Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft
File:                     4H6guRTmNDEcyfDvoUSPy3l9OJw.mft (raw, json)
Hash identifier:          hJzY2w7UDtoS4/1c0b6qL2kC2VOZpKx69OHw2fkHfX4=
Subject key identifier:   5B:C5:12:69:BC:BA:DA:4E:E4:91:F1:30:58:C2:A7:29:C2:D1:8F:09
Authority key identifier: E0:7E:A0:B9:14:E6:34:31:1C:C9:F0:EF:A1:44:8F:CB:79:7D:38:9C
Certificate issuer:       /CN=e07ea0b914e634311cc9f0efa1448fcb797d389c
Certificate serial:       01974C69E39AB105E40EB27F9796FF28B86F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4H6guRTmNDEcyfDvoUSPy3l9OJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft
Manifest number:          0C4B
Signing time:             Sat 07 Jun 2025 22:01:37 +0000
Manifest this update:     Sat 07 Jun 2025 22:01:37 +0000
Manifest next update:     Sun 08 Jun 2025 22:01:37 +0000
Files and hashes:         1: 4H6guRTmNDEcyfDvoUSPy3l9OJw.crl (hash: yWstX9GHcLzHWke0xJY8kq8kAEJq7SiJgss+QntAKn4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4H6guRTmNDEcyfDvoUSPy3l9OJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 22:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:e3:9a:b1:05:e4:0e:b2:7f:97:96:ff:28:b8:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e07ea0b914e634311cc9f0efa1448fcb797d389c
        Validity
            Not Before: Jun  7 22:01:37 2025 GMT
            Not After : Jun  8 22:01:37 2025 GMT
        Subject: CN=5bc51269bcbada4ee491f13058c2a729c2d18f09
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:f5:ad:5f:24:31:01:31:cd:f7:d9:e3:ce:c2:
                    41:48:3e:a8:dd:4f:a1:78:c0:41:95:5a:4e:67:b9:
                    ed:f1:76:bd:c2:b6:85:78:3d:59:60:b2:e3:35:6d:
                    3b:70:54:ab:1a:5f:78:c8:79:59:48:8b:1e:0b:bb:
                    59:50:ef:a0:d5:23:0e:40:1c:e6:e5:94:cf:52:52:
                    57:f5:7d:2e:41:f0:d8:55:c4:b4:34:0c:75:31:ba:
                    01:63:fc:14:e9:2d:da:29:0b:51:65:0e:40:9f:9a:
                    2f:73:08:26:40:87:ba:7e:f9:8e:2f:0d:25:ba:b4:
                    ef:20:55:df:6c:9a:d8:10:8b:83:73:4a:18:c0:3a:
                    11:ad:dd:08:ef:1f:81:51:b9:0e:b9:f7:bc:99:f6:
                    f2:a8:34:60:dc:c6:67:9a:57:a9:55:6d:34:8a:b5:
                    2d:21:ab:4d:59:6b:46:d8:45:bc:a1:7f:b6:fd:32:
                    b3:f2:7d:01:30:99:68:85:c6:a2:c3:ab:75:7a:81:
                    2c:92:2d:af:31:25:d5:a7:db:8b:a9:97:0d:60:f1:
                    65:c7:ea:f4:25:21:ec:fb:83:c8:ea:21:90:d7:75:
                    41:2f:33:9f:41:e6:88:91:7c:8c:c9:9a:4c:ae:04:
                    4b:4a:94:9e:59:63:27:15:3c:38:2c:da:0f:e1:b6:
                    a4:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:C5:12:69:BC:BA:DA:4E:E4:91:F1:30:58:C2:A7:29:C2:D1:8F:09
            X509v3 Authority Key Identifier:
                keyid:E0:7E:A0:B9:14:E6:34:31:1C:C9:F0:EF:A1:44:8F:CB:79:7D:38:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4H6guRTmNDEcyfDvoUSPy3l9OJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:fc:15:d8:02:71:4d:c4:5e:e6:13:81:5d:40:cd:cf:9c:69:
         da:d7:92:99:0c:70:37:c1:ac:e3:8e:d8:0d:10:35:0e:d1:a2:
         a6:7c:a9:af:d0:d9:03:e9:92:02:97:7b:61:96:0f:66:70:4a:
         65:fa:a2:6f:ea:21:19:f3:d7:5b:94:12:e7:14:c1:ff:b2:d9:
         91:4e:a0:e8:8b:e3:4f:6f:bd:ed:5b:d4:4a:bc:4a:02:dc:ed:
         92:f2:93:dd:c7:8e:ee:c8:3c:f8:c6:4b:0f:ac:8d:94:af:f9:
         b9:47:f5:35:c9:86:58:7a:38:f7:60:00:ae:57:f5:8a:bb:91:
         e5:eb:25:1a:be:80:3d:df:7d:44:c6:95:7a:a1:4f:3b:da:8b:
         63:3f:ec:a3:d2:07:a1:cd:7c:3e:61:94:21:85:4d:33:59:42:
         0c:91:bc:21:f1:22:26:c1:38:ac:06:51:ed:2b:d2:80:c5:11:
         92:57:03:b1:29:86:4e:0c:f7:37:3f:e2:25:d7:7b:4c:45:7b:
         7f:56:b3:3a:51:56:34:d8:98:68:ef:30:f3:f8:12:21:4f:5e:
         0b:3d:71:ab:a9:dc:5d:82:07:ae:ab:ed:2e:69:bb:93:b3:f2:
         95:01:14:f2:ac:34:b2:f8:16:11:2a:72:5b:29:5f:91:68:e8:
         65:fe:59:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----