Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/6a4b86-32b4-405f-bd65-68083709a4b5/1/TUknoUH7JbdYJMa-rvBnnTT8Sb0.mft
File:                     TUknoUH7JbdYJMa-rvBnnTT8Sb0.mft (raw, json)
Hash identifier:          YwqWhb+KNaryABSzZubz2eEGv4uqNHLue4LQr8KscDo=
Subject key identifier:   BB:25:A4:D7:49:17:A2:6D:13:01:8E:95:FE:91:71:E3:7B:A6:D9:CE
Authority key identifier: 4D:49:27:A1:41:FB:25:B7:58:24:C6:BE:AE:F0:67:9D:34:FC:49:BD
Certificate issuer:       /CN=4d4927a141fb25b75824c6beaef0679d34fc49bd
Certificate serial:       0197496818048BA73D10AB30095929C88D23
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TUknoUH7JbdYJMa-rvBnnTT8Sb0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/6a4b86-32b4-405f-bd65-68083709a4b5/1/TUknoUH7JbdYJMa-rvBnnTT8Sb0.mft
Manifest number:          0271
Signing time:             Sat 07 Jun 2025 08:00:48 +0000
Manifest this update:     Sat 07 Jun 2025 08:00:48 +0000
Manifest next update:     Sun 08 Jun 2025 08:00:48 +0000
Files and hashes:         1: TUknoUH7JbdYJMa-rvBnnTT8Sb0.crl (hash: 6a6Cea/pTS72SSs6x4IrmyBnARsnDO+19leAAVPLOgQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/6a4b86-32b4-405f-bd65-68083709a4b5/1/TUknoUH7JbdYJMa-rvBnnTT8Sb0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/6a4b86-32b4-405f-bd65-68083709a4b5/1/TUknoUH7JbdYJMa-rvBnnTT8Sb0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TUknoUH7JbdYJMa-rvBnnTT8Sb0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 08:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:49:68:18:04:8b:a7:3d:10:ab:30:09:59:29:c8:8d:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4d4927a141fb25b75824c6beaef0679d34fc49bd
        Validity
            Not Before: Jun  7 08:00:48 2025 GMT
            Not After : Jun  8 08:00:48 2025 GMT
        Subject: CN=bb25a4d74917a26d13018e95fe9171e37ba6d9ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:d5:ba:a1:c2:86:a5:a8:9a:26:21:5a:f5:b3:
                    83:f8:00:6b:bd:9f:27:9f:b3:1c:28:00:2e:6c:d3:
                    5e:f4:31:cd:de:12:1b:d0:c8:39:2e:97:f0:f5:12:
                    8b:f9:8d:0f:29:60:6a:93:27:6a:62:43:9c:3a:27:
                    01:a5:ea:43:a1:e3:12:2b:67:17:dd:c7:d7:d2:44:
                    22:94:02:20:85:be:5b:ad:fd:91:9c:37:7b:d6:28:
                    89:f6:3d:be:b4:b0:ac:97:e9:f5:2d:e3:70:7e:c4:
                    fd:b6:2c:34:b7:eb:c8:ee:48:2b:0d:70:e6:90:31:
                    c8:5e:5c:97:cd:63:69:cc:09:8b:49:7c:bd:65:f2:
                    51:d4:4b:3c:13:f9:8f:bb:f7:9c:7d:53:f0:54:91:
                    f9:9d:7b:a2:6c:01:3c:54:4e:d7:a8:34:c3:d4:4d:
                    9c:8e:da:ff:97:91:cb:05:a4:8a:2f:4d:d2:49:7b:
                    5e:a5:c2:16:84:4c:19:9b:f7:f8:64:4a:b3:ba:5d:
                    57:0d:69:68:52:dd:7d:12:58:96:9f:e3:dd:da:be:
                    a6:58:79:d1:26:0f:22:1c:6a:f8:72:d7:f8:d8:a6:
                    64:a2:e0:ce:57:71:8c:7f:56:7c:37:c6:8d:fa:c0:
                    7c:9e:74:56:d5:ea:a7:f2:76:df:59:cc:bf:5d:cc:
                    bc:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:25:A4:D7:49:17:A2:6D:13:01:8E:95:FE:91:71:E3:7B:A6:D9:CE
            X509v3 Authority Key Identifier:
                keyid:4D:49:27:A1:41:FB:25:B7:58:24:C6:BE:AE:F0:67:9D:34:FC:49:BD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TUknoUH7JbdYJMa-rvBnnTT8Sb0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/6a4b86-32b4-405f-bd65-68083709a4b5/1/TUknoUH7JbdYJMa-rvBnnTT8Sb0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/6a4b86-32b4-405f-bd65-68083709a4b5/1/TUknoUH7JbdYJMa-rvBnnTT8Sb0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:f5:cd:9e:5d:cc:23:77:70:e2:4a:23:6e:0f:0c:c6:f2:6f:
         73:f5:de:94:f5:ea:9d:d8:4f:fc:29:67:8d:dc:b6:60:8f:f0:
         08:b3:48:84:44:a2:3c:74:17:0e:c7:be:84:d2:ec:07:df:b1:
         30:5d:a7:6b:62:02:0c:99:fa:13:0a:2b:ad:4a:1a:ba:a6:61:
         13:dd:62:f2:fd:95:de:54:e9:8b:6d:52:3b:37:93:4e:9d:7c:
         7a:49:9b:71:2b:4d:20:63:ba:c6:31:63:bd:52:ec:e9:78:8f:
         94:19:b6:b1:39:a3:29:ff:c4:f6:8b:3e:94:d1:0c:69:e6:90:
         e6:a5:73:dd:63:df:6c:82:c1:8d:9d:dc:67:ec:0f:f9:53:cb:
         9d:57:86:95:65:17:dd:66:6e:b8:18:2c:d9:06:6e:76:17:ad:
         94:bb:00:3d:e8:8e:9e:5e:4c:ba:5a:64:54:42:9c:bd:91:d0:
         f2:eb:a2:46:16:65:2c:44:a7:38:7c:7f:d0:cd:89:5d:a6:d4:
         ba:73:be:17:9e:ec:56:e9:74:40:ad:7c:15:e4:bd:ac:02:84:
         39:06:49:92:05:10:4c:16:50:7e:e1:a2:39:6e:30:a3:fa:19:
         50:49:33:dd:d2:ba:37:93:8a:b4:76:ee:ae:2d:79:a1:bb:b1:
         df:fe:ee:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----