Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
File:                     owVfB71HqGR4w79HOSVzrNU9Y24.mft (raw, json)
Hash identifier:          gcRNnUjNEmxKPyLZ1rjrpAEOSzSFY8YvGR7CeXbZ9W4=
Subject key identifier:   34:E0:D7:3D:56:D6:A2:45:85:19:6C:C4:13:44:39:AB:53:2E:A3:03
Authority key identifier: A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E
Certificate issuer:       /CN=a3055f07bd47a86478c3bf47392573acd53d636e
Certificate serial:       019748F9D2A30869D0E7C6C4FCDE06BCA111
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 06:00:21 +0000
Manifest this update:     Sat 07 Jun 2025 06:00:21 +0000
Manifest next update:     Sun 08 Jun 2025 06:00:21 +0000
Files and hashes:         1: owVfB71HqGR4w79HOSVzrNU9Y24.crl (hash: 6eGNqYdzb9j8Igoho5YYsbytcxrrtw90wbvBDhdBmbI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 06:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:f9:d2:a3:08:69:d0:e7:c6:c4:fc:de:06:bc:a1:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3055f07bd47a86478c3bf47392573acd53d636e
        Validity
            Not Before: Jun  7 06:00:21 2025 GMT
            Not After : Jun  8 06:00:21 2025 GMT
        Subject: CN=34e0d73d56d6a24585196cc4134439ab532ea303
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:83:a3:61:c8:f1:cb:a3:14:f9:68:e2:74:00:
                    6c:a0:73:c2:f7:cc:de:fe:2d:15:44:4e:77:da:65:
                    a6:76:be:7f:d8:0c:e2:3a:53:c9:4c:47:73:51:c3:
                    d8:c5:79:72:8f:5f:01:6b:8d:78:23:0c:b2:53:d2:
                    4c:93:f0:8a:e9:77:77:72:23:78:2c:2a:a0:3a:18:
                    c4:56:3a:db:d8:52:5a:51:fc:22:dc:1e:d7:b2:70:
                    43:80:dc:e0:53:f2:ec:2b:02:27:9b:f0:21:39:c7:
                    91:a0:3b:bc:a5:c5:0f:94:be:e9:12:37:96:94:26:
                    ba:5b:69:1b:b0:f2:75:8d:81:ed:72:f6:d2:64:f1:
                    1d:cf:dd:3b:30:6c:b9:d0:4b:8b:87:17:db:83:5b:
                    94:86:56:c2:90:c3:50:ef:ab:88:2d:e3:21:a8:ac:
                    eb:ee:0f:18:dd:8b:bc:05:22:0d:c6:6e:d5:ef:02:
                    a4:3d:e6:74:67:e7:a9:c5:88:21:39:0f:70:33:7f:
                    ce:87:0c:8b:13:7f:0a:72:90:ce:60:95:09:43:f7:
                    db:72:8e:21:24:19:34:1a:b7:d1:61:8d:e7:e7:7e:
                    bd:47:b1:67:42:46:fc:66:87:08:ea:ea:53:43:f2:
                    e4:11:b3:d0:86:0d:58:95:90:95:5a:4a:74:94:fb:
                    93:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:E0:D7:3D:56:D6:A2:45:85:19:6C:C4:13:44:39:AB:53:2E:A3:03
            X509v3 Authority Key Identifier:
                keyid:A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:8e:d8:a1:98:74:e9:10:52:15:29:e9:f1:bc:cc:5a:a0:84:
         80:4f:af:7f:3c:f5:e0:6e:ff:d6:05:86:5a:15:24:bb:7b:e5:
         93:98:9c:9e:d3:27:51:7d:7a:78:2f:c7:06:bb:f2:e9:84:d8:
         d5:b6:72:30:02:4e:91:23:b6:54:1b:87:93:6f:e7:a3:c3:6f:
         ea:01:00:6d:08:93:7f:c4:62:c9:54:49:26:dc:46:06:05:7e:
         e8:8b:0e:b7:d9:96:e2:18:4c:a0:18:cf:76:25:f4:9b:95:62:
         5a:fc:59:82:0b:6f:29:62:76:a2:5b:e5:03:8e:6a:1a:a3:a6:
         c6:a0:1b:23:dd:02:8b:74:e0:36:b2:80:74:7d:de:86:9d:c2:
         da:69:96:7d:b6:30:f6:db:62:29:01:7d:03:43:4c:68:dd:95:
         23:0c:08:f6:0e:1f:d8:34:a6:c6:b3:70:e4:2d:d5:58:30:ad:
         40:95:2d:3b:38:bc:5d:86:24:0c:a9:0f:68:79:65:b5:ec:f8:
         61:74:5c:36:64:c0:9e:03:85:e8:92:c0:5d:14:72:6b:1a:84:
         78:19:1e:44:32:9f:7a:62:51:c3:0c:29:1a:c7:7a:20:94:e6:
         e2:a1:ae:ce:ba:57:0f:a5:1a:c6:7c:f2:7e:14:de:99:18:fa:
         71:e8:c7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----