Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
File:                     5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json)
Hash identifier:          fWiwgSqyZ/VCKjnSutaHdkAOPFt/mBkateL6lTYwm3c=
Subject key identifier:   88:E0:59:5C:AF:EF:AF:CC:58:AC:F1:C5:31:6F:A3:98:65:13:FB:8D
Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
Certificate issuer:       /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Certificate serial:       01974DB28182CBCDD2E4E03800BE8892D088
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
Manifest number:          0C5C
Signing time:             Sun 08 Jun 2025 04:00:33 +0000
Manifest this update:     Sun 08 Jun 2025 04:00:33 +0000
Manifest next update:     Mon 09 Jun 2025 04:00:33 +0000
Files and hashes:         1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: YmhmON6IlWcVaCY2CKWZ1VtQquPMW11kODZgsKpbd48=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:b2:81:82:cb:cd:d2:e4:e0:38:00:be:88:92:d0:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
        Validity
            Not Before: Jun  8 04:00:33 2025 GMT
            Not After : Jun  9 04:00:33 2025 GMT
        Subject: CN=88e0595cafefafcc58acf1c5316fa3986513fb8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:54:fc:2d:e1:33:73:0d:5c:82:e6:8f:1c:9a:
                    1a:51:c4:c4:a6:64:97:34:3e:1d:71:33:4c:b7:a2:
                    4c:a8:07:87:18:0b:a9:16:bf:10:c5:b6:5f:20:ce:
                    15:8e:8d:a4:ed:94:88:9a:4d:f8:02:6b:69:4d:a2:
                    36:71:87:f0:fb:4c:e3:92:bb:7c:91:ce:11:35:fc:
                    e3:ff:50:7f:2b:c3:b1:cc:9e:78:91:21:c3:5d:08:
                    08:51:8f:8f:9d:97:f7:68:f4:ed:8d:23:5e:c9:3c:
                    4e:c0:c4:8d:06:82:04:cc:45:c4:25:20:f2:52:31:
                    73:ac:d0:0a:14:0d:e1:f3:39:e1:78:32:6c:f0:b9:
                    3e:99:40:57:d2:a1:51:6b:54:73:2f:a2:0b:32:26:
                    e0:15:7b:d4:d5:03:45:9a:20:5b:7d:97:5d:fb:16:
                    52:76:f8:e3:31:16:c7:91:d8:29:9f:23:5a:a4:46:
                    40:7c:d7:fe:f4:5e:75:6d:71:eb:9f:b9:70:3e:81:
                    6f:aa:eb:ea:9b:13:be:6a:3c:a6:37:27:b6:20:2c:
                    e5:1f:5f:30:51:e6:6e:66:66:ac:12:8a:58:dd:da:
                    54:53:8b:fa:9a:39:66:90:a0:1f:23:dd:dc:c0:97:
                    6d:8c:e2:85:f8:5c:71:37:a7:39:30:4b:b2:27:78:
                    c3:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:E0:59:5C:AF:EF:AF:CC:58:AC:F1:C5:31:6F:A3:98:65:13:FB:8D
            X509v3 Authority Key Identifier:
                keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:fe:39:c7:40:6c:13:71:f6:ed:81:93:31:ae:71:3c:b0:94:
         b5:d5:59:03:e5:3c:ab:4f:ec:70:b1:f2:50:de:7f:12:18:22:
         d3:e5:49:0e:a7:b4:38:49:fe:21:6e:02:f0:61:a4:9d:13:b3:
         75:b9:06:82:22:69:93:bf:a4:ac:fa:e8:70:9f:2b:34:9a:b8:
         2c:c5:04:91:f6:e3:ba:93:7e:ba:27:ed:9b:7d:f1:f4:97:9e:
         1f:db:3c:4b:1d:b3:22:73:4b:f5:21:af:77:91:88:e6:1c:f7:
         65:a9:5e:7f:b9:21:c8:c2:21:39:c2:f1:b1:e2:12:fc:57:bb:
         a7:03:38:1c:c9:68:a4:a2:d5:6c:47:c8:6b:f8:24:20:73:f5:
         23:df:f8:f7:7b:9a:1f:3a:3c:14:79:fe:33:b4:fe:c3:86:bf:
         61:59:9c:5e:2e:37:ec:e9:2d:b0:ba:e2:c6:3b:a0:62:22:c3:
         5d:15:18:d1:73:c8:f6:7a:e0:ab:9e:33:75:dd:7f:bb:27:96:
         d6:30:b4:9d:ca:f2:60:fd:dc:f7:d3:bc:fc:11:97:eb:b9:ca:
         9a:da:45:7a:72:97:f2:82:0b:aa:28:2b:7f:83:c6:a6:4a:0e:
         0b:4e:3f:13:9b:d2:cf:e8:13:d2:19:51:e3:56:6b:b3:49:5f:
         35:05:d8:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----