Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
File:                     dbh4BinZITNXwHDBwBBgU0dIg8E.mft (raw, json)
Hash identifier:          25TEFES/O9Y54a3GTx/2AZf3eaIav5n+Cq3EsUDyiTo=
Subject key identifier:   E5:D7:BD:B0:DD:B7:88:84:5F:6A:A9:4E:51:31:AB:B8:6F:C7:44:B1
Authority key identifier: 75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1
Certificate issuer:       /CN=75b8780629d9213357c070c1c0106053474883c1
Certificate serial:       0197469E90B18D48BA9BEB24F45454A8DB79
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
Manifest number:          0B9F
Signing time:             Fri 06 Jun 2025 19:01:26 +0000
Manifest this update:     Fri 06 Jun 2025 19:01:26 +0000
Manifest next update:     Sat 07 Jun 2025 19:01:26 +0000
Files and hashes:         1: dbh4BinZITNXwHDBwBBgU0dIg8E.crl (hash: LJR6ozYVea434wDXgMG8kOs7L38T4Fi4yVk3/NoWYpg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9e:90:b1:8d:48:ba:9b:eb:24:f4:54:54:a8:db:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75b8780629d9213357c070c1c0106053474883c1
        Validity
            Not Before: Jun  6 19:01:26 2025 GMT
            Not After : Jun  7 19:01:26 2025 GMT
        Subject: CN=e5d7bdb0ddb788845f6aa94e5131abb86fc744b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:84:77:69:8a:4f:17:76:7b:b1:9a:b4:50:52:
                    f7:6b:eb:b1:c0:a1:88:da:35:82:de:26:86:cc:79:
                    68:fd:47:dc:60:0f:bc:63:fc:75:04:60:94:3b:fa:
                    3f:24:2e:75:9d:27:16:13:48:ae:2f:21:07:50:0c:
                    88:47:23:97:fc:69:f1:24:85:75:0a:38:19:fd:46:
                    ac:66:78:3f:4d:67:06:9f:b7:26:e2:e6:28:ca:ec:
                    f4:38:d2:77:b0:89:f0:07:13:b6:ee:b8:c6:1d:6b:
                    bb:0f:50:e2:80:d5:e9:2c:bd:79:42:75:cf:41:4d:
                    1f:72:06:1d:d8:1a:90:97:91:90:d6:33:99:ce:9a:
                    4c:f4:66:6f:4a:3d:65:96:71:51:5e:b7:39:fd:17:
                    be:c9:b2:ed:61:1c:51:d4:92:a5:14:02:db:c4:30:
                    09:4b:39:bf:34:d1:ca:28:fc:3b:c0:22:94:39:bd:
                    79:b9:d3:f5:a2:e1:bf:a7:51:c6:03:87:71:3b:83:
                    dc:c3:00:2b:2e:bb:5b:5a:79:0a:2b:04:53:a3:d1:
                    65:7b:74:63:98:59:79:e1:e9:4b:1e:ed:01:e2:2c:
                    19:46:46:32:78:60:c5:ee:f8:af:73:a9:be:ff:40:
                    42:a4:c9:76:77:d4:34:87:a3:35:7b:89:10:3c:dc:
                    a0:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:D7:BD:B0:DD:B7:88:84:5F:6A:A9:4E:51:31:AB:B8:6F:C7:44:B1
            X509v3 Authority Key Identifier:
                keyid:75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:7d:fe:5a:e3:c6:2d:c7:8c:26:81:1d:ea:3f:c8:94:ea:ad:
         21:21:9d:f3:b7:d8:f9:28:c9:06:7f:72:62:90:00:7b:c2:27:
         9b:31:0e:75:e6:b9:31:b9:50:2f:16:3e:15:91:89:80:c8:57:
         a0:dd:a2:8a:0c:65:5d:f4:66:36:c9:5b:fa:bc:54:d8:43:5c:
         9a:15:e4:c8:96:29:82:42:cd:65:16:e1:6e:c2:f5:e3:af:1a:
         96:44:cc:75:5c:fa:85:f1:5f:92:d8:55:db:5d:94:8a:03:bf:
         db:5d:e4:7a:18:e1:06:22:49:ef:e8:33:1f:2d:1c:1d:48:67:
         1f:ba:27:b4:81:a7:4d:ac:df:00:ac:48:1b:47:47:5b:d9:73:
         f6:66:41:07:6b:de:a7:77:ee:73:b6:f5:65:b3:f9:8d:d9:e8:
         5a:21:22:a8:14:7d:33:ac:9b:e7:d4:99:2c:a7:57:19:1b:31:
         19:1c:f8:83:3c:0f:42:79:ce:65:dd:d7:fb:fa:dd:5a:4c:19:
         5d:9e:4f:e9:1c:ea:19:5b:28:77:f6:fb:cf:01:c4:e2:0a:d9:
         8f:04:24:56:a4:f4:07:9a:ce:4b:7e:1c:bd:a6:16:12:ef:32:
         6e:b7:e6:95:b7:59:51:76:f9:68:26:98:22:e2:17:ef:4d:0e:
         63:48:b3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----