Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft
File:                     mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft (raw, json)
Hash identifier:          5DKm7JLc7locqaFiagUsE54TFfdm+83JvFIL7uydxg8=
Subject key identifier:   D5:7F:C1:5F:7E:A1:76:BB:78:88:AA:89:1B:DD:00:B3:37:23:8A:EE
Authority key identifier: 99:72:14:8C:73:62:C2:C9:39:9B:B3:AF:74:15:92:C4:25:16:C5:47
Certificate issuer:       /CN=9972148c7362c2c9399bb3af741592c42516c547
Certificate serial:       019747E757809CD096C64CE6FF5B7CA30069
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mXIUjHNiwsk5m7OvdBWSxCUWxUc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft
Manifest number:          10B7
Signing time:             Sat 07 Jun 2025 01:00:32 +0000
Manifest this update:     Sat 07 Jun 2025 01:00:32 +0000
Manifest next update:     Sun 08 Jun 2025 01:00:32 +0000
Files and hashes:         1: mXIUjHNiwsk5m7OvdBWSxCUWxUc.crl (hash: kkuNiy0s8pNLhpERlCO+HyFHiVAIupsT3Ahhwtao68c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mXIUjHNiwsk5m7OvdBWSxCUWxUc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:47:e7:57:80:9c:d0:96:c6:4c:e6:ff:5b:7c:a3:00:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9972148c7362c2c9399bb3af741592c42516c547
        Validity
            Not Before: Jun  7 01:00:32 2025 GMT
            Not After : Jun  8 01:00:32 2025 GMT
        Subject: CN=d57fc15f7ea176bb7888aa891bdd00b337238aee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:36:11:01:c8:55:4e:cb:8b:20:e7:33:0b:f6:
                    e8:79:55:3f:4d:13:a6:56:5c:37:4b:64:ee:82:d5:
                    be:b6:d5:1f:d6:2f:4f:64:27:ff:f2:9b:53:21:ab:
                    7c:ce:ea:d2:11:d3:13:87:33:03:69:8f:e2:ce:d9:
                    26:be:5d:34:a6:86:09:f5:f4:c3:d3:f1:98:27:aa:
                    f4:28:3d:de:d6:19:e0:dd:f3:8e:e7:11:ea:f4:7d:
                    78:8d:4a:48:0a:42:3e:e8:9f:4a:bf:21:73:30:5c:
                    14:75:a1:03:e5:62:57:2f:85:9f:b6:0c:1d:fe:e5:
                    37:d2:f6:de:a7:e4:d5:fd:e8:9f:ec:ef:33:d7:b0:
                    d9:41:cc:da:7a:05:8e:36:d6:a3:6f:7c:f7:d8:d5:
                    cb:53:5a:3a:2f:4c:0d:e1:ec:58:70:24:de:ea:7f:
                    1d:d8:21:03:e0:e1:5e:1e:f5:45:16:5e:26:8a:bf:
                    4e:50:dc:c4:a1:01:4b:3e:89:4c:79:0a:9b:75:4e:
                    92:d8:6d:6b:e3:1f:9f:8d:cf:9f:42:50:ab:04:89:
                    d1:88:d2:71:26:92:6d:1e:33:ea:b5:7d:a1:dc:64:
                    75:27:c2:b3:22:44:0d:78:cb:de:47:1f:d8:46:20:
                    70:f6:76:45:2c:e2:26:d6:ef:76:cc:5f:72:76:cd:
                    06:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:7F:C1:5F:7E:A1:76:BB:78:88:AA:89:1B:DD:00:B3:37:23:8A:EE
            X509v3 Authority Key Identifier:
                keyid:99:72:14:8C:73:62:C2:C9:39:9B:B3:AF:74:15:92:C4:25:16:C5:47

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXIUjHNiwsk5m7OvdBWSxCUWxUc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/587b7b-071c-430b-9eb2-6ec62690b19b/1/mXIUjHNiwsk5m7OvdBWSxCUWxUc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:48:90:d8:94:10:81:fc:90:0a:9a:c6:75:1a:12:88:54:26:
         11:82:7a:d8:9e:e0:20:2f:47:ea:d8:d8:31:e2:93:1b:8a:c7:
         9d:77:95:df:38:55:38:8f:d1:31:10:31:e2:39:b0:cf:e7:33:
         b2:03:21:82:77:5d:56:b6:34:3d:57:0c:87:77:20:d1:8e:db:
         af:6a:a6:97:1c:9d:4d:70:8f:34:57:ab:f8:fc:f6:51:43:e6:
         46:74:15:28:c7:e7:33:17:07:77:1c:e2:86:a4:a0:5b:c1:63:
         bd:86:c8:fb:62:1c:37:8d:41:99:73:34:fe:d8:b5:76:68:95:
         76:4e:6a:1b:39:3f:64:5f:f5:e1:56:7a:79:0d:50:9d:ad:a8:
         e0:10:23:ab:4b:89:c8:b2:dc:a3:ca:68:cb:3b:9d:ac:04:3c:
         fc:ca:41:d3:a4:28:66:b6:3f:df:53:96:ff:41:96:a7:d2:c3:
         93:5e:d6:1b:ba:06:44:f3:99:c1:ae:66:c6:ff:1f:9d:86:ca:
         a6:70:9e:70:ad:85:52:43:6e:ef:db:8a:c2:99:ad:ae:ed:05:
         5f:40:31:8d:84:67:04:d7:1b:1d:1e:4e:b2:70:74:d2:3f:97:
         61:9a:53:cd:7c:c4:72:18:74:23:6f:6c:f4:80:bf:e5:d2:3e:
         8a:8f:eb:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----