Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/df715b-79a6-44a9-ac97-adb314a5753c/1/e9g2worwknoDVYYlrt9v14ekkFw.mft
File:                     e9g2worwknoDVYYlrt9v14ekkFw.mft (raw, json)
Hash identifier:          T7nKjtWpDV0JmeTZJc5NXOm5FhzPV/IYNSl1pJuSOC8=
Subject key identifier:   F6:60:9F:B7:C3:5B:DD:D6:20:BF:4C:85:19:33:69:74:5B:B9:6B:84
Authority key identifier: 7B:D8:36:C2:8A:F0:92:7A:03:55:86:25:AE:DF:6F:D7:87:A4:90:5C
Certificate issuer:       /CN=7bd836c28af0927a03558625aedf6fd787a4905c
Certificate serial:       01974E575B46294209C397362008CAC80EE9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/e9g2worwknoDVYYlrt9v14ekkFw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c8/df715b-79a6-44a9-ac97-adb314a5753c/1/e9g2worwknoDVYYlrt9v14ekkFw.mft
Manifest number:          14B9
Signing time:             Sun 08 Jun 2025 07:00:37 +0000
Manifest this update:     Sun 08 Jun 2025 07:00:37 +0000
Manifest next update:     Mon 09 Jun 2025 07:00:37 +0000
Files and hashes:         1: e9g2worwknoDVYYlrt9v14ekkFw.crl (hash: qwjBdVepaO3ErDbHGOTvzTcsHy2zLh89QecheBZTw10=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c8/df715b-79a6-44a9-ac97-adb314a5753c/1/e9g2worwknoDVYYlrt9v14ekkFw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c8/df715b-79a6-44a9-ac97-adb314a5753c/1/e9g2worwknoDVYYlrt9v14ekkFw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/e9g2worwknoDVYYlrt9v14ekkFw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:57:5b:46:29:42:09:c3:97:36:20:08:ca:c8:0e:e9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7bd836c28af0927a03558625aedf6fd787a4905c
        Validity
            Not Before: Jun  8 07:00:37 2025 GMT
            Not After : Jun  9 07:00:37 2025 GMT
        Subject: CN=f6609fb7c35bddd620bf4c85193369745bb96b84
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:36:6e:07:77:7e:38:3d:49:10:50:a3:51:34:
                    21:fe:0b:a7:8d:74:3f:74:f4:03:42:b3:90:e7:d4:
                    ff:8f:a3:c6:65:11:bc:86:5c:87:cf:58:e1:17:6e:
                    ec:f1:87:2c:a6:74:f0:8f:95:c4:96:1c:2d:b5:6f:
                    c2:44:b3:41:c5:92:1c:90:9e:57:59:81:de:2a:58:
                    7d:d1:3b:82:5c:8f:23:9b:8e:f5:49:02:c2:26:4c:
                    5d:16:4c:19:66:59:ce:1c:be:90:70:62:a0:2a:13:
                    a1:24:45:67:62:2d:2c:ae:c6:34:fd:d0:c6:b3:db:
                    78:9f:14:3c:b1:9e:89:26:17:ac:18:bb:ee:dc:c6:
                    33:c9:f1:bb:f5:82:22:fc:d5:81:7e:cf:5d:07:f1:
                    c2:5d:78:8f:23:cc:34:8e:a8:21:64:96:da:fa:a2:
                    05:2e:30:b4:d6:08:af:67:b9:32:53:33:65:29:42:
                    8d:ee:c4:bb:00:49:0a:cb:5a:1d:64:71:e5:74:be:
                    e9:53:2a:b3:80:89:94:ed:1c:51:1e:f1:f3:48:5a:
                    9e:77:9a:37:b5:b3:54:49:1e:72:6d:cf:22:09:d3:
                    37:36:e1:cc:5a:a8:ac:58:66:e9:83:41:11:8f:e6:
                    55:14:77:2f:f0:fa:0a:ce:e3:79:ba:b4:8a:20:2b:
                    9c:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:60:9F:B7:C3:5B:DD:D6:20:BF:4C:85:19:33:69:74:5B:B9:6B:84
            X509v3 Authority Key Identifier:
                keyid:7B:D8:36:C2:8A:F0:92:7A:03:55:86:25:AE:DF:6F:D7:87:A4:90:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9g2worwknoDVYYlrt9v14ekkFw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/df715b-79a6-44a9-ac97-adb314a5753c/1/e9g2worwknoDVYYlrt9v14ekkFw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/df715b-79a6-44a9-ac97-adb314a5753c/1/e9g2worwknoDVYYlrt9v14ekkFw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:0a:26:3f:40:6f:fe:33:af:72:b5:60:92:b7:2e:f9:91:dc:
         ab:1b:a2:eb:76:7a:df:2f:4d:cf:09:97:8c:1e:16:38:22:c8:
         75:8a:69:9b:b4:db:e5:66:59:77:12:59:14:c5:5b:37:5f:04:
         46:f7:3e:cf:36:64:36:39:6e:7c:03:2b:0a:12:1f:4e:4b:fe:
         6f:91:38:1a:75:33:25:10:00:fc:e2:95:25:2c:81:aa:e7:3e:
         26:1d:c7:40:b9:53:ae:ab:a3:07:0b:8d:3a:34:78:f0:1a:17:
         59:5a:e3:56:d0:0a:35:bb:b1:23:7c:77:7d:7e:6d:3f:ee:b2:
         55:1c:97:86:47:e4:71:c4:c9:e4:07:6e:c7:7f:30:81:f0:a0:
         5c:03:7d:e1:b2:cd:9c:84:81:d0:bf:4b:7d:09:61:05:f9:54:
         55:aa:5f:01:c5:17:7d:b2:e0:10:da:e1:05:5f:1e:5a:5b:ec:
         94:8f:9b:22:25:5b:7d:02:78:11:d9:b8:0a:3b:37:50:4e:31:
         63:6b:33:40:0e:89:74:71:84:36:e4:a0:f3:2e:73:cf:aa:85:
         4a:24:9a:88:03:4f:44:24:22:cd:6e:84:36:2d:2d:0e:3b:e4:
         b2:4d:d0:78:cd:0d:59:8e:16:68:76:0c:34:8d:2f:74:25:67:
         36:29:da:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----