Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
File:                     VkQtN4qHkyt22vks6Pye80Hrx1k.mft (raw, json)
Hash identifier:          U7Hdsohy/DKdD2OW1kuc3S8TnUx0dFtkaf3DggDiyHc=
Subject key identifier:   C8:31:B3:4E:98:7E:67:1E:C0:19:48:00:22:4F:92:92:68:34:01:80
Authority key identifier: 56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59
Certificate issuer:       /CN=56442d378a87932b76daf92ce8fc9ef341ebc759
Certificate serial:       01974EFC93C7F99094956EFCDF6ACEA5D9EF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
Manifest number:          0B41
Signing time:             Sun 08 Jun 2025 10:01:05 +0000
Manifest this update:     Sun 08 Jun 2025 10:01:05 +0000
Manifest next update:     Mon 09 Jun 2025 10:01:05 +0000
Files and hashes:         1: VkQtN4qHkyt22vks6Pye80Hrx1k.crl (hash: JYJI+e6f3oyfM9KUgS/sc/0MsG+gC/17T5X0E8o544Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 10:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:fc:93:c7:f9:90:94:95:6e:fc:df:6a:ce:a5:d9:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56442d378a87932b76daf92ce8fc9ef341ebc759
        Validity
            Not Before: Jun  8 10:01:05 2025 GMT
            Not After : Jun  9 10:01:05 2025 GMT
        Subject: CN=c831b34e987e671ec0194800224f929268340180
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:a9:73:ad:2b:06:66:89:fb:8d:4a:fc:dd:45:
                    0f:ad:6c:ed:d8:56:9b:53:bf:1e:ed:fb:8c:74:8a:
                    e8:3c:df:9c:ba:19:14:2c:e0:1e:29:c3:fd:8a:1a:
                    b6:29:d1:58:8b:1e:25:93:44:31:9f:68:24:3e:a7:
                    d0:a5:56:28:d8:d8:6b:a2:d0:5a:f0:51:d1:5c:96:
                    5b:25:90:5b:8a:8c:f6:58:b1:19:a7:b6:b9:08:86:
                    07:a3:a7:ec:1b:3e:c2:ac:2a:fc:33:f2:fc:75:30:
                    ab:e2:75:7a:7e:c4:a0:45:b1:0f:2f:1a:90:da:1d:
                    59:be:89:9f:90:9e:0d:62:4c:12:60:5a:12:4b:bc:
                    66:63:58:8f:2c:3b:66:3e:cf:74:87:66:c3:9e:87:
                    63:6b:b3:18:e0:33:53:05:fb:92:19:e3:db:72:01:
                    6a:55:1f:fe:f4:61:2c:95:e4:c4:d7:d1:d2:ef:9c:
                    bc:7c:80:5f:3f:55:bd:4e:54:65:56:ae:40:63:13:
                    9d:70:c4:cb:0d:d7:4d:f3:81:66:0d:5e:96:6b:6a:
                    09:59:09:8a:09:11:81:fb:cd:e7:fb:d7:08:27:96:
                    66:61:d1:c6:97:e3:87:1f:2f:72:3c:3c:b8:7e:a7:
                    0f:8d:df:22:63:6d:4f:ba:12:83:79:98:0a:6d:3b:
                    e3:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:31:B3:4E:98:7E:67:1E:C0:19:48:00:22:4F:92:92:68:34:01:80
            X509v3 Authority Key Identifier:
                keyid:56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c7:3f:be:23:fa:2d:e6:fc:4b:bc:2a:45:a3:96:b3:6d:d7:24:
         b2:41:98:60:f7:1b:2e:b7:e3:23:d7:a1:fe:5b:ac:3d:10:f1:
         0c:46:5e:4f:6b:45:f4:fc:a2:ac:b9:35:a7:54:f3:0c:38:b8:
         59:4f:dd:3d:9c:13:7b:69:a1:64:5c:c9:75:4e:8d:4f:f8:da:
         9c:1e:2c:45:27:ef:04:64:1e:46:bf:df:16:19:5c:30:5e:61:
         af:68:45:10:db:4b:4b:7a:d2:8a:2a:2c:9d:82:26:2f:6e:06:
         5d:b3:02:02:18:91:a1:12:c2:b9:cb:d7:81:c7:ad:d9:46:96:
         e3:e3:dd:76:00:20:48:0e:44:b2:5a:93:8d:cb:a7:24:b8:82:
         df:2c:af:f9:f2:95:15:17:25:36:4c:e8:29:18:79:fc:0c:cb:
         92:78:73:fe:8a:1a:e0:5c:92:7f:d4:2e:4f:7a:da:7b:4f:f9:
         57:6a:64:cc:1a:9f:9a:e1:8c:0b:c8:4e:2e:39:21:e3:23:32:
         93:d4:1a:03:84:20:66:13:e8:63:e7:72:2d:b5:53:f8:fc:16:
         b3:58:75:08:17:05:25:cb:ea:a5:02:e4:64:92:56:39:c2:c7:
         03:e5:6e:80:b8:ee:a5:99:80:27:5f:e8:06:98:4a:30:77:83:
         0e:84:72:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----