Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft
File:                     mpVYgYJyucVAD8XaGIE6zOkXWI0.mft (raw, json)
Hash identifier:          58r0K5854CTa5+mKAvdCVeWJwj9ToxmxxtZzoGMKHDc=
Subject key identifier:   46:C5:4B:14:D5:1C:62:A9:E1:FB:B5:26:1F:78:70:7E:01:A0:07:1E
Authority key identifier: 9A:95:58:81:82:72:B9:C5:40:0F:C5:DA:18:81:3A:CC:E9:17:58:8D
Certificate issuer:       /CN=9a9558818272b9c5400fc5da18813acce917588d
Certificate serial:       0197488D1518830784C128D0758D4B9A8F05
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mpVYgYJyucVAD8XaGIE6zOkXWI0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 04:01:34 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:34 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:34 +0000
Files and hashes:         1: mpVYgYJyucVAD8XaGIE6zOkXWI0.crl (hash: smmIrwcuNNiUkx8jlZtapODR1+FJ7oM8TZ5ha9sT1p8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mpVYgYJyucVAD8XaGIE6zOkXWI0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 04:01:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8d:15:18:83:07:84:c1:28:d0:75:8d:4b:9a:8f:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9a9558818272b9c5400fc5da18813acce917588d
        Validity
            Not Before: Jun  7 04:01:34 2025 GMT
            Not After : Jun  8 04:01:34 2025 GMT
        Subject: CN=46c54b14d51c62a9e1fbb5261f78707e01a0071e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:ed:b2:4a:5d:a2:ab:7f:26:6f:fe:64:f3:51:
                    ec:b7:c4:3b:69:7a:b6:ae:59:cd:3b:10:56:35:9c:
                    bf:57:5a:d5:e3:80:86:75:a9:18:b2:e2:e5:50:81:
                    95:fd:c7:65:33:1d:ca:02:de:9a:ea:6c:27:da:4f:
                    0e:33:80:be:56:b8:1e:47:d6:8c:7c:e5:24:a2:65:
                    7e:54:e4:02:b6:ba:f2:d2:75:74:8b:9d:10:a6:49:
                    d2:8b:63:a9:99:e7:01:99:fe:cc:2f:60:39:c7:09:
                    6b:c2:a5:4d:f7:d3:c9:8b:1a:b6:9e:18:56:2e:de:
                    13:c0:71:49:c0:d3:40:a6:41:ff:10:fb:ba:90:4b:
                    b0:94:eb:b6:5e:ac:9b:9e:67:d0:97:48:91:6f:f5:
                    b6:44:50:c3:41:3a:ee:13:6a:6e:46:e5:ab:f7:2e:
                    14:95:6c:a2:f9:36:de:b5:0a:bc:6c:9d:f7:cf:d8:
                    1a:3e:f7:d9:b8:28:6d:ab:c1:39:08:11:f2:92:74:
                    fd:4d:9d:43:9b:71:e0:cb:53:87:db:68:95:a7:e5:
                    d7:19:66:f2:dd:a0:9e:f7:07:61:df:23:38:70:36:
                    54:3d:e8:78:df:85:5a:e2:c4:21:c1:18:fb:ee:9a:
                    df:9a:d0:a5:0b:33:4a:60:48:de:29:a5:75:b1:20:
                    25:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:C5:4B:14:D5:1C:62:A9:E1:FB:B5:26:1F:78:70:7E:01:A0:07:1E
            X509v3 Authority Key Identifier:
                keyid:9A:95:58:81:82:72:B9:C5:40:0F:C5:DA:18:81:3A:CC:E9:17:58:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpVYgYJyucVAD8XaGIE6zOkXWI0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cc:65:b7:99:aa:fc:1d:b1:38:ae:4d:51:3e:27:0e:05:03:c7:
         e7:4c:c7:ed:69:10:1c:b7:98:bc:aa:63:96:24:89:70:f8:5f:
         91:79:b7:96:90:27:13:54:0b:6d:41:7c:6a:e4:ca:f2:75:77:
         d0:05:af:b0:b6:25:46:1c:65:ce:02:82:e0:22:f2:bb:a0:f3:
         bd:51:0a:01:1d:24:a1:39:52:2d:ec:51:b2:09:81:11:7c:09:
         97:7b:78:43:96:4e:29:ad:a6:5c:ba:dc:67:21:5c:84:83:d4:
         79:83:ce:f1:b1:6d:16:c4:a5:00:c7:84:40:14:69:4d:7b:48:
         99:a6:f2:57:f4:4e:22:1f:db:db:fc:06:7d:7d:4a:43:57:21:
         8e:52:76:1f:67:de:d5:9b:96:a0:e8:23:8c:e4:b3:9f:bf:0b:
         07:b5:87:36:f3:25:82:ec:67:ad:95:51:47:ff:f6:e7:9f:90:
         70:cf:f4:df:c9:83:01:4f:c7:59:d5:b4:70:55:fd:52:fd:d9:
         6a:02:1b:6b:11:0e:9f:c8:f4:72:8d:ae:89:1c:50:b4:d8:90:
         cd:07:72:62:10:2a:8c:3d:17:92:01:44:25:d1:10:e2:f6:8c:
         e4:04:fe:be:46:b3:22:56:f8:c9:52:9f:cf:96:07:d7:16:ac:
         c7:d7:08:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----