Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
File:                     mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json)
Hash identifier:          h5FTnFq0ZO4JrIX+8F4U672OJ/Upa7DVvxstlyBUC/Y=
Subject key identifier:   B4:13:A6:19:CE:5D:D7:92:23:8F:37:5C:53:B6:D3:E1:C1:2D:A3:10
Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33
Certificate issuer:       /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
Certificate serial:       01976B4F3A40442BF98D77B13B8A60B0F46F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
Manifest number:          1223
Signing time:             Fri 13 Jun 2025 22:00:43 +0000
Manifest this update:     Fri 13 Jun 2025 22:00:43 +0000
Manifest next update:     Sat 14 Jun 2025 22:00:43 +0000
Files and hashes:         1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: tuCQvl9uCFiePoMUtfaTzU5cmtx2J2HDzQ67OF6RkPw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 22:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:4f:3a:40:44:2b:f9:8d:77:b1:3b:8a:60:b0:f4:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
        Validity
            Not Before: Jun 13 22:00:43 2025 GMT
            Not After : Jun 14 22:00:43 2025 GMT
        Subject: CN=b413a619ce5dd792238f375c53b6d3e1c12da310
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:62:3e:03:80:c4:8e:73:43:ae:48:fa:bb:06:
                    c6:ce:8e:4d:50:79:b1:d1:56:e6:de:ae:d8:ee:dd:
                    ca:2d:1f:fe:5e:d9:c3:da:0f:13:5b:b0:21:ff:ff:
                    3f:da:fb:91:8e:1b:25:ce:31:6b:84:28:8d:4f:6e:
                    ff:3c:dd:95:2a:47:83:7b:c8:44:29:1d:39:1a:b7:
                    59:c6:79:22:d8:6c:46:d9:e0:e9:8e:9f:ff:30:0b:
                    59:08:af:47:dc:1f:46:7b:41:76:19:65:08:7f:9c:
                    8b:d7:e6:1b:81:a5:81:87:1e:95:e8:ed:50:fe:9c:
                    d6:47:85:f2:ba:3a:21:0f:15:d3:1c:4a:15:8a:4c:
                    3f:02:85:da:82:eb:f3:e2:3e:04:bd:ef:b2:de:c4:
                    3b:50:f9:b9:6c:2f:4f:53:30:56:c9:27:8b:49:80:
                    c0:0a:d5:fa:f0:68:90:3c:e8:72:b2:b4:e4:96:71:
                    16:e6:42:c7:40:73:58:4c:f2:86:ec:65:1a:a2:d4:
                    e5:fb:ec:56:7b:ec:9e:58:6e:ad:e3:5b:e0:5d:f2:
                    c0:44:31:d2:24:4b:ca:69:4c:08:3f:f3:32:b0:40:
                    42:23:d6:b4:b3:0a:2b:b2:11:f6:2e:e9:3b:11:b9:
                    27:63:9c:78:45:43:53:17:b6:21:33:22:a1:06:56:
                    8f:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:13:A6:19:CE:5D:D7:92:23:8F:37:5C:53:B6:D3:E1:C1:2D:A3:10
            X509v3 Authority Key Identifier:
                keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:ce:b1:8e:38:d9:b2:8c:7d:c5:1f:5e:f9:12:ca:2b:ff:d0:
         b6:cd:e4:a3:42:cd:db:48:6d:c4:60:82:a1:8c:c5:d1:10:2b:
         32:8b:30:37:18:55:97:ad:28:2d:35:ba:30:3e:68:c1:39:0b:
         44:4a:e8:35:b5:e9:1d:3b:36:8d:15:da:d4:3f:b7:1e:48:1d:
         59:3f:93:3f:61:e5:bc:1d:54:af:fc:0f:d7:93:6a:1d:3d:65:
         8a:cf:b2:29:4e:4c:ff:e1:3e:13:3c:83:80:83:0c:35:01:a4:
         1d:86:45:b7:9e:73:b7:24:2b:04:fe:d3:6b:0f:2c:c3:33:84:
         90:52:ba:62:cf:41:bf:da:18:fc:40:09:e6:05:82:db:82:36:
         d4:6d:0f:03:d7:fb:01:2a:dd:1a:1b:9f:35:c5:a8:59:db:74:
         47:6d:d7:c8:c9:e5:ee:88:7c:87:d3:43:99:e9:09:3d:ed:e6:
         b5:7a:d6:41:ff:78:da:14:e9:b8:43:b3:38:8f:cd:d6:1f:69:
         a4:73:f8:91:4b:37:7b:99:41:cf:19:a6:62:12:b6:06:58:9b:
         8f:28:76:7f:63:b5:93:fe:11:32:f5:55:9a:40:be:5c:0f:59:
         05:d6:4f:fd:1c:31:27:f4:62:0c:17:2b:4c:a0:f8:95:6c:04:
         97:5d:f6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----