Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
File:                     AOezY1s9V4VgNwpYMDz81c2SkQU.mft (raw, json)
Hash identifier:          PjurEiEc4YKmQZTyqgh14bo0Fpsw1WfizUiI2Qa8IBk=
Subject key identifier:   75:68:16:42:43:FB:06:32:F6:72:75:F5:DB:41:54:25:D1:A7:0B:FF
Authority key identifier: 00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05
Certificate issuer:       /CN=00e7b3635b3d578560370a58303cfcd5cd929105
Certificate serial:       01974E57E0C8796E628E6E07AE8A23BDB6C9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
Manifest number:          0C91
Signing time:             Sun 08 Jun 2025 07:01:11 +0000
Manifest this update:     Sun 08 Jun 2025 07:01:11 +0000
Manifest next update:     Mon 09 Jun 2025 07:01:11 +0000
Files and hashes:         1: AOezY1s9V4VgNwpYMDz81c2SkQU.crl (hash: WdolYT4ne3Yan6j1FcbjcZuB3fYhLKFHX6HMzQKB7+I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:57:e0:c8:79:6e:62:8e:6e:07:ae:8a:23:bd:b6:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00e7b3635b3d578560370a58303cfcd5cd929105
        Validity
            Not Before: Jun  8 07:01:11 2025 GMT
            Not After : Jun  9 07:01:11 2025 GMT
        Subject: CN=7568164243fb0632f67275f5db415425d1a70bff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:f5:81:d8:fd:93:41:62:92:75:34:b6:4c:94:
                    3a:20:66:ad:6c:5f:90:25:f1:b5:8b:3a:9b:79:64:
                    0f:6a:41:3e:bc:99:08:3b:a8:da:6b:77:34:ad:cc:
                    fa:8d:49:f7:47:4b:92:67:6a:cf:a5:59:5f:50:0d:
                    5b:17:0d:61:74:0d:e5:84:84:ed:7c:3f:82:6f:0d:
                    43:d2:29:0b:2c:73:1e:18:b3:98:20:5c:d6:c1:24:
                    5d:df:99:96:d9:77:ea:e3:92:08:f1:0b:a5:3b:d1:
                    e3:c9:9c:9a:68:68:ba:25:c5:fc:2e:67:29:f0:ff:
                    a9:da:c7:e8:66:60:31:5a:b7:ae:1d:df:72:1c:42:
                    7f:88:61:30:1e:9d:25:61:46:44:5d:e8:c5:2e:cf:
                    00:20:73:02:d1:4a:1f:4b:35:d2:d7:1e:74:91:c1:
                    75:97:7e:61:7d:c2:a2:05:6b:95:b6:f4:b9:87:09:
                    98:46:4b:b0:9c:e2:4b:bd:d6:36:3d:e5:f1:df:bd:
                    77:fc:4f:08:47:f7:20:20:8b:16:cd:2b:bb:ee:b9:
                    60:16:4e:dd:cd:fc:c5:1a:90:2a:f6:f7:bd:6d:d1:
                    62:4d:c0:64:00:f4:a2:79:ef:ce:b1:8c:f3:c8:b2:
                    da:3a:ce:54:8f:9b:d2:14:d1:fa:c7:e5:a5:a1:d3:
                    d7:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:68:16:42:43:FB:06:32:F6:72:75:F5:DB:41:54:25:D1:A7:0B:FF
            X509v3 Authority Key Identifier:
                keyid:00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:5c:6f:04:d7:23:ab:f0:6b:5d:2e:2c:7f:e0:39:43:a1:76:
         70:36:bd:11:87:a4:8b:58:41:b7:8e:8e:d0:35:92:69:00:7a:
         81:e5:ef:61:cf:cc:02:a6:ee:af:c0:d7:7d:f7:36:08:f0:95:
         2c:3e:c1:22:84:1d:69:44:10:c2:60:d4:55:d6:5b:f3:10:b3:
         d7:aa:44:21:2c:12:5f:71:51:45:0b:48:78:dc:5a:5a:92:21:
         f1:04:93:dd:82:db:be:ba:ee:1f:9e:e8:77:04:fe:3c:ae:8c:
         b6:fb:b3:a8:0a:a5:af:5c:41:4c:44:09:b7:0b:59:36:3b:5f:
         c6:43:f7:0b:97:4d:76:44:e3:46:a8:c6:b9:f2:88:e0:73:e4:
         d1:8f:59:79:4e:92:c7:6d:e4:97:5d:f9:f8:00:3c:cd:f2:6e:
         94:4b:ca:a4:97:38:ee:ef:11:b5:79:bc:4c:10:71:1b:f8:fb:
         26:b7:40:10:26:fe:c1:5a:c6:de:d1:3f:1e:81:75:a1:68:d4:
         5d:5e:b4:ef:3c:93:2e:79:4f:00:53:58:6c:cd:d4:64:f1:ce:
         04:d5:b3:21:b1:2a:a3:7a:74:bb:91:55:6a:9a:c0:04:38:06:
         f1:e2:62:d1:85:4e:fd:5a:67:dd:6d:64:b0:6a:a9:e1:63:0f:
         8f:1e:fc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----