Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
File:                     4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft (raw, json)
Hash identifier:          XxnISwY4oUK/Audg93tVJXvwQ5EvBMBScOutBXA2RPM=
Subject key identifier:   6C:7A:37:AB:C4:1B:CA:5E:3A:FB:7F:DB:F9:BD:B6:8C:AB:6A:AA:09
Authority key identifier: E0:0A:6F:2E:63:3F:CF:3A:DE:F8:72:5C:C5:BE:0E:A7:91:5D:D4:0C
Certificate issuer:       /CN=e00a6f2e633fcf3adef8725cc5be0ea7915dd40c
Certificate serial:       01974E8E1903CEE0A5832CF53B28B3D2F90B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
Manifest number:          0980
Signing time:             Sun 08 Jun 2025 08:00:24 +0000
Manifest this update:     Sun 08 Jun 2025 08:00:24 +0000
Manifest next update:     Mon 09 Jun 2025 08:00:24 +0000
Files and hashes:         1: 4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl (hash: mPLnUXJbumhweXes+YH49GF+le+FmyvlLL9UKkY3KdU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 08:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:8e:19:03:ce:e0:a5:83:2c:f5:3b:28:b3:d2:f9:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e00a6f2e633fcf3adef8725cc5be0ea7915dd40c
        Validity
            Not Before: Jun  8 08:00:24 2025 GMT
            Not After : Jun  9 08:00:24 2025 GMT
        Subject: CN=6c7a37abc41bca5e3afb7fdbf9bdb68cab6aaa09
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:90:0a:f8:7f:6b:17:a4:be:01:9b:8c:ac:d0:
                    98:6b:07:17:09:59:73:a0:3b:5f:e7:4a:02:8d:e5:
                    8c:f9:71:cf:24:51:8e:93:e4:93:aa:7f:5e:49:d6:
                    8c:27:1a:cd:8f:a8:5e:d5:f2:33:46:ed:f6:3d:db:
                    66:9d:62:dc:4c:f6:d4:03:48:9c:5b:ec:4f:aa:11:
                    ab:05:bc:0c:fd:0f:57:a4:fe:f8:de:a2:49:ac:2d:
                    cd:45:54:a1:6e:ec:ce:85:5a:bb:2b:b8:7b:b2:4c:
                    7d:1f:4b:29:3d:61:4d:0a:c3:a7:bd:8b:6c:fa:8b:
                    aa:24:03:a7:6b:69:c7:fa:72:86:4e:6a:77:83:26:
                    6c:47:1a:2d:f9:c8:97:f9:b3:3a:4b:2b:3d:e4:65:
                    58:75:08:5e:6d:92:5a:c7:05:75:b4:26:1e:2e:16:
                    b0:92:e1:3d:90:e1:1f:35:97:98:5f:62:0d:10:77:
                    0a:48:9d:68:d4:25:d6:3e:a7:a0:b3:81:b8:3e:f6:
                    b3:0e:a1:84:e6:e6:81:1a:ba:f9:a1:06:e0:23:75:
                    7e:dc:43:84:ed:6a:6b:ee:90:19:c6:be:69:d5:f9:
                    f1:b6:eb:c6:c0:ca:eb:ba:c8:41:ce:d4:a2:06:b2:
                    9b:0a:6a:7f:3b:06:5a:43:c9:82:7d:05:61:5a:a7:
                    11:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:7A:37:AB:C4:1B:CA:5E:3A:FB:7F:DB:F9:BD:B6:8C:AB:6A:AA:09
            X509v3 Authority Key Identifier:
                keyid:E0:0A:6F:2E:63:3F:CF:3A:DE:F8:72:5C:C5:BE:0E:A7:91:5D:D4:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:52:c8:74:b0:d1:84:47:b7:5f:74:21:bf:4c:e6:b6:06:35:
         fb:0b:db:1d:93:fe:d3:62:78:c6:46:b1:31:b8:88:b4:ff:34:
         ff:12:86:fd:64:1b:b8:84:c8:92:b2:35:2b:1e:b3:e4:f5:11:
         24:e6:9a:b7:c9:1b:70:9c:f7:e5:57:42:e0:49:37:89:79:af:
         99:0d:1a:75:44:ec:0f:fb:05:24:92:7d:1d:97:11:5d:11:89:
         64:c5:71:17:98:f4:22:b3:1b:60:6c:22:07:34:b6:47:92:75:
         80:61:34:ec:37:f5:b0:bb:c1:6e:3b:06:1e:ac:63:df:48:2a:
         91:a0:2c:20:1f:3b:8b:de:0e:0a:b8:15:75:52:ed:55:99:46:
         f2:25:9d:b3:56:6f:89:5a:44:2b:03:fc:75:fc:a0:c0:31:c1:
         f6:62:ba:1e:32:a4:46:55:cf:13:b0:1f:f7:9b:ab:4f:e2:b4:
         d3:2e:e6:61:3e:84:90:5c:98:8b:6c:6c:4c:11:71:a8:96:16:
         c3:bf:3d:76:0b:e0:66:58:5f:ed:7d:1f:fb:c2:79:13:b3:7b:
         0f:7b:8d:93:bf:e4:5b:39:c5:fa:23:b5:36:34:42:06:04:0a:
         df:29:40:e8:49:9b:e3:c9:72:e2:24:1d:71:a8:fb:87:c1:43:
         26:e8:6c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----