Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft
File:                     nwAKfifXFIcphPrjeIda9lvkBWw.mft (raw, json)
Hash identifier:          tDGnFoFU63k6NRDJ3r5edaGYNiH86MKmG1RvcBMc5+I=
Subject key identifier:   02:AD:A7:A9:6A:60:E3:15:73:A1:E2:8A:8E:AC:7A:DE:EE:ED:D2:6A
Authority key identifier: 9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C
Certificate issuer:       /CN=9f000a7e27d714872984fae378875af65be4056c
Certificate serial:       0197CC159C0D73ACCD524D43A4D9A9F0092B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft
Manifest number:          14
Signing time:             Wed 02 Jul 2025 17:00:57 +0000
Manifest this update:     Wed 02 Jul 2025 17:00:57 +0000
Manifest next update:     Thu 03 Jul 2025 17:00:57 +0000
Files and hashes:         1: nwAKfifXFIcphPrjeIda9lvkBWw.crl (hash: EOqXF8yR9gDkwao2iccIiaO+OElgbLH+P+zEd8Y7Frw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 03 Jul 2025 11:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:cc:15:9c:0d:73:ac:cd:52:4d:43:a4:d9:a9:f0:09:2b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f000a7e27d714872984fae378875af65be4056c
        Validity
            Not Before: Jul  2 17:00:57 2025 GMT
            Not After : Jul  3 17:00:57 2025 GMT
        Subject: CN=02ada7a96a60e31573a1e28a8eac7adeeeedd26a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:9d:a3:15:a3:78:96:3f:f2:9e:5a:18:67:1e:
                    04:3b:18:4f:7a:c3:68:c0:9c:e9:c3:29:a4:09:0e:
                    be:f8:93:72:bb:fd:79:e6:54:37:72:37:3e:1e:c3:
                    94:89:9a:64:ee:44:e0:07:1d:e7:ba:d5:b4:27:a8:
                    ea:dd:eb:21:f7:12:33:11:0d:4e:fe:ab:2b:09:95:
                    09:79:7e:65:02:48:ba:03:88:21:0b:ce:55:9b:4c:
                    7a:e5:3a:7a:17:58:54:81:9f:c0:90:ff:4a:19:b6:
                    fe:80:5e:8e:81:86:9b:5b:97:28:ae:c3:c5:2a:75:
                    b3:29:d0:50:be:07:6b:79:43:c4:cc:78:89:6a:f0:
                    16:59:97:34:c0:47:c9:90:8b:b5:20:f1:bf:aa:0d:
                    fd:6c:fe:bf:14:41:c6:c5:99:31:e0:33:d7:ca:6a:
                    6b:d8:2b:e3:5a:91:47:02:7f:eb:6b:46:c1:ed:a1:
                    bf:20:75:aa:91:87:b8:80:9d:3d:2b:1a:60:57:be:
                    83:a8:67:ae:80:1f:2d:e0:e1:3b:df:c5:e8:cf:65:
                    d9:87:83:ed:67:0a:1c:2a:6c:be:f2:27:c1:06:df:
                    a7:51:ab:6b:0a:55:b3:9f:86:d1:98:17:b8:e0:ad:
                    4f:8c:74:57:04:d8:24:e8:da:62:a0:ed:05:8a:ff:
                    93:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:AD:A7:A9:6A:60:E3:15:73:A1:E2:8A:8E:AC:7A:DE:EE:ED:D2:6A
            X509v3 Authority Key Identifier:
                keyid:9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:c9:84:7a:71:2d:ce:c6:cb:93:86:ad:94:ff:01:85:a3:4a:
         d5:83:af:f5:5e:17:82:36:ef:07:a3:6d:1f:8a:96:55:58:10:
         08:6d:6f:76:94:77:c9:d5:77:60:cc:fc:7d:45:0a:92:b2:5d:
         97:a0:1c:de:86:50:4b:7a:cc:04:e4:16:46:17:67:f0:3b:ae:
         0a:a4:43:d9:eb:be:55:6e:e9:1c:31:89:7d:0f:f6:fc:05:73:
         ad:8b:b1:d7:4a:d1:79:e2:bd:3f:9d:7c:8f:a3:60:c7:3d:c8:
         d7:6e:66:bd:d8:4d:78:ae:e3:2d:3a:39:b4:5c:9d:40:81:18:
         d0:ce:1a:d9:28:ba:01:df:cc:d5:f2:63:f5:05:4a:75:d2:72:
         21:b1:76:81:6b:6d:96:68:dd:6c:9d:12:9c:b5:85:e0:2f:c5:
         84:fc:54:d1:58:3a:dd:32:82:7c:d8:ff:cb:36:93:db:46:27:
         87:ef:8c:3f:b4:a3:73:ca:ac:9c:b4:56:01:f2:3f:cc:f2:a6:
         69:24:2a:5d:b5:b7:21:07:fd:b4:12:04:20:79:ce:66:84:2e:
         4d:cb:70:ba:65:ec:59:03:75:aa:7a:56:b1:0c:22:ad:3f:c8:
         82:1f:c7:e7:28:d8:cf:19:4c:ab:ef:2e:96:37:1f:3a:46:73:
         ae:5d:5a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----