Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File:                     dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier:          oUXXO8h6fTQnH261ndXbg+PDi2UeZ/8uPit8fkMWB6I=
Subject key identifier:   6D:0F:52:32:59:FD:69:D5:5D:75:2A:F9:C6:B3:1C:35:D7:B2:09:D9
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer:       /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial:       019752D8D20CE03A8150A1C63BC326A92B81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number:          157E
Signing time:             Mon 09 Jun 2025 04:00:30 +0000
Manifest this update:     Mon 09 Jun 2025 04:00:30 +0000
Manifest next update:     Tue 10 Jun 2025 04:00:30 +0000
Files and hashes:         1: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: 3jrzGaVEGL1DP7V/Q9yBeMVXsSrLTWJr03PWQvsLuoM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 04:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:d8:d2:0c:e0:3a:81:50:a1:c6:3b:c3:26:a9:2b:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
        Validity
            Not Before: Jun  9 04:00:30 2025 GMT
            Not After : Jun 10 04:00:30 2025 GMT
        Subject: CN=6d0f523259fd69d55d752af9c6b31c35d7b209d9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:6f:61:0b:43:b5:93:a3:79:de:d0:76:05:c0:
                    6a:f9:57:7d:c9:fc:ed:28:e4:1f:15:7f:4a:87:35:
                    59:1c:3a:5e:7c:91:29:8a:fb:ab:e5:5b:ed:47:26:
                    27:22:b8:16:21:40:11:f6:76:4a:3e:53:e6:4f:0e:
                    33:c1:68:08:32:a3:72:d8:e8:bb:ba:d5:4c:29:62:
                    f3:37:78:2d:44:5d:f7:29:6d:ec:e0:3e:17:6f:b1:
                    76:8f:6c:67:b3:ef:25:b2:b9:8d:ac:51:3e:24:64:
                    a1:a8:de:3e:d7:77:e1:9b:59:9c:5d:4e:1a:07:76:
                    18:e9:18:3b:2f:4d:97:6d:38:b4:fc:10:03:76:62:
                    69:57:47:54:3d:48:97:19:99:f0:2e:7e:2e:d0:fa:
                    bc:3a:11:1d:05:4e:4c:b7:a6:29:e6:29:f6:e5:36:
                    0b:d7:e0:eb:43:ae:88:69:ce:0b:15:d3:0c:cf:9b:
                    02:7b:25:f4:9d:3b:67:a9:a0:08:49:50:e6:d1:2b:
                    a8:03:78:66:80:54:24:44:b0:c8:fb:96:2f:56:53:
                    8e:f7:8d:26:04:a2:21:28:18:5f:e8:e8:f4:1f:11:
                    37:25:fc:ae:a0:22:59:4a:7e:3f:72:d1:d1:ad:db:
                    d0:e4:66:2d:a7:8a:9c:ae:f8:31:86:65:36:bf:8d:
                    bf:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:0F:52:32:59:FD:69:D5:5D:75:2A:F9:C6:B3:1C:35:D7:B2:09:D9
            X509v3 Authority Key Identifier:
                keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:20:2c:46:5b:c5:61:20:c5:d8:89:b5:26:7f:1d:f8:a8:0d:
         34:44:24:8c:51:00:92:dd:13:30:68:b0:7d:16:36:cd:f1:64:
         c7:97:f8:8d:de:d3:cb:c0:20:25:6c:83:f5:ed:8b:29:b0:81:
         55:cd:4e:02:3d:8a:6f:df:0f:e6:a5:9c:e7:cf:0c:33:69:ab:
         f1:5e:b1:3a:5b:eb:f1:37:6b:cf:8e:11:9e:9f:8c:37:1e:83:
         19:36:37:95:1a:92:52:76:c4:0d:cb:52:a2:c9:11:03:7e:5a:
         4e:ed:5d:8d:ba:c8:2c:18:d7:4b:4f:f6:4e:34:4c:63:c3:9f:
         e3:47:f5:ab:10:30:07:12:3d:63:6c:92:5f:67:2b:c4:7f:e3:
         d1:ac:e3:20:98:bc:6d:b2:ec:27:99:ce:3d:bd:6d:6f:f8:ae:
         ae:0c:ea:b9:06:d6:3e:c8:54:3b:a6:3d:a7:91:33:18:50:49:
         47:5f:20:37:13:87:09:65:60:ae:72:ee:d3:74:48:f1:da:45:
         26:73:11:2a:fd:4c:4b:d3:71:97:43:de:3b:7a:5e:62:8b:78:
         66:1f:dc:49:e0:3a:58:68:c3:c6:5f:49:51:45:d1:a9:e7:3a:
         17:55:96:47:4a:6d:17:c0:99:88:c8:09:3a:d2:2f:aa:4a:21:
         c5:6b:2a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----