Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/ff58dc-4971-4132-ba17-77ecbbb4f7d8/1/ccWe2rmO-wzTdnYPQGnkxouL2iA.mft
File:                     ccWe2rmO-wzTdnYPQGnkxouL2iA.mft (raw, json)
Hash identifier:          JLICUNK1L+0pjBf1IefCZg4D7bNM80o6t62NlnIIu7I=
Subject key identifier:   7E:0D:34:A1:84:C2:53:E2:D8:22:F4:42:EE:FD:9D:7B:55:64:46:3B
Authority key identifier: 71:C5:9E:DA:B9:8E:FB:0C:D3:76:76:0F:40:69:E4:C6:8B:8B:DA:20
Certificate issuer:       /CN=71c59edab98efb0cd376760f4069e4c68b8bda20
Certificate serial:       0197B6A176FDF8C37019DD4AC974A322E68C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ccWe2rmO-wzTdnYPQGnkxouL2iA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/ff58dc-4971-4132-ba17-77ecbbb4f7d8/1/ccWe2rmO-wzTdnYPQGnkxouL2iA.mft
Manifest number:          0705
Signing time:             Sat 28 Jun 2025 13:02:04 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:04 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:04 +0000
Files and hashes:         1: ccWe2rmO-wzTdnYPQGnkxouL2iA.crl (hash: M0MYKySKroDOHaugh6lSwtp444yfDfsaiPuQ+eUCXTc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/ff58dc-4971-4132-ba17-77ecbbb4f7d8/1/ccWe2rmO-wzTdnYPQGnkxouL2iA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/ff58dc-4971-4132-ba17-77ecbbb4f7d8/1/ccWe2rmO-wzTdnYPQGnkxouL2iA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ccWe2rmO-wzTdnYPQGnkxouL2iA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:02:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:76:fd:f8:c3:70:19:dd:4a:c9:74:a3:22:e6:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71c59edab98efb0cd376760f4069e4c68b8bda20
        Validity
            Not Before: Jun 28 13:02:04 2025 GMT
            Not After : Jun 29 13:02:04 2025 GMT
        Subject: CN=7e0d34a184c253e2d822f442eefd9d7b5564463b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:4d:db:2c:fa:96:11:8e:54:19:18:a4:26:be:
                    b8:b8:3d:dc:3d:e0:c5:c2:13:0b:95:40:a0:fa:0d:
                    4c:ca:7e:84:10:56:f5:1c:fc:a5:21:02:59:f7:07:
                    1d:44:ff:00:d1:e4:40:11:2c:21:52:e6:e3:3f:25:
                    18:e7:2a:d3:5e:0e:36:9e:7d:a1:70:a6:7f:db:14:
                    08:b2:37:96:b6:eb:e8:51:c5:ca:b6:fb:72:d9:d0:
                    e4:63:31:db:2d:92:1b:09:84:d3:09:34:21:ca:86:
                    a6:8c:04:38:f7:ac:b7:e4:b3:31:42:f0:3b:e6:5c:
                    07:a6:be:1d:25:67:4e:57:39:36:cf:29:61:31:d7:
                    1c:bd:95:5c:f3:dd:80:6c:d9:cb:81:b9:29:87:75:
                    22:40:ba:87:34:f7:bd:03:fb:d0:52:6a:fe:ff:51:
                    c3:30:2d:5f:c8:55:92:d5:51:a5:82:e4:5e:df:4e:
                    96:fe:26:d6:93:10:22:bf:41:d8:e0:7f:91:bd:6c:
                    bf:cf:42:3b:bd:d1:5f:17:e5:18:10:6b:a7:5e:04:
                    c2:b4:a4:9e:ef:dd:60:47:1d:dd:d8:c4:fb:35:db:
                    4c:ad:58:c0:dc:ad:96:88:38:36:68:64:86:72:29:
                    31:6d:81:fd:98:19:35:f5:6d:f4:96:1f:4a:7a:96:
                    f1:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:0D:34:A1:84:C2:53:E2:D8:22:F4:42:EE:FD:9D:7B:55:64:46:3B
            X509v3 Authority Key Identifier:
                keyid:71:C5:9E:DA:B9:8E:FB:0C:D3:76:76:0F:40:69:E4:C6:8B:8B:DA:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ccWe2rmO-wzTdnYPQGnkxouL2iA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/ff58dc-4971-4132-ba17-77ecbbb4f7d8/1/ccWe2rmO-wzTdnYPQGnkxouL2iA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/ff58dc-4971-4132-ba17-77ecbbb4f7d8/1/ccWe2rmO-wzTdnYPQGnkxouL2iA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:82:c1:1b:28:a1:11:76:21:71:c4:7a:a9:ca:b4:92:70:8f:
         e7:42:03:b5:cb:8f:f4:49:a2:1b:19:d9:08:c0:ed:45:e6:7a:
         c3:a3:d4:84:31:1e:38:e2:e9:0a:94:41:0e:1f:a0:8f:c4:9b:
         2a:c6:8d:58:b7:e7:23:03:a5:d6:48:78:bf:fd:e2:28:d4:72:
         5f:56:37:ed:46:e2:7b:93:5a:71:e7:19:72:68:5f:29:44:38:
         e6:27:49:19:35:e9:ca:6c:c4:e7:3e:20:3c:e1:ef:3a:15:93:
         65:b1:40:3e:04:35:91:24:94:a3:01:29:db:1d:d1:34:0a:b2:
         e0:26:62:ec:7e:67:c9:9c:e1:37:3c:e6:eb:de:60:c7:5f:eb:
         c9:83:50:c0:e9:f1:e8:59:c7:2b:d6:b0:8b:fb:a2:79:3b:8e:
         25:53:23:7d:85:83:ad:a1:91:a7:d1:f7:51:ee:a4:ac:93:a8:
         57:16:8e:6e:2a:82:71:51:20:6c:d3:e7:4d:93:45:39:9d:e0:
         4d:e4:b4:b8:b7:61:95:9c:24:90:4e:f0:a5:58:18:76:e4:d0:
         fd:4b:4a:71:b5:fb:ec:30:ad:63:45:98:60:2a:dc:4e:e9:46:
         02:c4:0c:dc:08:2d:2e:23:e9:67:ab:61:72:7b:15:80:90:8c:
         c4:33:dc:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----