Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft
File:                     V3l3onVhz5BYpS5GDJSZSAVb3T0.mft (raw, json)
Hash identifier:          7WZZTAMKDWt2jqq7bOysIBkhvSSE2x8Q9N+d4vytjnU=
Subject key identifier:   AB:B9:BF:4B:FE:84:EE:66:C4:E9:89:40:9A:29:03:16:F9:EF:51:B6
Authority key identifier: 57:79:77:A2:75:61:CF:90:58:A5:2E:46:0C:94:99:48:05:5B:DD:3D
Certificate issuer:       /CN=577977a27561cf9058a52e460c949948055bdd3d
Certificate serial:       01974A7AEBC10C46696A3DEDF23B0F67C65D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/V3l3onVhz5BYpS5GDJSZSAVb3T0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft
Manifest number:          078B
Signing time:             Sat 07 Jun 2025 13:00:59 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:59 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:59 +0000
Files and hashes:         1: V3l3onVhz5BYpS5GDJSZSAVb3T0.crl (hash: 09rbPmpzafo2ifbTPJuLGpFja4OIU/02LQiHhI9OXbE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/V3l3onVhz5BYpS5GDJSZSAVb3T0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:eb:c1:0c:46:69:6a:3d:ed:f2:3b:0f:67:c6:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=577977a27561cf9058a52e460c949948055bdd3d
        Validity
            Not Before: Jun  7 13:00:59 2025 GMT
            Not After : Jun  8 13:00:59 2025 GMT
        Subject: CN=abb9bf4bfe84ee66c4e989409a290316f9ef51b6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:85:f3:10:15:2f:7c:8e:42:30:b2:0c:0b:b4:
                    68:7e:ec:f4:8b:1d:a5:f7:2e:ad:ab:97:c9:a7:d9:
                    91:4f:6b:d6:68:ce:b4:79:53:e9:78:40:7c:75:45:
                    c9:12:13:eb:00:d1:53:33:3a:9a:60:8d:19:cf:24:
                    da:06:03:3d:6b:21:02:f3:93:1b:3d:40:3b:5a:3e:
                    06:10:07:ef:fa:9a:d6:85:26:98:1e:93:9a:02:48:
                    91:5a:3e:e9:ce:8f:ab:45:a2:da:a3:3e:a9:b5:0d:
                    cf:81:82:e5:bf:2e:a9:a3:b2:3c:1d:22:63:f7:42:
                    8f:75:45:dd:2c:3b:28:76:88:c9:61:ee:1d:e5:02:
                    05:ac:37:f4:e0:77:36:a0:0d:d5:f9:99:fb:64:ef:
                    6c:bb:9a:a6:a7:57:4e:38:a6:dd:98:27:d3:5a:4a:
                    d5:5f:1a:3e:ea:0e:f5:ca:a5:d3:bb:b9:73:74:da:
                    5b:64:28:07:53:ee:68:dd:a1:7b:bd:a5:ff:59:fd:
                    c9:7b:d3:c3:36:cc:5e:8f:56:68:fa:a0:d6:69:72:
                    54:75:07:17:59:0c:fa:8c:60:99:e4:d8:de:a1:ad:
                    06:b7:e4:0e:00:71:53:11:f4:cc:d6:b6:25:3a:8d:
                    72:49:64:f3:12:82:4f:d3:e7:2b:bd:41:1d:85:5e:
                    48:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:B9:BF:4B:FE:84:EE:66:C4:E9:89:40:9A:29:03:16:F9:EF:51:B6
            X509v3 Authority Key Identifier:
                keyid:57:79:77:A2:75:61:CF:90:58:A5:2E:46:0C:94:99:48:05:5B:DD:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3l3onVhz5BYpS5GDJSZSAVb3T0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:0f:32:e7:68:25:b2:4a:0f:b0:e1:1a:8c:cd:55:b8:dd:2d:
         cf:b3:0b:23:f9:d2:c9:48:ae:e0:41:69:32:98:f3:dc:84:f6:
         5c:35:f5:dd:8c:b3:e1:33:d1:35:86:80:1d:d7:37:bb:e0:c7:
         61:8f:dc:5f:ab:d0:9f:cb:c9:d1:a8:35:53:40:be:75:dd:54:
         da:c2:be:bb:c7:15:ce:70:1c:74:49:14:19:de:df:80:25:54:
         86:b7:34:ea:eb:cc:5c:11:b1:30:fd:6a:42:ed:1d:5c:a7:b1:
         dc:3f:26:51:7d:1a:6e:27:d8:05:69:37:d5:6f:67:ca:a8:e7:
         6c:35:02:86:4e:f0:ba:ab:35:62:07:22:a3:88:a2:1f:aa:26:
         17:c7:9e:ae:a7:c9:3a:a9:9c:54:19:cd:e1:51:85:5b:56:4e:
         79:4e:7e:1e:18:3e:b0:25:da:7c:bf:4d:03:ca:37:2e:da:b8:
         8b:89:c2:b7:02:75:58:a5:44:80:b0:91:9e:95:d2:59:4b:ee:
         35:7d:17:e5:35:e6:d5:d4:89:8d:1b:e7:6e:21:97:54:31:07:
         c3:2a:63:6c:6c:21:ad:24:72:ad:ba:77:53:09:7f:06:94:73:
         86:02:9b:76:73:ca:e0:99:dc:bc:fb:3e:b5:a2:d1:60:34:1d:
         a2:4d:db:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----