Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File:                     ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier:          037VvER+eK7LYJ6bK0lGb4KB48cRXLFoobvIS81/ARY=
Subject key identifier:   2A:F7:DE:12:A2:C5:4F:51:08:CF:9C:30:EB:8E:BD:5E:95:BC:49:AD
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer:       /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial:       01976B1806CE96897285B123CE972A0ACD72
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number:          0110
Signing time:             Fri 13 Jun 2025 21:00:26 +0000
Manifest this update:     Fri 13 Jun 2025 21:00:26 +0000
Manifest next update:     Sat 14 Jun 2025 21:00:26 +0000
Files and hashes:         1: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: KkDjwp8YBsAbRTQqtCuqkZkzBt9oFVreSICFvTpSg6A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:18:06:ce:96:89:72:85:b1:23:ce:97:2a:0a:cd:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
        Validity
            Not Before: Jun 13 21:00:26 2025 GMT
            Not After : Jun 14 21:00:26 2025 GMT
        Subject: CN=2af7de12a2c54f5108cf9c30eb8ebd5e95bc49ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:d6:47:5e:78:b3:99:d7:15:23:36:0a:09:9d:
                    6c:35:34:50:26:bc:dd:a4:d9:69:d0:b8:3c:fa:dd:
                    69:3e:c8:65:e7:94:22:54:72:03:f7:74:74:35:6a:
                    98:0e:15:90:04:47:fd:a3:10:f2:f6:45:b7:59:f7:
                    01:20:5a:15:d3:50:2b:b3:7a:fd:bf:21:ba:84:11:
                    5d:2c:06:9c:2d:bf:c4:cb:d5:aa:10:dc:19:5c:0b:
                    cb:01:ce:42:d2:84:ae:7d:c0:65:82:21:53:29:09:
                    32:24:3f:c0:10:77:80:1f:2e:aa:03:ab:1e:56:ed:
                    4c:30:7e:61:6d:f8:3f:e0:2f:dc:21:1a:bc:b3:8e:
                    f0:11:17:6e:80:a6:4d:c9:4c:16:5c:bf:a3:3a:41:
                    7b:47:cc:f2:2a:d5:fc:0c:0f:2c:7a:4c:13:06:e6:
                    cb:be:23:52:c7:5e:e2:c4:73:f7:13:43:2f:e2:be:
                    71:79:c8:49:3e:4d:91:40:e0:0e:32:d5:f2:26:92:
                    ab:39:7c:24:aa:e5:ff:9c:d4:f2:14:5e:3c:6b:0f:
                    72:73:34:39:8e:d4:be:6d:c4:1f:2d:5e:40:d1:eb:
                    3b:43:d4:69:45:6b:e0:48:33:8d:09:5c:04:fb:6b:
                    58:af:44:45:d5:28:65:3c:d2:57:bb:25:78:13:94:
                    ac:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:F7:DE:12:A2:C5:4F:51:08:CF:9C:30:EB:8E:BD:5E:95:BC:49:AD
            X509v3 Authority Key Identifier:
                keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:54:86:1f:4c:55:6c:01:a2:1e:4c:17:18:e7:94:bd:16:73:
         8c:4a:ee:ba:9e:40:04:65:14:8f:f2:f4:3c:86:63:57:bd:9c:
         59:1b:6d:11:6d:31:ad:15:62:bd:d7:22:79:28:73:77:a8:80:
         4e:f1:4e:c0:9e:24:e6:a6:54:9a:ae:f6:fd:64:83:87:3f:9a:
         3c:58:4a:d9:f0:b2:8e:24:09:6d:20:54:f7:0e:9b:07:3c:a3:
         3c:ca:23:dd:26:27:a1:af:b3:51:a7:b6:5c:4c:d8:30:44:7e:
         10:fa:f4:82:1c:91:0e:62:92:eb:eb:6c:81:ab:d9:7b:32:94:
         19:55:e1:37:d8:76:d0:5e:ab:9e:84:7e:29:d8:59:b6:95:fb:
         40:b5:41:de:aa:59:73:d9:7d:4a:b6:91:61:98:5a:52:40:62:
         f7:5b:e8:39:88:78:13:d0:2e:2b:e4:09:6a:5d:24:fc:63:dd:
         2f:5d:48:34:43:54:c9:08:0e:be:2f:8b:6d:e9:e1:fa:9d:68:
         dd:14:42:1a:28:6e:3f:78:3b:4e:33:24:15:85:2a:97:90:73:
         68:44:cd:4d:7d:d5:f1:74:ba:d4:24:d6:99:b5:0a:c9:76:49:
         12:77:45:1f:2c:c7:37:35:fb:7c:9a:b2:10:b4:c0:a1:e9:40:
         6b:c1:de:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----