Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
File:                     cfxj7vZnTya1A6gwpd-pU9L_qr4.mft (raw, json)
Hash identifier:          eTzXIkXr42Iq0XHhzRUJxdRWn6UWXgJ95kHb3r43jyU=
Subject key identifier:   72:99:99:44:51:B0:FB:7C:8D:29:4A:5D:38:5B:EC:F3:34:5E:1B:04
Authority key identifier: 71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
Certificate issuer:       /CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Certificate serial:       019748C3467C9215365F353C75AC23954EBE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
Manifest number:          13E4
Signing time:             Sat 07 Jun 2025 05:00:46 +0000
Manifest this update:     Sat 07 Jun 2025 05:00:46 +0000
Manifest next update:     Sun 08 Jun 2025 05:00:46 +0000
Files and hashes:         1: cfxj7vZnTya1A6gwpd-pU9L_qr4.crl (hash: lY3GrzRNbRt+N+evrJTIR/bnQ7cXNEYoVhoS7BMueFA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 05:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:c3:46:7c:92:15:36:5f:35:3c:75:ac:23:95:4e:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
        Validity
            Not Before: Jun  7 05:00:46 2025 GMT
            Not After : Jun  8 05:00:46 2025 GMT
        Subject: CN=7299994451b0fb7c8d294a5d385becf3345e1b04
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:94:a5:ae:aa:ee:60:e6:9e:45:0f:c2:27:2e:
                    60:1a:30:46:41:38:5f:61:6a:76:f7:87:79:1a:fe:
                    b8:d4:93:0a:c9:af:f3:7b:17:f3:65:bd:5c:65:58:
                    41:a5:bb:20:b7:70:00:00:72:33:3d:52:a5:cd:5c:
                    12:4e:03:e4:cb:68:ba:59:81:0f:05:f9:b1:42:39:
                    7a:6d:25:fe:0f:44:ae:4b:b3:98:dc:0e:66:2e:6b:
                    a3:c2:08:08:e6:fa:5f:f5:38:27:e2:7a:af:cb:da:
                    7d:85:59:66:1b:49:e6:4f:00:72:3e:51:2f:77:f6:
                    3d:2b:b3:57:f4:a6:d9:1b:7c:56:cb:af:ce:66:31:
                    19:0b:e3:38:2b:59:ce:cb:74:0e:3f:47:fc:b6:84:
                    82:ea:d9:42:2e:5c:a1:c8:48:2b:e2:32:4e:3b:e9:
                    e1:cd:ad:80:1a:27:c5:58:0c:da:08:9f:e3:fb:7b:
                    d9:c5:27:a2:b0:b9:d2:b4:40:21:36:fa:f4:5b:3b:
                    bc:08:51:51:ab:3d:68:2f:8e:42:43:ea:2e:bf:f7:
                    a0:29:2e:b4:e3:c7:0a:2a:94:e0:12:08:46:4f:c5:
                    f8:ed:02:61:98:6f:3b:e1:50:19:02:9a:67:8b:36:
                    0f:41:cc:fa:ba:44:f5:c7:2c:ca:9f:a7:f7:6d:6e:
                    13:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:99:99:44:51:B0:FB:7C:8D:29:4A:5D:38:5B:EC:F3:34:5E:1B:04
            X509v3 Authority Key Identifier:
                keyid:71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:df:db:f4:0a:71:28:0f:33:95:56:b7:a7:0d:7b:96:4f:85:
         2b:43:76:f9:6f:e8:6e:b0:00:6e:91:fc:c5:f0:91:fe:b8:9e:
         5c:0c:28:1a:2d:04:28:7a:6e:93:97:e9:13:91:09:e7:d4:99:
         05:a0:4c:bb:69:fd:3e:97:da:dc:4e:73:29:da:28:50:be:29:
         ba:70:e8:65:f1:60:2c:59:91:7f:14:1d:54:1d:3f:13:88:fd:
         87:ea:70:aa:19:57:54:14:cc:95:99:a7:98:43:83:0d:e7:75:
         1a:99:85:55:e1:92:39:8e:6f:8b:37:4d:8f:17:00:35:01:68:
         06:a3:be:91:d8:2f:da:7f:93:c4:dc:a2:4f:12:ff:44:f9:70:
         e6:08:2e:31:a4:96:27:c1:bb:27:3d:8d:ad:a4:1a:60:24:e3:
         c6:97:46:8a:25:25:f5:6c:3e:3a:30:b4:ab:e9:8b:d0:cc:1e:
         92:77:79:60:04:a7:11:42:d2:72:93:b5:a2:03:36:06:7f:a9:
         13:e3:f9:24:db:ba:a1:72:17:fd:c3:47:08:0f:c7:14:21:82:
         e5:ba:b9:26:cd:5e:b5:32:64:21:21:7c:87:bc:49:1b:5d:e2:
         de:3a:27:ca:16:a5:ad:e6:a4:2b:28:b9:f9:99:b1:27:0f:cb:
         25:cf:6f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----