Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft
File:                     rK67C7Ozijz0QMgf97PhaTMqpm0.mft (raw, json)
Hash identifier:          PRIIgUK5y7oq/JQTpzjNcpjPQIQBdCnobN6NDAnhJUo=
Subject key identifier:   CA:61:12:1B:C2:AE:B7:6D:3B:59:EA:90:55:B3:1F:05:23:03:9B:85
Authority key identifier: AC:AE:BB:0B:B3:B3:8A:3C:F4:40:C8:1F:F7:B3:E1:69:33:2A:A6:6D
Certificate issuer:       /CN=acaebb0bb3b38a3cf440c81ff7b3e169332aa66d
Certificate serial:       0197469E4F53F8B9559E404DF4B6AB4A5235
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft
Manifest number:          1182
Signing time:             Fri 06 Jun 2025 19:01:09 +0000
Manifest this update:     Fri 06 Jun 2025 19:01:09 +0000
Manifest next update:     Sat 07 Jun 2025 19:01:09 +0000
Files and hashes:         1: rK67C7Ozijz0QMgf97PhaTMqpm0.crl (hash: xzmeNFmob1dQ0s52KV/98unFI37sqFjXfam8YdJnFls=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9e:4f:53:f8:b9:55:9e:40:4d:f4:b6:ab:4a:52:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=acaebb0bb3b38a3cf440c81ff7b3e169332aa66d
        Validity
            Not Before: Jun  6 19:01:09 2025 GMT
            Not After : Jun  7 19:01:09 2025 GMT
        Subject: CN=ca61121bc2aeb76d3b59ea9055b31f0523039b85
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:db:88:2d:af:60:b0:f7:36:bf:9b:9f:a0:e5:
                    76:26:a3:c5:90:c2:32:8f:99:ba:c3:78:80:9b:2e:
                    f9:b1:70:6f:41:d7:3d:c1:bd:9d:f0:95:71:73:14:
                    7c:52:b2:00:6a:a8:46:14:8d:95:8f:fd:18:71:b2:
                    62:32:72:1d:e1:66:2f:01:81:7c:5d:0d:21:9c:20:
                    cc:b1:ec:8e:b0:12:75:48:e7:5d:06:ae:4d:f4:ac:
                    31:5e:f0:07:70:c8:9d:c6:61:44:64:6d:f2:96:9e:
                    ef:d6:c8:1d:bf:2c:78:29:f2:23:ea:9d:46:0d:30:
                    08:0e:6f:5f:49:8e:3b:16:9d:5b:cc:08:9a:11:06:
                    38:96:9e:e5:76:e9:36:31:49:49:d8:25:8f:63:17:
                    50:23:a7:33:38:2b:d0:34:2f:8b:a6:ec:71:9d:6e:
                    b9:3e:90:a6:8e:8d:3b:e3:58:95:5e:27:1c:6e:e6:
                    50:a6:8e:15:9e:2f:e8:80:da:e8:39:04:f6:b5:eb:
                    a8:5d:82:f4:fd:53:77:4d:85:d6:1b:00:6e:d7:61:
                    31:11:12:77:14:94:b8:06:89:28:3f:7c:b7:e1:f1:
                    67:83:59:ee:5a:0d:d8:f7:7f:a8:53:b3:a3:84:23:
                    19:a6:e9:7a:3a:8f:2a:cd:f1:0d:51:fc:10:28:2f:
                    66:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:61:12:1B:C2:AE:B7:6D:3B:59:EA:90:55:B3:1F:05:23:03:9B:85
            X509v3 Authority Key Identifier:
                keyid:AC:AE:BB:0B:B3:B3:8A:3C:F4:40:C8:1F:F7:B3:E1:69:33:2A:A6:6D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:67:26:23:fe:b1:93:9c:3b:60:28:0c:65:bf:3e:4b:24:bd:
         2b:f4:e1:27:d3:1b:7b:dc:6b:8d:32:60:91:26:38:7c:6e:53:
         b6:e8:22:45:6b:fe:68:18:0d:da:94:5e:0e:ca:df:20:74:4e:
         82:1c:76:27:05:53:7b:ba:8c:0f:87:53:76:5f:ee:8c:67:7c:
         42:5e:ff:fc:c5:f4:a5:90:5c:4d:48:34:87:ac:e4:64:d0:b0:
         02:c9:7d:8f:7a:67:11:be:7e:b6:db:88:a5:40:c8:cf:aa:dd:
         23:80:ca:88:4a:e3:a0:9e:0f:6f:91:b5:50:17:ab:60:3c:e5:
         a3:68:c8:f6:41:17:2d:28:e3:06:37:cd:34:54:41:0b:aa:7f:
         3f:48:5a:68:80:28:7b:a8:4a:05:48:5f:80:b7:87:07:40:58:
         c0:9f:5f:69:9c:4e:55:0b:7c:e0:1e:70:1c:77:d0:4b:43:92:
         e3:2e:28:5d:1a:ef:f6:78:f3:81:07:b3:d7:b4:7c:3a:fe:88:
         ed:9c:e4:5f:db:a9:87:5b:6f:f7:c5:c7:45:5d:3b:a7:ab:36:
         1c:14:a4:a3:b6:5b:6e:56:a8:c2:8d:0d:aa:56:1d:6a:82:ef:
         17:0f:55:24:8f:12:08:09:60:79:11:94:06:0c:5d:e9:c3:2e:
         e1:68:b1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----