Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
File:                     jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft (raw, json)
Hash identifier:          yZHTJosp8Dfc1y4v959V644xLilXmq9vPzArNv7WGyY=
Subject key identifier:   4E:AD:5A:96:42:0A:BE:13:98:F2:38:83:17:B5:41:85:D5:05:0E:23
Authority key identifier: 8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
Certificate issuer:       /CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Certificate serial:       01975234F00C27E60944970462C9F2CA9399
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
Manifest number:          0D5E
Signing time:             Mon 09 Jun 2025 01:01:30 +0000
Manifest this update:     Mon 09 Jun 2025 01:01:30 +0000
Manifest next update:     Tue 10 Jun 2025 01:01:30 +0000
Files and hashes:         1: jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl (hash: 8/obLyDsmJWkWpV1XqWInS36ce8I6wkyz3pdH4asP3U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 17:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:34:f0:0c:27:e6:09:44:97:04:62:c9:f2:ca:93:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
        Validity
            Not Before: Jun  9 01:01:30 2025 GMT
            Not After : Jun 10 01:01:30 2025 GMT
        Subject: CN=4ead5a96420abe1398f2388317b54185d5050e23
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:81:e7:88:c1:34:4f:97:25:87:d0:7a:bd:dc:
                    12:ea:79:a5:7e:86:c8:48:43:e4:28:4a:37:e1:dc:
                    eb:51:04:26:d0:67:72:7a:0b:5e:36:39:14:67:be:
                    98:1d:99:0d:17:59:9b:ca:f6:70:ee:16:4c:9a:8e:
                    87:2a:87:b5:d9:fa:22:d8:79:2b:50:4c:a3:cd:a8:
                    d7:4b:7d:06:e5:3b:81:a0:99:e7:8a:c5:20:52:38:
                    08:99:ef:92:29:0d:92:e4:83:9b:35:bd:f0:52:03:
                    27:3b:f6:2a:c1:d8:db:c4:39:4a:2f:8f:9c:6c:c2:
                    71:6b:62:12:d2:8f:7f:c8:c2:ea:de:2a:9a:c4:dc:
                    e6:9c:0e:d0:1e:46:50:cf:90:05:c3:c1:d4:41:8b:
                    2a:bf:f8:72:63:d9:4b:e0:ad:e8:38:58:6c:58:8f:
                    73:29:7b:b5:c0:89:51:9e:00:93:c9:20:c3:6e:ca:
                    44:88:48:81:d9:af:10:6f:0c:0e:79:93:4d:af:9e:
                    e9:23:bd:89:c8:16:38:8d:8a:c6:e1:6a:de:49:56:
                    2f:97:2a:ef:4f:84:1a:51:bc:12:b6:1c:4c:20:b5:
                    7d:c5:6e:74:2d:90:0f:49:fa:31:58:80:44:91:10:
                    12:da:7e:75:4c:48:25:11:b1:4e:b8:0a:86:1a:84:
                    fa:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:AD:5A:96:42:0A:BE:13:98:F2:38:83:17:B5:41:85:D5:05:0E:23
            X509v3 Authority Key Identifier:
                keyid:8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:96:f8:bc:36:e7:6b:d7:6f:83:60:1a:dd:02:79:3b:2c:08:
         33:5c:59:02:0c:81:97:3e:ec:bf:ef:fa:7f:d7:89:c6:78:90:
         96:3a:92:86:b1:db:ef:e2:f4:85:f9:d4:1f:8d:a6:5f:31:19:
         0a:2f:a4:dc:b5:18:05:9a:77:a3:4b:a9:d5:46:6d:fc:ef:89:
         d8:9e:cd:39:53:60:f1:1c:45:e3:19:bc:d1:3f:c6:72:20:a1:
         ba:7c:90:86:dd:eb:2f:bf:9e:ee:8c:a7:f6:b8:29:89:4b:49:
         dd:b6:31:d5:b5:68:3a:61:8e:7d:24:61:d0:a0:1c:85:b6:65:
         d1:d1:32:b7:4b:ed:a7:9f:7a:c2:13:bb:37:f2:c7:94:f9:e3:
         dc:92:fc:bb:ea:f2:d0:43:9a:35:cc:eb:aa:a0:81:cb:b2:44:
         02:b1:33:52:a4:dd:22:ba:8f:33:93:87:08:43:bd:7e:49:17:
         ef:2c:56:db:3a:9b:1c:6b:85:64:1e:61:ed:f3:8f:dc:43:73:
         c7:43:15:83:65:ad:86:47:fc:21:7d:ad:45:85:7e:bd:dc:5a:
         bb:08:84:46:bf:e0:2e:42:20:12:73:cd:e8:c4:c7:6e:aa:35:
         58:96:61:ee:e3:a9:a1:5c:b1:b8:d6:68:eb:53:67:5b:dd:7e:
         97:e6:f5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----