Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft
File:                     yHfSSx1xwCFHafEZ33KY_wz4l7A.mft (raw, json)
Hash identifier:          BJ+nwwzLy+6aJYxI2hS9lr20aI0TMEtu+3P/bFvEgYo=
Subject key identifier:   07:74:16:97:DF:38:26:6C:3D:6C:48:28:92:1E:0E:BC:82:F3:66:11
Authority key identifier: C8:77:D2:4B:1D:71:C0:21:47:69:F1:19:DF:72:98:FF:0C:F8:97:B0
Certificate issuer:       /CN=c877d24b1d71c0214769f119df7298ff0cf897b0
Certificate serial:       019749683F1E1B842DA3D717E6BC1C8A7D2D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft
Manifest number:          09E6
Signing time:             Sat 07 Jun 2025 08:00:57 +0000
Manifest this update:     Sat 07 Jun 2025 08:00:57 +0000
Manifest next update:     Sun 08 Jun 2025 08:00:57 +0000
Files and hashes:         1: yHfSSx1xwCFHafEZ33KY_wz4l7A.crl (hash: dIRkeApg4aeEwfpcr2OYvuGLXEf1Dx4LtpAXYOhGZbg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:49:68:3f:1e:1b:84:2d:a3:d7:17:e6:bc:1c:8a:7d:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c877d24b1d71c0214769f119df7298ff0cf897b0
        Validity
            Not Before: Jun  7 08:00:57 2025 GMT
            Not After : Jun  8 08:00:57 2025 GMT
        Subject: CN=07741697df38266c3d6c4828921e0ebc82f36611
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:67:59:28:5a:60:c1:55:13:7d:4e:23:94:77:
                    47:db:64:a4:25:d2:15:dd:90:80:2a:7f:d1:07:e3:
                    1c:2d:b3:34:03:7a:60:f9:07:2a:4f:2d:2c:14:d1:
                    22:9a:7b:d7:82:6b:30:8f:fe:26:2f:cd:3f:a8:45:
                    e6:77:56:53:de:08:95:f1:71:c3:7a:e0:3b:3d:f0:
                    64:10:6d:f9:a4:26:22:50:9c:38:08:eb:53:60:0c:
                    0d:78:93:9c:5a:63:1d:93:ec:93:25:ef:20:ab:67:
                    18:99:9d:b4:3f:40:51:b9:d6:13:3e:28:6a:42:f8:
                    13:25:87:ce:74:22:a4:2c:78:b5:4b:2e:d8:da:26:
                    1b:05:ba:33:d5:29:70:41:00:c6:1a:06:66:7c:7a:
                    48:6a:c3:64:06:b8:8e:5e:99:c5:01:e5:02:84:6d:
                    45:dd:6b:24:3b:3d:79:70:d9:1f:4a:28:4b:32:13:
                    2b:16:95:a2:53:34:5a:91:77:86:89:9e:8f:de:31:
                    1d:37:f3:2b:0f:56:4c:a3:bb:b1:34:c4:b1:9c:32:
                    f2:1d:36:f3:95:63:db:b6:3a:59:b7:00:29:05:44:
                    1a:6b:44:ab:08:49:fa:72:e3:ef:e6:07:24:d1:51:
                    5a:9a:41:5f:e4:96:d5:d0:9b:bf:d2:8f:45:d6:2a:
                    6f:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:74:16:97:DF:38:26:6C:3D:6C:48:28:92:1E:0E:BC:82:F3:66:11
            X509v3 Authority Key Identifier:
                keyid:C8:77:D2:4B:1D:71:C0:21:47:69:F1:19:DF:72:98:FF:0C:F8:97:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:62:62:ab:73:0a:dc:2f:1d:92:c9:2b:a7:7a:c0:0c:1a:a1:
         ec:79:6f:1a:8b:7c:1a:b8:ac:93:f8:e9:a2:04:08:47:87:2e:
         20:ca:62:e6:70:a2:02:35:d3:8e:61:58:e0:75:74:5b:b3:9c:
         8b:83:b2:10:43:45:5f:b4:be:9b:48:c8:5e:ea:f8:74:eb:5a:
         88:37:73:34:91:02:9c:17:17:8c:88:af:2f:ea:e8:f1:ed:26:
         ed:e6:62:14:7b:b6:4d:8b:87:4a:c8:5a:74:7f:02:aa:b8:23:
         4b:7a:95:36:bf:82:1c:b7:75:39:e2:c6:e4:7c:b2:a6:3f:cc:
         6d:01:8b:11:2c:35:1c:32:7c:9d:0d:bd:81:fc:7d:08:77:4d:
         6f:d6:a1:c1:60:22:b9:3f:7e:38:d0:67:e3:01:b0:9f:ab:7d:
         f5:bb:e6:88:6a:e9:1a:f8:bc:a1:c7:be:05:08:51:9d:27:63:
         45:c6:f3:8d:55:a0:01:59:d6:c9:74:fe:48:73:53:53:6a:b8:
         10:7e:e7:d3:b0:f9:ff:63:8c:30:0e:df:26:ce:71:82:b3:1f:
         47:70:cf:54:ff:d2:3f:b9:42:72:ab:d2:72:a2:35:3e:69:0b:
         45:06:98:c4:74:ce:a4:9f:a3:29:8e:1a:71:c6:73:31:02:94:
         11:7a:ee:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----