Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
File:                     biYdnc3dmGfliSrRpNII32lTEXc.mft (raw, json)
Hash identifier:          pf3HrbRJW7JaacitiLfPlwLuCbBNzS8Pi11YustP0To=
Subject key identifier:   7A:C9:F3:98:BD:7F:47:68:19:15:52:43:96:8E:E3:29:7D:4A:BD:0E
Authority key identifier: 6E:26:1D:9D:CD:DD:98:67:E5:89:2A:D1:A4:D2:08:DF:69:53:11:77
Certificate issuer:       /CN=6e261d9dcddd9867e5892ad1a4d208df69531177
Certificate serial:       0197488C7EA8D1C160E4232DA8E0359C9806
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
Manifest number:          0DD8
Signing time:             Sat 07 Jun 2025 04:00:56 +0000
Manifest this update:     Sat 07 Jun 2025 04:00:56 +0000
Manifest next update:     Sun 08 Jun 2025 04:00:56 +0000
Files and hashes:         1: biYdnc3dmGfliSrRpNII32lTEXc.crl (hash: bI3ITmo0Gdhm0fZYN0rIiW5YQutpqTlUsNFK435UsKg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:7e:a8:d1:c1:60:e4:23:2d:a8:e0:35:9c:98:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e261d9dcddd9867e5892ad1a4d208df69531177
        Validity
            Not Before: Jun  7 04:00:56 2025 GMT
            Not After : Jun  8 04:00:56 2025 GMT
        Subject: CN=7ac9f398bd7f476819155243968ee3297d4abd0e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:dc:0f:76:30:95:f4:a6:1b:4e:5c:57:87:8b:
                    eb:30:ee:2f:0a:14:ae:30:95:ca:ed:6e:d7:d9:30:
                    56:f7:96:b3:4b:ed:f7:ed:9d:5e:47:19:04:47:16:
                    23:36:a6:5a:66:d2:d9:73:71:b9:93:2d:fb:4f:d0:
                    35:37:aa:8c:7c:e4:a2:b3:10:7f:14:f2:5d:26:ea:
                    5d:ec:f4:99:c8:72:4b:20:37:7a:ce:3e:e7:e7:b9:
                    17:2b:c2:f5:c2:d4:66:09:3a:af:a3:f4:98:ad:39:
                    c9:ef:aa:67:53:40:f4:ce:30:7c:c8:1e:64:79:f2:
                    c4:9e:7e:20:15:bd:9d:16:67:c5:e8:88:b6:5c:48:
                    12:63:e7:3a:98:db:53:36:74:c3:b3:dd:07:b8:03:
                    12:4c:a5:89:c6:3a:b6:67:30:de:d4:f9:34:4d:5c:
                    7c:0d:af:d9:98:94:d2:94:3b:f1:55:a5:22:04:de:
                    a1:6a:93:5f:b7:b4:9e:8b:35:fb:ad:01:47:b5:01:
                    46:e6:2b:9a:76:61:bc:8b:86:cb:60:49:e6:d7:bd:
                    76:4f:58:e7:d2:a1:e8:0d:62:53:0c:df:77:16:f1:
                    e5:19:23:65:78:c5:87:a1:ee:d8:75:76:0d:d0:d0:
                    43:d0:a2:b3:ae:3e:41:74:99:e3:9d:00:e1:1b:9a:
                    df:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:C9:F3:98:BD:7F:47:68:19:15:52:43:96:8E:E3:29:7D:4A:BD:0E
            X509v3 Authority Key Identifier:
                keyid:6E:26:1D:9D:CD:DD:98:67:E5:89:2A:D1:A4:D2:08:DF:69:53:11:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d0:a0:3a:8c:fa:fb:59:3a:88:98:b7:e2:b4:c9:11:06:f6:fd:
         5e:50:8f:01:09:ed:d9:1f:73:64:b5:84:7c:57:dd:6b:96:fa:
         e4:78:3f:c0:e2:41:d5:e8:dd:62:30:b8:46:33:0a:73:89:d4:
         8c:f9:8f:4a:3e:65:d6:5c:5f:5f:47:d6:9e:a4:c8:ad:dc:53:
         ab:8b:e3:18:08:e6:e5:2c:70:e7:84:41:6d:78:e8:84:e5:0a:
         62:e8:21:d6:15:17:96:25:b6:60:01:cf:fd:c5:b3:c7:b4:d3:
         8b:1f:d5:15:d3:83:94:a4:99:54:9a:cb:dd:2f:6e:86:32:ff:
         cd:56:ab:8c:2d:bc:74:7c:60:c0:b3:a5:ec:29:48:c7:b0:a3:
         42:ed:3e:62:83:da:24:a2:6f:39:27:1b:5d:5e:c2:c2:e6:d6:
         98:f2:e0:52:7b:1b:e2:36:b3:b5:1a:f3:13:e3:3b:1f:ab:76:
         f1:5a:b6:70:40:77:a0:e8:6e:c6:cd:24:90:ee:98:9b:58:ff:
         f3:06:cb:1f:29:4c:95:a7:9d:e4:27:a9:9e:f6:c1:0f:52:3a:
         35:68:35:6f:10:58:f2:5a:a4:d8:4b:2b:0f:05:eb:dc:74:60:
         30:f6:74:18:00:0d:c7:79:05:19:59:12:d5:cc:5b:d4:5c:f1:
         ff:f0:32:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----