Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
File:                     6MSDt1wtsc-f9OlMeg_fDbAADwA.mft (raw, json)
Hash identifier:          gOk/kIITW1+fTh57Umvx5tof15NDMq5PyOutgmfN3PE=
Subject key identifier:   B0:A0:5A:FA:32:E2:9C:7C:53:8B:4D:B2:44:8B:F2:0D:83:9A:00:81
Authority key identifier: E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00
Certificate issuer:       /CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00
Certificate serial:       0197493158A4FC056A02D616381A4484604D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
Manifest number:          10B8
Signing time:             Sat 07 Jun 2025 07:01:00 +0000
Manifest this update:     Sat 07 Jun 2025 07:01:00 +0000
Manifest next update:     Sun 08 Jun 2025 07:01:00 +0000
Files and hashes:         1: 6MSDt1wtsc-f9OlMeg_fDbAADwA.crl (hash: HQHMjcYrKZGXAKnivCcGQL0yz7RobTs4dqP7gXEX5a4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:49:31:58:a4:fc:05:6a:02:d6:16:38:1a:44:84:60:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00
        Validity
            Not Before: Jun  7 07:01:00 2025 GMT
            Not After : Jun  8 07:01:00 2025 GMT
        Subject: CN=b0a05afa32e29c7c538b4db2448bf20d839a0081
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:f1:da:9f:46:b2:2b:72:5e:5e:53:0e:b9:33:
                    10:95:46:1f:32:d8:0f:8a:97:da:bb:0e:5b:ea:96:
                    cb:f2:d2:63:5b:59:53:03:bc:80:7a:7e:14:3d:16:
                    d0:ad:16:8e:5a:d2:0b:75:d5:63:f3:fb:4c:19:a3:
                    99:6a:4c:03:f3:e7:56:6c:62:a2:2c:40:46:c2:2c:
                    f2:ea:bc:ae:b4:82:8f:76:bf:b0:6a:a3:6d:2c:a9:
                    0e:3c:17:05:74:97:f7:83:df:26:34:81:59:3e:aa:
                    05:b1:2c:e7:80:52:14:d0:18:a5:3d:d9:d2:80:c9:
                    37:9c:b8:54:04:85:6c:68:a5:af:06:c9:99:b8:33:
                    9a:c2:2f:2f:51:5f:55:9d:2d:17:c4:73:2e:3d:ea:
                    0d:c1:87:35:46:dd:19:65:19:5e:4f:c0:b3:c9:94:
                    7e:ee:e0:30:a1:16:ce:34:06:7b:8e:e1:5c:fe:3b:
                    12:aa:8c:a1:2e:3e:56:6f:02:c1:fe:7f:ee:de:91:
                    08:25:69:a0:65:4b:73:36:b2:7f:aa:9a:ac:5b:46:
                    c7:96:5c:96:6e:48:00:a0:00:da:68:bc:c8:9e:f3:
                    b8:19:67:56:6f:2a:94:de:c7:d5:e3:05:52:26:0c:
                    b9:16:6f:f1:7c:c0:9d:65:1c:5b:57:29:e5:a5:8b:
                    4b:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:A0:5A:FA:32:E2:9C:7C:53:8B:4D:B2:44:8B:F2:0D:83:9A:00:81
            X509v3 Authority Key Identifier:
                keyid:E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ab:38:42:69:dd:50:02:42:03:0a:85:5d:27:cc:9d:25:f6:da:
         fb:58:15:fe:cd:62:fb:97:7d:d2:9b:b1:dd:18:a0:c5:1f:89:
         c1:27:32:e6:51:f8:42:f3:47:75:0c:ec:e0:10:a2:b8:40:cf:
         4e:77:bc:dd:05:55:33:7d:7a:5b:fa:1a:b3:49:34:4a:bb:b1:
         a5:21:cf:2e:e6:2a:7b:37:b7:2b:d7:2c:38:f2:9a:b7:82:24:
         23:c0:1f:89:07:12:52:6c:6e:cc:f0:52:c4:3c:c6:66:38:b3:
         49:42:25:8c:bb:74:74:19:67:91:92:e5:b6:3f:01:a3:68:59:
         6a:71:b6:d2:47:88:ea:ad:9a:02:73:24:48:5e:15:3f:f7:e3:
         42:70:e0:a8:fc:34:d0:29:88:cc:01:dc:35:3e:49:74:be:8f:
         39:36:8f:eb:8e:39:c9:83:e3:f5:aa:49:74:e3:a4:46:c0:9d:
         ed:6e:2f:5f:5e:b4:4c:ea:8e:be:c6:ef:b4:63:99:c9:91:5a:
         01:5f:8a:d4:48:d6:d5:6b:b4:88:fc:4e:c8:b2:97:8b:3c:9b:
         1e:ff:d7:4a:76:01:ee:6d:0d:8d:7b:45:6e:82:49:91:40:42:
         fa:f6:84:8f:3e:64:7b:b1:d0:f8:70:c2:36:e3:e3:67:53:d5:
         5c:7a:a8:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----