Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
File:                     mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json)
Hash identifier:          vJ54ztwPWzGdeE8rf0ZxrVWwW4yS1h/2NH7Ml0IawiQ=
Subject key identifier:   E6:2B:FD:19:2C:91:49:56:F8:37:15:4E:61:EF:C5:3F:B1:B5:59:ED
Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33
Certificate issuer:       /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
Certificate serial:       01975DCBB8432877EB3C4DFB23026E04B557
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
Manifest number:          121C
Signing time:             Wed 11 Jun 2025 07:02:01 +0000
Manifest this update:     Wed 11 Jun 2025 07:02:01 +0000
Manifest next update:     Thu 12 Jun 2025 07:02:01 +0000
Files and hashes:         1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: MZ3yVCoQF0JKkJM57tnKMxWYrJDfjF3uwfFnx45sNYI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 07:02:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:cb:b8:43:28:77:eb:3c:4d:fb:23:02:6e:04:b5:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
        Validity
            Not Before: Jun 11 07:02:01 2025 GMT
            Not After : Jun 12 07:02:01 2025 GMT
        Subject: CN=e62bfd192c914956f837154e61efc53fb1b559ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:b2:f4:5a:c1:ee:88:de:70:fa:27:d5:4b:64:
                    05:3b:09:42:05:84:57:34:d5:bd:0b:87:e3:95:3c:
                    46:1c:02:52:50:f6:f9:3a:4b:d1:b6:6f:6a:a4:33:
                    6a:67:cd:15:7d:3f:86:87:b6:57:f1:67:fa:0e:26:
                    90:fa:6c:88:bf:06:1e:4b:fc:62:b2:4b:37:c2:dd:
                    a2:0f:7b:38:14:02:2b:73:cb:54:e9:e6:cf:65:f1:
                    05:ee:49:5d:d1:51:26:9c:82:6a:f6:93:b2:aa:60:
                    9c:fd:b0:76:49:00:ef:5c:68:72:db:a1:e1:9d:63:
                    93:72:f6:3e:8a:b1:b1:fc:6a:eb:22:56:0a:ff:b9:
                    fb:cf:2f:48:19:6e:c6:5c:fd:2a:1d:1e:2f:4c:90:
                    7a:7f:90:85:fd:fb:9f:22:15:91:94:df:3c:9b:ae:
                    31:d6:41:a4:fb:2b:b3:06:38:fd:81:22:fb:f8:ff:
                    c3:56:16:31:a3:42:b4:8b:c5:85:d6:9e:77:35:7e:
                    bd:e1:42:00:bd:cf:a4:9a:50:3e:f2:d7:f7:10:54:
                    ff:2d:9a:b4:03:e6:a2:e4:2f:b3:65:e7:b2:cc:a6:
                    a9:68:44:82:47:13:84:13:da:8c:70:9a:9b:a6:a9:
                    66:b3:33:c3:7c:62:05:8d:6a:b3:78:2b:08:10:fa:
                    15:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:2B:FD:19:2C:91:49:56:F8:37:15:4E:61:EF:C5:3F:B1:B5:59:ED
            X509v3 Authority Key Identifier:
                keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:c5:c3:03:47:d6:06:7f:5e:1a:03:3c:f6:a0:ad:32:e9:ee:
         d3:3e:40:00:bd:24:fa:e2:3b:51:6a:81:f7:de:3f:f7:c9:56:
         bd:31:bd:5a:ad:4a:6e:70:f4:ff:58:09:bc:b6:44:86:92:a2:
         a9:ca:43:1e:56:9c:59:fa:ef:66:b0:92:51:ee:6c:02:e9:d6:
         79:d1:f1:3a:b4:d8:1d:ae:03:76:fe:2f:a3:7a:f9:42:42:0a:
         57:1f:19:a5:b6:2e:38:4d:db:48:4f:65:e4:cb:61:77:df:c0:
         26:04:6a:74:39:94:7a:e8:42:70:01:fe:27:af:ef:da:85:47:
         40:26:0a:0e:18:1e:7e:6e:e1:3b:b8:04:84:36:8f:4b:f0:8d:
         7f:7f:64:e9:19:9e:b8:10:b2:c5:b0:0b:70:33:37:ae:ac:65:
         90:f4:9e:09:e8:5e:31:24:db:6a:03:e2:e0:66:ed:ea:3c:fe:
         fb:b4:21:f3:6c:26:15:6d:a7:3e:c4:fe:40:43:d9:0e:2b:68:
         f4:b8:e9:d2:b8:00:37:db:bc:60:6a:f0:9b:2c:b4:6a:5c:49:
         a8:63:9a:fe:17:67:f0:46:1e:5c:c6:cb:cf:41:c6:b3:d2:4e:
         50:a4:52:ce:8b:ce:9b:3b:31:b1:22:5e:d7:1c:cc:b7:eb:1c:
         3e:e6:1c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----