Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft
File:                     Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft (raw, json)
Hash identifier:          5rTflrDcdBzVSNw4CzznSxj4asPP+Ej695xGKn+RvpA=
Subject key identifier:   F6:DF:19:D8:ED:8C:DD:6B:E8:9E:3E:B1:17:BD:73:3F:97:D1:6D:C1
Authority key identifier: 67:70:C9:B9:40:57:48:D2:65:48:FD:5F:CA:7A:64:A0:38:D5:81:2D
Certificate issuer:       /CN=6770c9b9405748d26548fd5fca7a64a038d5812d
Certificate serial:       01974B1F57150D786F102F454DD5060B1F39
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Z3DJuUBXSNJlSP1fynpkoDjVgS0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft
Manifest number:          10BF
Signing time:             Sat 07 Jun 2025 16:00:34 +0000
Manifest this update:     Sat 07 Jun 2025 16:00:34 +0000
Manifest next update:     Sun 08 Jun 2025 16:00:34 +0000
Files and hashes:         1: Z3DJuUBXSNJlSP1fynpkoDjVgS0.crl (hash: gPJjNQjKHyxbNzh8TaOavP+h+asa59zKERODDyfsGIs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Z3DJuUBXSNJlSP1fynpkoDjVgS0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:1f:57:15:0d:78:6f:10:2f:45:4d:d5:06:0b:1f:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6770c9b9405748d26548fd5fca7a64a038d5812d
        Validity
            Not Before: Jun  7 16:00:34 2025 GMT
            Not After : Jun  8 16:00:34 2025 GMT
        Subject: CN=f6df19d8ed8cdd6be89e3eb117bd733f97d16dc1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:31:db:27:0b:d9:70:19:d4:cd:d9:63:4d:f6:
                    1d:ef:5d:02:40:ee:cc:45:63:8a:1d:a9:a3:c6:2a:
                    60:3e:af:21:a3:e3:dc:eb:ac:3a:0b:c2:91:f4:89:
                    d5:15:41:67:9d:72:22:95:0c:20:31:d6:df:e7:5a:
                    3e:1c:b2:88:c1:52:22:a4:68:d4:29:e1:a6:8e:29:
                    fe:5a:f8:62:12:d2:00:3f:87:eb:df:fa:29:19:e3:
                    c9:21:aa:c7:7a:77:11:ff:8f:91:96:39:e2:d5:cb:
                    6a:92:03:c2:8d:63:47:8b:f4:00:40:1a:a3:9c:a5:
                    9b:ea:8c:65:d3:f1:21:ab:88:26:b2:f6:d1:cd:66:
                    19:fa:64:2b:57:f7:41:56:07:1c:a6:88:a5:fd:e0:
                    5e:78:8f:fc:08:38:e0:3d:c2:05:79:62:67:dd:a7:
                    17:07:f5:de:16:2d:2d:d0:09:c7:7f:53:18:8f:7f:
                    94:2d:38:a0:91:c6:46:b9:3f:45:1f:b8:7b:29:4f:
                    09:11:ba:cd:23:dd:29:fd:45:61:85:a7:ed:68:c6:
                    67:04:e2:87:8b:0c:99:e6:81:98:4c:38:9e:6a:dd:
                    4c:32:a6:b6:db:b1:b2:11:0e:db:a6:25:9c:5e:f9:
                    87:cf:70:39:9f:54:1e:ae:e5:5f:de:09:fb:b9:9e:
                    26:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:DF:19:D8:ED:8C:DD:6B:E8:9E:3E:B1:17:BD:73:3F:97:D1:6D:C1
            X509v3 Authority Key Identifier:
                keyid:67:70:C9:B9:40:57:48:D2:65:48:FD:5F:CA:7A:64:A0:38:D5:81:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3DJuUBXSNJlSP1fynpkoDjVgS0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:67:1e:56:27:d8:2c:cf:29:92:c8:4e:fe:65:ef:55:5b:f4:
         41:88:3c:e9:2e:d7:cd:f4:79:08:9d:c2:78:ae:9a:60:f4:e7:
         fc:25:d0:e6:61:3d:10:d3:75:71:46:c1:4d:e1:9e:82:17:15:
         e4:fd:8f:e9:fe:6a:4b:5f:d7:c7:c5:cd:d8:e0:01:c8:f7:61:
         92:d4:5d:4c:26:b8:16:02:ae:75:af:72:aa:02:a7:12:a4:f0:
         58:08:76:5c:09:c3:ca:21:92:e5:bd:1a:07:7d:6e:a1:66:a3:
         eb:1c:6a:66:62:ac:f9:aa:d5:70:1f:b2:b4:08:c1:1a:19:fb:
         51:1a:8c:50:7a:bc:73:07:4d:42:7a:51:2d:27:f3:a2:c3:0b:
         58:77:f5:c6:68:51:c4:48:dc:2b:ae:6a:d0:1c:86:0b:03:12:
         73:8b:da:6f:7d:b4:e6:72:42:b4:0d:e0:26:3f:fa:57:0e:17:
         5b:1d:9e:68:5b:da:d9:23:14:2b:9a:22:bc:37:b5:32:25:7f:
         17:83:94:07:3c:9a:c0:c3:32:87:35:98:de:11:34:f8:b1:a5:
         eb:50:bd:15:97:e8:18:2c:5d:a5:d5:8f:f5:32:20:04:9a:fe:
         e1:32:f1:9e:e7:5e:5e:b5:4b:49:71:9e:4a:7e:6f:7c:21:65:
         43:10:a1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----