8zw.mft (raw, json)
Hash identifier:          G6PHjWcTHdyZ2Ux6m/Qe6md3URYxMV3xJFdExtTk3Lg=
Subject key identifier:   8F:30:DD:C8:D5:29:14:06:E5:C9:5C:11:69:EF:E1:95:C0:45:7D:B4
Authority key identifier: C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C
Certificate issuer:       /CN=c8f180dd489675d4793525fee6cfff46972ff33c
Certificate serial:       019748FABD290791F63F3855725AFA3C6B5F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
Manifest number:          1579
Signing time:             Sat 07 Jun 2025 06:01:21 +0000
Manifest this update:     Sat 07 Jun 2025 06:01:21 +0000
Manifest next update:     Sun 08 Jun 2025 06:01:21 +0000
Files and hashes:         1: yPGA3UiWddR5NSX-5s__Rpcv8zw.crl (hash: N5nGBWNjr2YnC55I60vHoMv28NKHML/7EEuzbrKYndQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 06:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:fa:bd:29:07:91:f6:3f:38:55:72:5a:fa:3c:6b:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8f180dd489675d4793525fee6cfff46972ff33c
        Validity
            Not Before: Jun  7 06:01:21 2025 GMT
            Not After : Jun  8 06:01:21 2025 GMT
        Subject: CN=8f30ddc8d5291406e5c95c1169efe195c0457db4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:7b:af:03:ac:15:86:b2:26:ca:93:0f:33:97:
                    82:79:c6:2b:d9:e4:b2:cd:f7:86:5a:0f:a7:7f:ae:
                    0d:55:52:06:ea:d5:0c:ff:27:b4:25:11:c3:6b:ba:
                    17:cf:d6:35:6c:2a:9e:a0:2d:a1:1d:71:46:a3:42:
                    a5:df:6a:b5:2d:32:f2:75:9f:3b:13:f4:b5:66:31:
                    fc:59:d7:45:2c:dd:82:75:17:4c:ff:30:a8:62:e6:
                    61:1f:73:af:b5:f7:35:c9:28:63:ae:b8:2f:d3:16:
                    b4:27:19:30:b5:9d:b1:bd:47:63:c7:61:60:78:5b:
                    f0:74:1a:02:c0:e5:b2:52:7a:93:68:2d:8f:8a:6b:
                    f7:7e:25:26:7d:73:34:a4:a6:d5:af:75:f3:ab:27:
                    40:80:b7:10:fc:c2:d5:a1:9f:1c:5e:49:ad:1b:35:
                    94:a5:6a:4f:d0:d6:fe:87:43:9d:0f:87:05:21:75:
                    ba:e0:3c:1f:15:00:bf:dd:2b:b9:04:df:f3:a1:ad:
                    fb:ae:1e:0a:34:8e:2c:e5:c2:98:81:16:9d:19:8b:
                    cf:01:6f:d0:cc:ec:b5:f8:e0:59:1e:12:7d:22:e5:
                    64:b9:40:f4:09:52:2b:0a:dd:2d:4a:bd:28:58:dd:
                    0b:39:9e:6f:f4:4b:d9:6f:6b:c0:62:c1:1f:24:31:
                    8b:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:30:DD:C8:D5:29:14:06:E5:C9:5C:11:69:EF:E1:95:C0:45:7D:B4
            X509v3 Authority Key Identifier:
                keyid:C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:29:ee:e1:89:bf:f1:09:77:8f:8f:a8:29:e7:b8:ac:9e:b1:
         e4:59:0f:7f:28:a4:e3:da:38:13:cc:78:d6:f8:d9:f2:30:8c:
         3e:7b:b4:39:14:9b:75:35:b8:09:bd:c5:57:b3:09:45:c6:b1:
         14:83:6b:8a:60:c5:c3:6a:0b:f0:3c:60:85:61:ba:8d:30:ae:
         d4:30:c7:15:41:4e:9a:7f:b8:21:2d:5a:27:0c:e1:d1:00:94:
         32:a0:fc:58:98:23:f7:49:e3:da:2c:2f:eb:ae:3f:66:7c:1d:
         24:68:fa:d8:ff:30:40:d9:8c:4f:6d:54:67:c0:6f:20:fb:ae:
         2a:50:a3:e3:09:99:0b:4d:aa:15:ec:0f:d2:d4:f0:50:4d:ed:
         41:c5:86:4b:53:6e:70:aa:39:19:a5:bc:d5:0c:11:54:84:1d:
         10:d7:40:70:a0:f4:66:76:7a:49:54:15:1b:c1:cc:88:93:c4:
         29:1e:77:16:37:be:1d:1f:76:6b:e5:0c:80:ce:76:47:5a:7b:
         b4:43:a1:5a:09:c8:3c:b2:4f:78:e0:32:4e:9b:23:d9:d6:73:
         ec:0e:2c:a7:0c:f6:10:e6:85:71:af:bd:b4:8b:95:b7:9d:9c:
         eb:3a:7f:dd:e3:28:27:0c:cd:6d:3e:aa:7b:17:68:c7:e8:87:
         12:cd:a2:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----