Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
File:                     yYDRnDv8xARxVndvAqNJiY5GuQ0.mft (raw, json)
Hash identifier:          peHyHG9x+qlCMrSC8PGIGK/vKC07258ou/LnVmmxNzs=
Subject key identifier:   B5:8B:38:7F:93:A1:A3:EC:DE:20:91:96:A1:A3:C0:A7:E7:51:B1:A3
Authority key identifier: C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
Certificate issuer:       /CN=c980d19c3bfcc4047156776f02a349898e46b90d
Certificate serial:       019750469342E34715DEA8DD0D45553451ED
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
Manifest number:          089B
Signing time:             Sun 08 Jun 2025 16:01:31 +0000
Manifest this update:     Sun 08 Jun 2025 16:01:31 +0000
Manifest next update:     Mon 09 Jun 2025 16:01:31 +0000
Files and hashes:         1: yYDRnDv8xARxVndvAqNJiY5GuQ0.crl (hash: yIaAJnFf2p/41p3q+mLJH/qg+/RPvwTmDfuofALa42Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 16:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:46:93:42:e3:47:15:de:a8:dd:0d:45:55:34:51:ed
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c980d19c3bfcc4047156776f02a349898e46b90d
        Validity
            Not Before: Jun  8 16:01:31 2025 GMT
            Not After : Jun  9 16:01:31 2025 GMT
        Subject: CN=b58b387f93a1a3ecde209196a1a3c0a7e751b1a3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:3a:4c:06:ed:52:2c:bf:e7:7c:59:c0:30:78:
                    50:b1:9a:1c:16:4f:40:bb:9d:d9:6c:47:5c:cf:00:
                    ec:c1:1c:d2:bd:60:0e:3a:3d:ff:2b:34:71:4f:39:
                    d8:a8:3d:ab:84:49:68:be:42:a1:89:cf:dc:98:76:
                    ed:a2:b6:c1:e3:86:18:55:83:4d:89:6a:b0:c4:86:
                    9d:97:0d:45:cb:0e:30:ba:db:12:50:47:6b:7e:a1:
                    8a:59:53:af:9e:8f:e5:19:5c:c0:ed:1b:86:07:1e:
                    5d:51:26:c3:ff:2d:8a:7c:98:ba:c0:87:ab:db:bd:
                    a2:30:81:04:5d:df:f3:ec:56:a9:92:12:be:b5:a7:
                    00:8c:cd:a7:fe:d2:85:2c:f7:5c:65:b8:7a:ca:72:
                    07:62:3c:a6:70:8e:e8:d4:54:f6:56:2e:75:ed:e3:
                    47:8a:e5:a8:d6:2d:c8:9a:78:06:af:f6:0f:f1:cc:
                    2d:1d:0b:4e:e3:13:95:be:bc:8a:5d:de:af:e7:bc:
                    ec:37:94:38:f0:9f:e7:fb:b8:a1:a2:16:95:cd:cd:
                    5c:67:61:db:21:e4:b3:82:c3:c5:ba:54:96:c6:2b:
                    b4:6f:fc:41:27:cb:06:ef:a2:34:0d:21:10:6b:0b:
                    c5:27:ce:a2:d9:a8:dd:ea:8a:6e:6e:8c:49:78:69:
                    da:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:8B:38:7F:93:A1:A3:EC:DE:20:91:96:A1:A3:C0:A7:E7:51:B1:A3
            X509v3 Authority Key Identifier:
                keyid:C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:f1:b4:df:8f:8f:fa:78:66:8d:f9:cb:2e:d8:e7:20:26:c5:
         02:f3:af:c9:03:5f:31:e3:63:9f:ab:99:aa:00:68:7f:1b:4a:
         85:c2:d2:bd:fc:3c:54:d4:ae:79:92:7e:d8:d7:83:ae:fc:f0:
         30:d9:6e:86:d1:de:a2:d2:36:8f:4c:c6:4d:e9:99:43:66:1f:
         cf:ac:b1:ac:e1:4b:89:1d:4a:1c:79:9b:21:8a:3b:3d:0b:f6:
         ee:04:28:88:20:90:28:7d:5a:88:93:d9:db:cc:38:e0:24:b8:
         94:3d:e1:25:4a:3a:0d:52:a2:f3:ae:6c:49:80:24:aa:ab:ee:
         91:ec:d2:c9:03:83:07:83:62:89:c7:65:cb:6c:61:22:d1:ab:
         a5:42:ee:64:b7:ce:8d:ba:87:b4:c7:ef:db:93:82:11:8b:82:
         43:74:41:30:e9:7c:af:c2:e9:16:87:ad:a0:bf:a9:a0:ad:2a:
         31:96:ee:e7:50:16:2c:ce:42:8d:8d:b1:4d:e8:8d:8d:13:66:
         72:70:5d:16:2b:7d:5c:96:5f:6a:fa:26:ff:46:3e:1e:54:4f:
         d1:80:3a:af:1d:ff:dd:de:04:16:19:b8:20:9f:2a:54:fd:e3:
         db:25:87:62:1b:09:a4:b4:c3:6d:3d:89:b5:14:e9:30:08:08:
         01:0f:1f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----