Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft
File:                     oUYsqczoyP_R-dfefH6QXG6JPPw.mft (raw, json)
Hash identifier:          RhwJMDZFKUk9VmUceuZTse/wXdaFSMdQmEhhUbCO7wo=
Subject key identifier:   7D:EC:A7:A8:FC:F3:28:EA:00:DD:39:44:03:4E:2B:56:8C:08:A3:95
Authority key identifier: A1:46:2C:A9:CC:E8:C8:FF:D1:F9:D7:DE:7C:7E:90:5C:6E:89:3C:FC
Certificate issuer:       /CN=a1462ca9cce8c8ffd1f9d7de7c7e905c6e893cfc
Certificate serial:       01974A7A663898642290D11894F889E7CB8A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oUYsqczoyP_R-dfefH6QXG6JPPw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft
Manifest number:          1579
Signing time:             Sat 07 Jun 2025 13:00:24 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:24 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:24 +0000
Files and hashes:         1: oUYsqczoyP_R-dfefH6QXG6JPPw.crl (hash: ynyrkV1gbW7Xg0h8t/NI2b1ZDfQcJstbLwk+CUzDufM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oUYsqczoyP_R-dfefH6QXG6JPPw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 13:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:66:38:98:64:22:90:d1:18:94:f8:89:e7:cb:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1462ca9cce8c8ffd1f9d7de7c7e905c6e893cfc
        Validity
            Not Before: Jun  7 13:00:24 2025 GMT
            Not After : Jun  8 13:00:24 2025 GMT
        Subject: CN=7deca7a8fcf328ea00dd3944034e2b568c08a395
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:8b:1b:e2:24:25:03:0a:34:ae:0c:50:e9:5d:
                    ea:6a:40:f2:ea:95:13:f0:56:83:f6:73:fd:9e:20:
                    4c:33:f1:05:2f:03:b0:e7:36:1a:20:02:d9:69:c6:
                    9e:5e:39:47:40:b3:91:70:52:d6:eb:06:f9:eb:ce:
                    86:12:ad:e4:58:95:b8:b9:cb:f1:92:13:04:bb:fa:
                    6f:02:90:b1:f2:e9:05:ce:3f:0e:84:13:43:50:1c:
                    d3:10:d8:77:fc:f9:2d:95:96:2e:c3:da:4d:87:01:
                    cc:12:bf:5f:de:1c:c4:00:0b:f1:85:35:52:1d:b5:
                    b6:bd:91:1c:8a:a8:b7:b1:23:9d:c8:79:5f:6f:b2:
                    a8:b0:14:10:60:a9:90:16:49:14:67:f7:33:4e:23:
                    ce:d3:b0:d5:b1:03:84:b7:2b:51:6b:c2:5a:09:1a:
                    73:71:9b:e3:c4:f4:de:fe:bc:a3:56:f6:ef:88:12:
                    71:73:44:59:80:74:64:c8:39:10:4a:bd:5a:f6:9a:
                    51:13:bc:55:25:28:65:7a:46:9d:65:28:de:73:60:
                    c2:38:ce:c8:b2:df:3d:2a:62:82:4c:e0:1d:ae:7c:
                    3c:91:b6:a8:c9:1f:d1:da:7b:62:dc:45:7f:d4:d7:
                    39:4c:2e:4b:9f:14:8a:d5:ed:33:4c:d4:9a:6a:7b:
                    d0:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:EC:A7:A8:FC:F3:28:EA:00:DD:39:44:03:4E:2B:56:8C:08:A3:95
            X509v3 Authority Key Identifier:
                keyid:A1:46:2C:A9:CC:E8:C8:FF:D1:F9:D7:DE:7C:7E:90:5C:6E:89:3C:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUYsqczoyP_R-dfefH6QXG6JPPw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:13:5e:a3:5d:21:25:2d:2c:48:ff:fd:ee:bd:79:d4:6f:2d:
         41:02:a5:95:41:a9:94:82:30:70:02:7b:9c:51:c1:9a:a5:3a:
         97:6f:25:c4:d4:51:ef:66:29:80:74:fc:d0:74:c5:f4:c7:e2:
         0c:ea:ba:9a:0f:de:69:6f:92:b4:80:56:53:e1:24:20:2c:92:
         b8:8e:e6:5a:38:33:5b:a0:28:96:99:be:5c:ef:f8:ad:84:3a:
         12:9b:c3:7a:e1:1e:a4:24:4b:70:2e:2e:04:65:34:c4:18:e9:
         57:21:7f:04:fb:fe:08:34:2a:77:46:62:2c:01:5e:a1:68:29:
         0b:fd:96:49:ee:58:1d:cd:92:09:b4:76:7f:94:04:bd:ca:5d:
         be:5a:96:86:7b:67:89:84:70:05:4a:93:f7:95:b5:1f:18:5f:
         56:42:a6:ea:44:a5:8d:30:28:16:e9:0e:e9:53:1e:cf:28:09:
         5a:9a:1b:69:e8:28:e6:f8:2e:e8:ce:43:38:5d:58:85:65:87:
         61:4b:7b:6b:a1:4c:1e:1f:88:1f:d3:bb:81:bf:36:ed:dd:db:
         8f:75:92:89:fd:0a:b1:09:f4:aa:86:e6:99:30:0a:b3:aa:28:
         0e:de:62:4f:f1:ae:23:5f:dd:2c:4d:9d:de:ad:fe:6f:07:9c:
         94:c8:86:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----