Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
File:                     qqbmeSWCHkuHnIA-wKUiRflnOtA.mft (raw, json)
Hash identifier:          s21IokvEpesKn2edA9F+iF9HZb0X/L8Y6o6l3Du/LKk=
Subject key identifier:   55:A1:23:78:36:43:81:4F:46:1C:06:8E:4A:01:1A:12:13:85:63:02
Authority key identifier: AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0
Certificate issuer:       /CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
Certificate serial:       0197B6D7691CBCF2592F61E35D02BCDBD854
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
Manifest number:          0357
Signing time:             Sat 28 Jun 2025 14:00:59 +0000
Manifest this update:     Sat 28 Jun 2025 14:00:59 +0000
Manifest next update:     Sun 29 Jun 2025 14:00:59 +0000
Files and hashes:         1: qqbmeSWCHkuHnIA-wKUiRflnOtA.crl (hash: cZV3uxPk58t5GwY2BDiEIsF1kNZSll9y//ASI344lxU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 14:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:d7:69:1c:bc:f2:59:2f:61:e3:5d:02:bc:db:d8:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
        Validity
            Not Before: Jun 28 14:00:59 2025 GMT
            Not After : Jun 29 14:00:59 2025 GMT
        Subject: CN=55a123783643814f461c068e4a011a1213856302
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:f1:10:6e:2c:2c:a6:42:59:df:38:be:20:0b:
                    c3:0b:d7:c6:b1:5b:d2:e0:25:b8:02:87:db:eb:9a:
                    9b:77:0a:d7:19:20:47:c6:54:a2:07:ef:2c:41:84:
                    36:0e:84:11:cf:76:70:10:2c:70:0e:f2:33:86:11:
                    22:f6:3f:7e:9c:20:10:a9:1f:80:45:25:68:7d:cc:
                    a9:80:8e:51:94:72:e0:e0:e4:ae:cb:1b:d4:e7:11:
                    79:b4:a2:bc:af:8a:18:49:51:f6:81:e5:1e:33:a0:
                    8a:36:dc:ae:1c:ff:b0:8a:91:fc:c7:86:1c:5b:af:
                    d7:8c:11:59:dd:e3:78:cf:44:83:83:3e:0b:6b:5e:
                    21:fa:1c:74:32:d9:f5:e9:ee:b5:ec:01:19:74:fe:
                    98:95:da:72:1b:9c:b5:05:1e:55:e2:8d:92:fc:aa:
                    78:3a:eb:ae:15:72:d6:78:92:4c:3b:b6:48:2b:94:
                    14:0d:0c:9b:a4:54:5d:85:b8:d3:d9:35:a8:b6:65:
                    8f:55:76:c9:82:10:ca:c6:7f:1e:1b:0e:fd:ed:03:
                    4f:fc:62:b9:2d:d4:cc:cd:fc:46:b1:21:62:a2:35:
                    5e:62:da:05:11:6b:22:71:c5:57:be:fe:f3:cc:85:
                    56:7e:d4:fd:a0:8d:c8:53:7d:09:d6:27:31:a5:68:
                    e4:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:A1:23:78:36:43:81:4F:46:1C:06:8E:4A:01:1A:12:13:85:63:02
            X509v3 Authority Key Identifier:
                keyid:AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:70:16:04:75:55:40:32:a1:04:53:9a:9d:4d:28:78:d7:97:
         98:3e:fb:0c:b1:e1:80:3f:87:bb:5b:ea:db:62:29:c7:5e:b4:
         2b:63:9a:0a:3b:c6:15:d5:b0:fb:09:f4:d6:e6:4c:b5:30:67:
         d6:cc:37:36:a4:3d:44:69:59:70:01:e2:8c:97:1f:e1:27:de:
         15:a8:1e:7a:df:20:dc:5a:7f:6b:2c:1b:4c:29:66:21:ad:5c:
         49:e3:e1:a7:48:22:71:cf:1b:e7:2d:c1:bd:0e:48:3c:68:97:
         4f:6b:c5:42:49:f7:56:76:f8:db:07:53:0c:77:e3:cf:ad:00:
         a9:69:88:73:4e:f6:c1:49:fb:b1:b3:f6:db:6a:f2:8a:49:d5:
         17:7d:b9:4e:35:d0:35:48:7b:d6:9b:ca:4d:c9:2e:09:e7:a4:
         dc:d7:39:8b:81:32:fa:83:77:d3:83:2c:3c:a6:48:ff:75:dc:
         88:c7:0c:04:50:5d:1e:df:f8:a3:ee:b7:f5:e8:3b:47:41:cb:
         8e:45:1f:67:70:cc:c5:26:7c:b9:d9:ab:fb:45:43:4d:54:fa:
         c1:48:af:ae:d7:0b:05:08:1b:f8:33:60:14:ed:ed:59:20:e5:
         26:2f:1a:2d:22:2f:3d:73:f6:49:cd:24:8f:e9:ec:49:a3:ba:
         1f:5e:b6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----