Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
File:                     d_M68l-VqylxEYjp_-pQzMshHXY.mft (raw, json)
Hash identifier:          0u2KFNRz0T0Xw6QthbHAFNR10hgiXm8hUCG1IM2iW1A=
Subject key identifier:   09:DE:08:2D:D8:D4:3C:CF:4D:8D:4C:29:79:02:78:4B:A4:B6:B6:E5
Authority key identifier: 77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76
Certificate issuer:       /CN=77f33af25f95ab29711188e9ffea50cccb211d76
Certificate serial:       01974BC4A3AC32663C16B87AECD3182C190A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
Manifest number:          0CF3
Signing time:             Sat 07 Jun 2025 19:01:07 +0000
Manifest this update:     Sat 07 Jun 2025 19:01:07 +0000
Manifest next update:     Sun 08 Jun 2025 19:01:07 +0000
Files and hashes:         1: d_M68l-VqylxEYjp_-pQzMshHXY.crl (hash: SljBt4zsVzrkEViSz2p4eWSnNx6yA5S/HUfizOIGD+A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:c4:a3:ac:32:66:3c:16:b8:7a:ec:d3:18:2c:19:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77f33af25f95ab29711188e9ffea50cccb211d76
        Validity
            Not Before: Jun  7 19:01:07 2025 GMT
            Not After : Jun  8 19:01:07 2025 GMT
        Subject: CN=09de082dd8d43ccf4d8d4c297902784ba4b6b6e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:10:4e:0b:96:ea:d7:c6:49:fe:bb:b4:8b:a7:
                    f6:77:cf:e0:93:17:70:ae:72:38:de:5b:e8:47:cf:
                    54:8c:41:f7:c5:90:d3:f7:2e:54:b8:90:02:39:73:
                    7a:0b:8c:eb:80:fb:d3:62:8a:d3:82:60:b7:05:cc:
                    da:11:3d:6a:ea:12:f6:07:32:af:0b:5c:94:9b:89:
                    78:7c:90:8f:55:a3:b1:f5:82:61:8e:d3:d5:b8:96:
                    2a:c9:b1:8d:ee:95:4a:42:40:0f:1d:0b:c2:7d:13:
                    2b:50:6f:a4:b8:93:13:c1:61:8d:e6:47:98:8d:17:
                    c0:dc:df:91:ed:99:48:43:36:76:90:d0:9b:23:a2:
                    06:9e:9e:55:e1:e5:6a:57:eb:ac:16:05:8f:bb:51:
                    d2:62:78:97:d8:9b:be:5b:c2:d9:e5:54:07:78:e0:
                    1c:a7:29:bf:41:b2:0c:c0:4e:45:68:13:3c:fe:6a:
                    4b:3e:63:eb:48:5b:6c:43:8d:90:80:2c:10:2b:4f:
                    d8:0e:d4:9f:fa:da:de:44:04:6d:a6:00:ee:a2:24:
                    2e:27:6c:14:dd:75:63:11:da:96:27:74:32:a6:91:
                    3a:36:da:ca:41:f4:66:dd:71:e3:45:44:69:3a:aa:
                    28:59:1b:32:b2:bd:30:e9:86:21:a7:85:36:0b:2b:
                    a0:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:DE:08:2D:D8:D4:3C:CF:4D:8D:4C:29:79:02:78:4B:A4:B6:B6:E5
            X509v3 Authority Key Identifier:
                keyid:77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:da:40:66:b0:83:d1:ed:6f:d0:c6:b6:a9:d4:b5:df:de:32:
         7f:a5:9a:62:f5:cf:bc:56:4f:b9:b9:a9:48:d6:16:a1:96:84:
         3e:32:ed:d3:9e:54:5d:07:c1:12:38:96:80:1b:08:e0:11:2a:
         5f:ec:4b:9c:69:f1:78:79:ea:e2:6b:0d:33:c7:c7:26:c3:b8:
         89:d3:23:aa:d3:71:2c:24:cf:ac:44:ec:26:db:48:35:63:23:
         2a:12:b6:34:05:7d:cb:13:ea:05:fc:7f:dd:38:57:f1:34:af:
         e7:17:f4:18:3f:05:8f:2e:04:43:cf:3b:53:5e:6c:19:eb:15:
         82:be:5f:44:51:fa:e1:17:66:7f:98:a5:11:11:b6:88:10:b3:
         d1:1e:a9:5d:1d:2a:a4:09:39:64:67:2b:5c:23:38:9a:fe:9c:
         19:fb:c6:bc:7e:44:a1:8c:9c:6c:7c:a7:6e:4e:bd:af:f6:d6:
         0c:ed:5b:e7:eb:7e:52:c8:21:47:bc:2c:95:1b:a6:3e:95:57:
         6e:00:94:35:ff:4f:13:d6:6d:a8:04:ed:da:c6:6c:0a:0f:55:
         ec:ff:06:ad:47:8b:93:73:63:b7:aa:d4:89:98:03:af:04:5c:
         3d:b8:98:09:a1:0c:6b:d6:3e:0f:cb:24:f0:54:83:c1:c0:01:
         cd:42:fd:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----