Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
File:                     Z8i133U8dJrleBD52T87pRrgXVw.mft (raw, json)
Hash identifier:          UInwZ5PZDGtmFC5o7nhLzFVESXssLdl7lDr1KcyyFPE=
Subject key identifier:   25:09:04:8F:BE:B1:2C:1D:1D:16:4F:BD:C2:14:E8:56:96:0F:DA:90
Authority key identifier: 67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
Certificate issuer:       /CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Certificate serial:       01974E5794655B0347389A6BD22A6F84E3B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
Manifest number:          0E7B
Signing time:             Sun 08 Jun 2025 07:00:51 +0000
Manifest this update:     Sun 08 Jun 2025 07:00:51 +0000
Manifest next update:     Mon 09 Jun 2025 07:00:51 +0000
Files and hashes:         1: Z8i133U8dJrleBD52T87pRrgXVw.crl (hash: go4AbCW5g0BiIXbpb1mEAlZn83nbO9BKaFpiposaV6U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:57:94:65:5b:03:47:38:9a:6b:d2:2a:6f:84:e3:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
        Validity
            Not Before: Jun  8 07:00:51 2025 GMT
            Not After : Jun  9 07:00:51 2025 GMT
        Subject: CN=2509048fbeb12c1d1d164fbdc214e856960fda90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:a9:46:72:6d:e4:8d:a0:4d:2f:ff:f6:f5:66:
                    7f:bd:64:d7:57:71:73:7d:ba:62:2b:9c:85:5a:02:
                    e4:d4:7b:2c:46:14:92:a7:cd:fe:1a:46:18:f0:08:
                    97:8b:d5:ca:a0:d2:0d:52:19:e0:ea:07:3c:2d:40:
                    20:b2:fa:71:f9:ac:1f:b1:e4:4f:42:9f:82:ec:8c:
                    4a:2f:79:52:07:04:0c:48:dd:bf:82:92:28:14:51:
                    61:24:a3:19:88:46:43:43:7f:43:04:2b:a7:72:35:
                    1b:5e:39:79:01:cf:43:90:51:02:5e:2e:a0:62:ad:
                    7d:82:eb:a2:9b:f8:4e:62:34:69:a1:78:2f:26:a0:
                    3e:ef:57:75:f9:e2:9b:f9:4e:e5:60:b2:da:fb:47:
                    0c:b2:36:3b:45:c9:a6:a9:fc:61:91:22:fa:a6:55:
                    08:07:0b:67:88:91:8c:89:d4:ee:1c:f1:a9:ea:c3:
                    f1:60:de:0b:aa:50:a8:3d:5c:0f:de:df:55:b9:4b:
                    d5:91:2e:03:f7:b0:c7:d6:cc:08:2a:a2:7d:b5:f1:
                    25:c7:cb:6b:fa:2f:ca:65:9b:19:f1:44:cf:b8:4c:
                    9e:2f:67:86:75:76:a1:dd:ed:51:0f:96:ef:79:36:
                    67:fc:13:b4:86:8d:10:2f:93:89:63:60:8c:c3:84:
                    70:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:09:04:8F:BE:B1:2C:1D:1D:16:4F:BD:C2:14:E8:56:96:0F:DA:90
            X509v3 Authority Key Identifier:
                keyid:67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:0e:15:66:6e:ba:96:0a:59:84:69:a4:c9:a3:c4:54:2a:25:
         be:cb:f5:e5:ce:47:e9:36:6e:9d:44:57:7b:13:06:4a:15:f1:
         b2:3d:f6:51:6d:de:90:4c:fa:44:23:75:31:de:fc:7a:a1:4d:
         b1:7c:87:22:cc:1d:5b:a5:67:63:39:18:bf:30:93:62:40:b8:
         f4:07:ac:ec:83:54:dc:4d:e9:82:8e:fe:f0:ad:7b:eb:da:2c:
         2a:bb:0d:76:b0:10:96:63:e4:47:51:ac:03:5b:c0:1e:45:35:
         50:25:11:42:4c:c0:dc:43:dc:e1:71:f6:3b:7e:39:e2:dd:60:
         b5:11:e6:1e:e7:62:55:8a:fb:ee:75:76:85:1a:bc:24:56:c7:
         6f:d5:31:aa:8b:43:15:ec:f0:dc:6c:b2:73:9a:e6:c1:57:03:
         7d:8a:a5:37:24:8f:70:9e:5c:54:45:51:0a:19:b3:db:a2:59:
         16:8c:58:fe:f4:3a:5d:4e:e7:97:ff:92:5a:55:13:54:99:81:
         2f:ef:91:fe:1c:a2:e0:9c:14:7a:9a:99:e5:8b:e9:3f:ac:15:
         67:d3:37:e0:a5:45:a1:9e:ba:7f:31:67:27:8a:3c:82:d0:e7:
         27:10:a4:2b:7a:8d:99:2b:1d:0e:46:6e:0d:4c:17:b7:bb:8e:
         48:09:3e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----