Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
File:                     d6TN722YqQcT__52cRNId5pjKgo.mft (raw, json)
Hash identifier:          nK8WO7wgSDXRlWSgHnBYAtTa09cWCeX8SgFSvWDaSjw=
Subject key identifier:   06:45:32:F4:93:C1:14:C0:05:07:3E:EF:E5:B3:94:D9:73:89:C1:AE
Authority key identifier: 77:A4:CD:EF:6D:98:A9:07:13:FF:FE:76:71:13:48:77:9A:63:2A:0A
Certificate issuer:       /CN=77a4cdef6d98a90713fffe76711348779a632a0a
Certificate serial:       019746D4F02272794D2C4620EEA1A840AF5F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
Manifest number:          1577
Signing time:             Fri 06 Jun 2025 20:00:49 +0000
Manifest this update:     Fri 06 Jun 2025 20:00:49 +0000
Manifest next update:     Sat 07 Jun 2025 20:00:49 +0000
Files and hashes:         1: d6TN722YqQcT__52cRNId5pjKgo.crl (hash: dU/iZiNyqPBidMANDAbEoNGm+Lp0ttjrzlPgfB2z13o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:d4:f0:22:72:79:4d:2c:46:20:ee:a1:a8:40:af:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77a4cdef6d98a90713fffe76711348779a632a0a
        Validity
            Not Before: Jun  6 20:00:49 2025 GMT
            Not After : Jun  7 20:00:49 2025 GMT
        Subject: CN=064532f493c114c005073eefe5b394d97389c1ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:c2:f9:33:8e:9c:a7:93:d3:14:e1:d8:4c:c1:
                    f9:0f:23:c7:40:13:10:f4:22:69:4f:61:a5:26:e4:
                    8f:25:74:bf:0e:fc:86:f3:4b:3a:2e:1e:81:cc:20:
                    ea:de:e5:c3:6e:71:79:6e:26:13:28:7c:2f:b6:76:
                    a4:a6:84:c3:3d:f9:3a:31:5d:8d:5a:d0:46:df:12:
                    78:1b:12:97:2f:80:a9:7e:c4:82:4d:43:b1:6f:b5:
                    a7:9a:4f:a7:5b:e8:31:c7:ef:7b:0a:ee:5d:5d:5b:
                    10:8b:a2:ee:d9:ec:90:9c:0a:14:54:2f:aa:2e:fd:
                    21:98:90:73:6d:85:f9:b1:79:42:42:71:2c:b0:8f:
                    7c:c4:b9:dd:14:88:ab:4c:88:a8:02:37:07:c2:d7:
                    80:3c:0b:1b:41:38:e1:73:2f:aa:de:48:f8:c7:ae:
                    29:3c:67:54:ca:16:c0:a4:dd:25:9d:6c:20:fb:ec:
                    f1:bf:04:b0:7e:6e:6a:42:1f:72:a3:e5:53:a4:d2:
                    5c:6e:28:6a:bf:9c:42:3a:4a:34:cd:45:df:4e:2c:
                    36:fc:2f:5d:4e:fe:5d:ed:7e:21:16:d7:03:1a:da:
                    02:c6:a9:19:42:ba:62:29:f4:2c:14:fa:c5:13:50:
                    cb:f1:eb:3a:61:fa:d4:3c:38:5e:8b:e3:17:b3:0d:
                    63:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:45:32:F4:93:C1:14:C0:05:07:3E:EF:E5:B3:94:D9:73:89:C1:AE
            X509v3 Authority Key Identifier:
                keyid:77:A4:CD:EF:6D:98:A9:07:13:FF:FE:76:71:13:48:77:9A:63:2A:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:b2:4e:b7:2f:09:5f:cc:46:f9:f5:66:2a:3b:c8:dc:b8:dc:
         1b:07:4b:a0:22:69:88:a3:79:92:54:f4:09:e1:d3:13:5b:16:
         d5:93:cb:ee:df:84:a8:5f:e6:58:4c:7a:81:99:0a:45:5a:66:
         ea:87:2f:24:0b:30:71:d7:97:bc:7f:c5:63:ef:a2:0f:8b:5b:
         d7:49:a5:69:bd:42:1e:7c:a2:73:2e:82:6e:e6:37:93:0a:a9:
         55:3a:26:51:4c:ba:e0:a7:16:df:b3:1b:96:45:01:ab:af:2d:
         ae:df:23:e8:d2:f3:d8:b1:30:d5:67:d9:6f:ed:57:68:fe:3a:
         02:7d:79:c7:43:0b:20:fc:bd:b2:da:0a:09:9c:71:94:7b:b8:
         c6:f1:09:9e:fa:93:83:9b:6d:62:a4:60:26:30:fe:56:d1:02:
         3f:90:33:e7:13:e2:36:e1:32:99:c9:ad:7f:9e:82:c3:e8:97:
         17:96:38:c2:ba:59:3b:bd:33:bf:bd:7b:03:d4:00:8e:5b:5f:
         39:64:cb:f7:a1:84:10:7b:e7:f8:32:04:8c:fe:44:f9:03:e1:
         d5:f3:9d:9e:23:ff:3b:5e:72:43:c1:05:1d:2a:13:d8:22:df:
         de:3d:d2:27:27:d5:8d:af:a6:32:4c:02:5f:03:de:7d:43:26:
         13:21:7f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----