Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
File:                     CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft (raw, json)
Hash identifier:          khtfOVGS+f67oyDi90U79RdzygiPZdtccRzXlDtM+7k=
Subject key identifier:   1D:AC:CD:02:F8:AD:56:4F:6E:FE:BA:73:6C:8E:F2:F9:C3:42:07:B3
Authority key identifier: 0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59
Certificate issuer:       /CN=0a85d379726c8fc096d27e88fda117b3b2654e59
Certificate serial:       0197B6D72C585CD9C5927CACD8DB1F2AAE91
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
Manifest number:          03B1
Signing time:             Sat 28 Jun 2025 14:00:44 +0000
Manifest this update:     Sat 28 Jun 2025 14:00:44 +0000
Manifest next update:     Sun 29 Jun 2025 14:00:44 +0000
Files and hashes:         1: CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl (hash: 4tyFPdCx1eViYDqHSgjShHILs3HafU279vEZc4ZVJvk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 14:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:d7:2c:58:5c:d9:c5:92:7c:ac:d8:db:1f:2a:ae:91
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0a85d379726c8fc096d27e88fda117b3b2654e59
        Validity
            Not Before: Jun 28 14:00:44 2025 GMT
            Not After : Jun 29 14:00:44 2025 GMT
        Subject: CN=1daccd02f8ad564f6efeba736c8ef2f9c34207b3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:a3:ce:a8:83:02:00:47:d8:e6:82:c9:3a:a5:
                    f3:67:26:e1:06:f2:a2:3f:04:d4:da:ae:87:86:07:
                    d4:6d:05:1a:d2:43:30:c6:c6:78:d9:85:b9:fb:1d:
                    e8:f7:17:c9:18:aa:30:f1:43:5a:2a:6b:84:88:95:
                    52:6b:00:58:64:f7:66:7f:8b:ed:48:c6:f1:21:95:
                    df:22:78:69:3a:60:4f:2d:04:ec:db:e2:56:43:f1:
                    7e:93:25:fe:ea:d6:fb:4b:b2:ca:35:5b:af:18:66:
                    33:8a:4f:88:1d:a0:d3:97:03:67:7e:1d:83:75:5e:
                    fb:e8:67:19:88:96:34:f6:cd:1d:f9:5f:a9:a3:f7:
                    c4:80:b3:6a:4b:f9:61:72:7e:12:ed:9d:88:49:ed:
                    fd:b0:e1:97:8b:87:c1:f6:a1:ba:53:e0:76:35:c8:
                    c2:df:76:62:c9:8c:23:02:84:09:3a:4b:f4:d5:d7:
                    6a:a8:c3:c6:02:8d:57:65:c5:59:ec:0f:be:2e:8d:
                    e4:25:46:70:a3:7a:cb:29:29:88:5d:e8:f3:c7:ba:
                    13:c4:ff:78:42:15:ca:16:67:af:4f:d7:25:38:56:
                    fe:00:ab:cd:89:8f:11:ca:31:a2:a4:46:81:d0:cc:
                    24:a6:9f:1b:ed:ad:f5:51:df:52:96:ea:e2:b4:c5:
                    46:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:AC:CD:02:F8:AD:56:4F:6E:FE:BA:73:6C:8E:F2:F9:C3:42:07:B3
            X509v3 Authority Key Identifier:
                keyid:0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:8a:ba:f4:89:bc:03:f2:80:92:01:5c:a0:7e:8b:63:fb:ab:
         27:34:2a:bf:a0:21:94:54:6e:94:40:f7:47:67:af:48:95:dd:
         b3:50:d3:6c:97:69:96:24:83:55:c8:da:66:c6:8d:fb:5f:af:
         b7:37:3f:8a:ac:b0:5e:f4:a5:c4:8b:3c:4a:a6:12:bd:f4:4c:
         90:91:f8:e2:30:3f:a5:56:ba:b3:e6:7c:6d:29:6e:35:53:43:
         e9:1f:11:6b:7a:41:4d:5f:ba:3a:b0:58:94:0e:6e:17:fc:19:
         85:8b:17:c6:16:1d:44:f4:bb:9d:a2:69:c1:ca:55:a5:aa:e5:
         0a:58:0c:01:a1:21:db:c4:28:f4:ff:cf:24:65:26:e0:e6:1b:
         54:8a:ac:91:13:ab:0f:ec:ef:c1:8a:aa:1b:33:3d:a4:19:e9:
         63:99:1d:a4:c4:50:68:f7:f6:5d:65:a2:13:80:c4:36:af:c1:
         20:bc:30:ea:b7:db:62:1d:c9:a0:fa:95:99:7b:c4:79:64:35:
         b3:38:fc:0e:bc:e6:f2:03:dd:02:c4:37:33:96:8c:20:18:c8:
         16:d1:60:c7:4d:e0:ea:84:03:8a:11:ba:88:e2:68:7e:b4:ac:
         29:b8:07:6c:1b:3d:7f:45:ed:7c:9a:cb:a4:90:19:9c:9e:9a:
         b5:a0:d3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----