Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
File:                     mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json)
Hash identifier:          EkGj4/kN6qV1UNBYSivR9Q7hCpmG+W2q2zVFa/htdIo=
Subject key identifier:   6C:8F:B7:8B:38:19:11:EC:9A:F3:F8:00:88:B8:A7:F3:A6:66:32:26
Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33
Certificate issuer:       /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
Certificate serial:       019767726A1D56BCEF0B9F11F69AAF1BC507
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
Manifest number:          1221
Signing time:             Fri 13 Jun 2025 04:00:40 +0000
Manifest this update:     Fri 13 Jun 2025 04:00:40 +0000
Manifest next update:     Sat 14 Jun 2025 04:00:40 +0000
Files and hashes:         1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: Py/ggx7lrIlp/Oef+i/E98fcaMLLZdZg4SmxMunhMnU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 04:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:72:6a:1d:56:bc:ef:0b:9f:11:f6:9a:af:1b:c5:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
        Validity
            Not Before: Jun 13 04:00:40 2025 GMT
            Not After : Jun 14 04:00:40 2025 GMT
        Subject: CN=6c8fb78b381911ec9af3f80088b8a7f3a6663226
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:f5:d0:ad:d0:9c:34:3e:7d:82:5d:14:4e:05:
                    86:3c:b8:c0:b8:4d:46:18:b8:a1:1a:c8:34:62:03:
                    41:36:b2:56:7a:95:cd:20:7d:30:90:b0:13:1b:62:
                    1d:6d:71:8b:5e:ea:01:a8:52:78:5f:3f:3b:e7:2b:
                    d4:8a:7b:c0:c3:2d:93:cb:a8:1f:e5:33:b9:63:7b:
                    b9:79:e6:a2:49:b5:cc:1f:66:29:c0:a1:b0:7c:06:
                    ab:6d:6c:f3:ad:45:a6:c3:87:07:60:88:62:96:57:
                    08:13:5e:81:c7:e8:9f:3a:76:cc:bd:26:91:bb:c2:
                    18:6c:51:30:05:4e:ed:87:7a:c4:31:f8:b2:12:8e:
                    70:fa:f2:82:6f:f2:f3:8f:50:c4:88:65:f4:b7:6c:
                    57:78:d5:f5:54:7e:fe:6c:1a:fc:8d:d8:cc:a7:38:
                    3b:db:cd:00:55:b1:37:17:29:4a:a1:cf:05:90:49:
                    9d:1b:0f:40:f6:89:9b:fb:86:94:c1:09:99:fa:ae:
                    29:51:70:b6:02:31:44:fe:e6:16:9d:1c:cd:ca:51:
                    89:38:67:b6:71:24:8a:e7:8f:04:ce:e7:1f:e6:07:
                    1a:90:12:b7:19:21:39:21:73:63:63:09:e5:4a:bf:
                    c5:a1:41:ae:72:81:e6:fb:ac:99:e3:36:ee:e5:3f:
                    a5:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:8F:B7:8B:38:19:11:EC:9A:F3:F8:00:88:B8:A7:F3:A6:66:32:26
            X509v3 Authority Key Identifier:
                keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:0d:08:d3:f7:bd:81:31:2b:7f:65:cc:bd:0f:9e:e8:5c:9c:
         f8:a8:d8:f2:15:1a:b0:b7:b1:ca:29:10:b9:4a:0f:bc:07:65:
         5f:cb:ba:7e:ed:f8:6a:b4:85:ae:dc:14:b9:3b:b3:39:ec:4d:
         0c:20:44:c4:78:da:a7:9b:29:63:9a:66:ec:51:2a:c7:fc:3e:
         f4:47:bd:b7:74:75:74:d9:64:87:c7:93:88:72:0a:c3:be:fb:
         48:1a:1e:0c:62:3c:7e:54:44:25:70:9d:bb:be:0f:71:58:4a:
         7c:1e:b4:f8:13:84:4a:7a:de:62:00:fc:6a:cb:65:48:3f:ac:
         b2:c8:b2:2c:05:91:42:7f:48:73:87:7d:fe:e2:ad:49:76:3e:
         fc:52:09:13:ea:9c:b1:65:72:f2:ba:3c:e3:1d:62:e0:d0:67:
         c5:b0:02:c8:42:73:9b:b2:76:47:e7:7e:a6:0f:6a:93:79:53:
         87:5b:b1:f5:0a:5c:e9:ff:2f:7f:b4:fb:05:72:ef:f7:1e:7c:
         83:ba:c2:67:40:35:8e:35:75:35:e0:0d:4d:6d:c5:f4:27:64:
         87:8c:a8:ed:95:8e:a1:aa:b7:5a:5b:44:24:7f:98:57:60:f5:
         c2:ec:2f:0d:e8:32:64:68:66:fc:e3:76:85:16:13:c1:3e:b7:
         b9:68:7a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----