Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
File:                     ksrhHed02u8FJ0JGPOlU9SHG0nI.mft (raw, json)
Hash identifier:          KLIxw1mTFulW/i8yy29Ex378UxUty7vygKwsX66S3vs=
Subject key identifier:   A2:80:EA:F9:D8:42:13:F8:9C:96:06:03:AA:0F:F2:31:D1:3E:A9:6D
Authority key identifier: 92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72
Certificate issuer:       /CN=92cae11de774daef052742463ce954f521c6d272
Certificate serial:       01974E574FB32E368E180ADE4C83EAC8730F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
Manifest number:          0F77
Signing time:             Sun 08 Jun 2025 07:00:34 +0000
Manifest this update:     Sun 08 Jun 2025 07:00:34 +0000
Manifest next update:     Mon 09 Jun 2025 07:00:34 +0000
Files and hashes:         1: ksrhHed02u8FJ0JGPOlU9SHG0nI.crl (hash: AAxOktYmjBwd9TgHsNNiY3u4Zeq0jd9wiZAss/t914Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:57:4f:b3:2e:36:8e:18:0a:de:4c:83:ea:c8:73:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=92cae11de774daef052742463ce954f521c6d272
        Validity
            Not Before: Jun  8 07:00:34 2025 GMT
            Not After : Jun  9 07:00:34 2025 GMT
        Subject: CN=a280eaf9d84213f89c960603aa0ff231d13ea96d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:96:60:85:56:32:9b:bd:3e:39:e5:0b:be:4c:
                    74:e6:a0:c2:f6:56:2e:c0:99:93:4f:10:4e:91:da:
                    be:78:11:07:0e:3a:1f:f5:05:be:fd:92:34:48:f8:
                    6e:7a:23:83:81:e0:18:16:dc:38:a3:6d:66:92:37:
                    ae:94:48:32:ae:18:1b:bd:40:81:d3:d7:10:ee:fc:
                    8e:5c:b1:e5:98:9a:e5:91:74:6d:ea:9f:07:51:bd:
                    ea:8b:10:41:ef:cc:b2:95:1f:f9:3c:76:ab:78:a4:
                    8e:37:2d:f4:dc:54:05:7c:9e:ef:48:32:fb:0a:c9:
                    ba:7e:56:09:59:60:57:7c:d4:5f:ec:b3:2a:32:7c:
                    86:bc:fe:58:ac:61:1a:21:63:e5:7c:7f:41:b4:c7:
                    b9:f4:b8:90:44:bb:db:3e:3a:79:0c:51:96:ac:b2:
                    ad:4e:b0:5e:eb:c9:e5:af:b4:a0:3b:f6:c0:f7:c0:
                    d3:85:52:e9:32:24:90:e5:1c:dd:1a:c9:20:e1:8e:
                    be:e3:3d:d3:3e:6c:80:b3:ee:62:19:cd:05:b6:66:
                    6c:88:fe:74:fe:06:b8:20:c1:d7:fe:b3:2c:05:3b:
                    69:49:6e:e1:c5:8d:6a:ca:a5:6b:83:08:92:15:25:
                    7d:31:86:20:37:0c:9b:d0:a1:8c:58:da:50:4f:85:
                    c4:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:80:EA:F9:D8:42:13:F8:9C:96:06:03:AA:0F:F2:31:D1:3E:A9:6D
            X509v3 Authority Key Identifier:
                keyid:92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:0f:e2:bb:d1:1f:3c:7c:0f:9b:c0:98:4c:63:4d:8a:c9:11:
         40:6c:11:e2:7c:ae:8c:d1:a6:5d:6b:ec:16:47:48:66:b1:48:
         fb:5a:ed:b2:fb:be:3f:f7:98:67:d6:bc:2a:f9:7b:1e:59:31:
         ab:f3:77:78:26:43:00:c2:d7:11:c1:0a:61:30:96:4d:39:d1:
         cd:58:d9:e0:2a:ff:db:4a:2d:84:2d:13:c1:d2:f5:58:76:67:
         31:0d:6b:10:fd:37:d1:7a:27:1b:b3:d4:52:aa:3e:e2:3d:7c:
         5d:19:b4:47:55:e4:f0:44:a4:33:a8:0f:47:51:b3:49:73:50:
         57:3a:15:9c:8a:2e:e3:85:59:6f:b6:fb:69:be:9a:7c:88:c1:
         bd:2a:2d:a7:33:6a:cf:56:32:e3:67:1f:31:27:69:54:2d:50:
         ee:b5:1f:80:30:36:ca:5c:be:1b:52:fd:77:57:f6:5a:7a:80:
         50:5f:19:a6:09:98:6d:0c:c3:54:cd:a0:e7:46:f4:c1:c4:49:
         71:99:cc:b9:35:3d:f2:be:11:01:42:58:62:fe:49:70:68:c7:
         a9:85:11:47:66:f2:3c:e7:60:68:35:96:1f:bc:e4:41:b6:76:
         3c:92:bc:ba:02:10:84:45:78:1a:27:98:78:22:86:01:ff:f3:
         f7:44:cb:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----