Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
File:                     0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft (raw, json)
Hash identifier:          1FcA4sv0OCForYK1w0wYgOhIHMVAEvxr4sTUR8wztWM=
Subject key identifier:   98:82:59:12:2C:E5:35:EB:64:9C:30:B9:B4:BC:C7:FA:9B:59:AB:63
Authority key identifier: D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0
Certificate issuer:       /CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
Certificate serial:       019769CE599DCA5F66B45C6EC33F5E1D425D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
Manifest number:          0C37
Signing time:             Fri 13 Jun 2025 15:00:20 +0000
Manifest this update:     Fri 13 Jun 2025 15:00:20 +0000
Manifest next update:     Sat 14 Jun 2025 15:00:20 +0000
Files and hashes:         1: 0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl (hash: OYw+jFFrSmDqRHejLlV+jDCWSyDWdyl+zOfzLZ+n6pQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 15:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:ce:59:9d:ca:5f:66:b4:5c:6e:c3:3f:5e:1d:42:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
        Validity
            Not Before: Jun 13 15:00:20 2025 GMT
            Not After : Jun 14 15:00:20 2025 GMT
        Subject: CN=988259122ce535eb649c30b9b4bcc7fa9b59ab63
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:3c:c2:50:f9:e9:b3:77:5a:a3:75:1a:f1:f2:
                    68:47:fa:36:08:c2:65:3a:5c:24:fb:e6:e2:23:06:
                    c7:66:b2:5c:46:76:e1:f8:08:ae:f8:69:9e:38:63:
                    02:7e:3b:d1:d8:1a:99:6d:66:8b:4d:9f:4e:f0:f5:
                    be:2b:6d:49:65:eb:47:18:67:c9:fa:e4:1a:36:6b:
                    2a:d1:8a:e5:0c:8a:f6:35:ac:2a:dc:90:25:98:b5:
                    a3:bf:ae:b2:c8:3d:03:28:44:7b:b5:6e:b1:1d:f1:
                    9e:68:b7:77:0a:8e:50:93:00:9e:e0:07:36:e0:27:
                    f7:ef:78:62:c0:81:a6:17:8e:8e:de:12:87:8b:97:
                    cf:78:a8:4c:b7:5b:ab:6e:a4:cf:04:4f:b7:98:23:
                    13:4f:b8:6f:e8:9c:c0:ad:4e:1c:9b:2f:15:cf:86:
                    b7:37:e2:15:a0:e2:87:27:e4:d0:25:ac:0c:10:1d:
                    a0:58:35:24:c0:d4:50:5e:1a:ce:c2:67:00:5e:12:
                    1a:49:16:ba:27:5e:e2:e6:2f:45:ff:d6:2a:a7:95:
                    88:db:f5:d9:38:f5:22:6e:3c:97:a7:81:68:b9:de:
                    78:94:d8:f1:c2:ca:ce:2a:f4:0d:5f:7e:42:20:4d:
                    22:63:76:95:32:29:8c:ec:73:b1:5b:83:07:c0:0b:
                    06:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:82:59:12:2C:E5:35:EB:64:9C:30:B9:B4:BC:C7:FA:9B:59:AB:63
            X509v3 Authority Key Identifier:
                keyid:D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:89:5d:f0:a2:a1:8b:ed:1c:ef:2c:f2:56:3f:74:b1:b4:62:
         a2:83:8c:e4:04:ad:10:b1:a1:a1:c6:5c:c5:30:41:0a:57:49:
         32:53:d2:0e:0a:c5:af:47:ed:75:0d:1e:a4:7f:9b:04:20:0e:
         4f:09:8f:c6:81:f5:26:8b:db:07:a7:0c:21:b1:b6:d9:02:8d:
         79:7d:dd:62:7e:d8:9f:f2:95:64:91:79:2d:2f:14:f7:fe:65:
         59:6b:48:ad:b8:b4:8e:ed:9e:6d:58:96:33:46:0b:ee:16:a3:
         07:8b:fe:3e:99:ae:2f:7c:d0:23:5f:b0:75:9d:02:a3:7c:e4:
         01:17:4e:f0:d1:68:84:ab:3c:c5:03:5d:25:57:0b:94:dd:a3:
         ef:31:ff:13:3f:a5:ad:74:67:73:5d:59:94:2c:60:98:f5:c4:
         45:3c:b9:76:a4:33:87:a9:ba:53:f2:88:ca:13:ec:db:e1:46:
         70:f5:0f:47:6a:e6:25:c9:74:1a:75:75:a3:5b:fa:4f:58:27:
         4e:fa:35:a8:f1:3d:58:73:be:d5:13:97:97:99:ee:ea:64:4d:
         d0:04:1d:9d:35:d1:56:5b:ea:f8:c2:6e:9b:b8:97:1f:7a:b1:
         f2:a6:67:c3:e6:6c:83:32:61:05:4f:a7:de:29:c6:4d:6d:d0:
         df:e9:82:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----