Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
File:                     29B3gCIiIDwWzo6v1Z8LCsHb58M.mft (raw, json)
Hash identifier:          T8S6RqQOwsytSGMHBUCEbs+V0YKhQiSVID3L/vtuO5o=
Subject key identifier:   1C:A9:D7:E4:96:5D:6A:9C:25:53:E3:06:A3:C3:F1:7A:39:DC:B3:3A
Authority key identifier: DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3
Certificate issuer:       /CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3
Certificate serial:       01974E583B0D318FBA1138769CCCEBECD5F4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
Manifest number:          0E34
Signing time:             Sun 08 Jun 2025 07:01:34 +0000
Manifest this update:     Sun 08 Jun 2025 07:01:34 +0000
Manifest next update:     Mon 09 Jun 2025 07:01:34 +0000
Files and hashes:         1: 29B3gCIiIDwWzo6v1Z8LCsHb58M.crl (hash: XkD8o0Alx99bsRpJoSqIB5z1+DXlGOjcy4su7DnqqrA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:58:3b:0d:31:8f:ba:11:38:76:9c:cc:eb:ec:d5:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3
        Validity
            Not Before: Jun  8 07:01:34 2025 GMT
            Not After : Jun  9 07:01:34 2025 GMT
        Subject: CN=1ca9d7e4965d6a9c2553e306a3c3f17a39dcb33a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:3f:87:23:09:a8:4d:54:8a:9b:08:50:5a:80:
                    ef:82:97:46:ea:ab:1d:c6:1f:26:41:44:2f:43:fd:
                    23:aa:57:a4:18:5e:92:45:b6:44:fd:54:1e:a2:5a:
                    f0:22:d9:1a:e0:cd:0d:c0:57:8a:b7:d8:e6:c6:c2:
                    37:22:38:c7:28:b6:82:69:d2:dd:5a:65:46:20:e2:
                    35:0e:96:4d:ba:a4:dd:0b:5a:92:5e:1a:21:33:78:
                    ae:cc:6d:55:d0:6a:0a:d1:97:04:00:2b:2b:27:25:
                    12:45:06:6c:5c:8e:d9:27:35:9f:6b:f4:60:0f:c0:
                    d2:e1:ae:2e:1d:11:16:33:69:81:43:6c:ea:77:18:
                    35:65:c1:4d:90:ca:74:69:3c:91:46:22:4a:fe:fc:
                    5d:8e:87:ef:ff:d7:f9:cc:92:ef:af:a5:cb:64:c4:
                    60:7f:9c:87:eb:de:d3:44:2c:09:3e:3f:2a:b8:35:
                    87:bc:05:07:0a:e5:38:0a:5f:e1:e1:91:30:32:49:
                    ea:5e:29:69:86:c0:44:ad:8b:f2:76:f7:82:6d:68:
                    b7:7e:d4:32:b0:f1:ab:96:df:c8:d1:08:52:a1:15:
                    4c:07:c1:87:26:a4:77:d5:33:81:06:3f:8b:29:5e:
                    77:75:68:db:4c:15:9a:05:18:32:57:14:dc:c8:14:
                    4f:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:A9:D7:E4:96:5D:6A:9C:25:53:E3:06:A3:C3:F1:7A:39:DC:B3:3A
            X509v3 Authority Key Identifier:
                keyid:DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:dd:2d:04:4b:ab:23:31:d1:47:e3:7a:58:c3:aa:4d:b7:8b:
         08:2a:73:f2:67:62:53:2f:12:bc:25:c0:cf:31:1c:2c:36:b5:
         a2:be:13:f0:29:51:35:4c:a8:37:f4:02:a3:10:8a:3a:d4:c5:
         7c:97:d8:46:57:bf:fe:a9:6d:b0:fc:31:5e:f2:4a:c4:38:bb:
         e6:bd:b4:f0:87:96:cf:6d:10:c7:0e:72:a5:25:b6:15:b4:83:
         c7:7a:09:d2:7a:e1:78:cc:63:90:1a:ea:b6:14:fd:9d:bd:4f:
         95:ac:de:a1:db:cb:0b:20:3a:e7:c5:d7:df:4a:45:d1:77:09:
         7a:8c:43:f2:fe:e3:ee:e3:bd:f6:d5:e6:a1:e6:7d:f6:a2:12:
         a6:03:f1:84:8a:e8:56:ef:d1:ce:b4:4d:08:11:d3:9a:f2:a8:
         f3:67:51:4d:0c:6a:6a:e8:eb:71:29:ab:a7:e9:67:30:d5:f8:
         e0:ed:a8:b8:b0:a9:e2:b2:5b:8d:8c:94:2a:c3:25:59:35:77:
         2d:9a:75:28:d6:1c:63:2d:39:32:3f:bd:97:26:3c:61:55:6b:
         59:e4:2c:03:8e:00:60:0d:63:e6:e0:b8:77:ee:d8:a9:76:1b:
         a9:f7:6f:ec:89:ce:79:90:de:e5:e2:65:a6:75:cb:66:2f:9e:
         78:2f:eb:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----