Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
File:                     mXFUBuche_wTgSpHBMYq4JnnyP8.mft (raw, json)
Hash identifier:          cCDKMxNI/HPVqbXSI8oobWKfzjuGmEDJC+CLUpFKJIM=
Subject key identifier:   6C:CF:15:CA:0F:03:81:4B:D0:65:01:EF:9D:16:51:23:1C:BD:FC:C5
Authority key identifier: 99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF
Certificate issuer:       /CN=99715406e7217bfc13812a4704c62ae099e7c8ff
Certificate serial:       0197BFA44C94C4E911033C8514D14BC968CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
Manifest number:          02D7
Signing time:             Mon 30 Jun 2025 07:01:45 +0000
Manifest this update:     Mon 30 Jun 2025 07:01:45 +0000
Manifest next update:     Tue 01 Jul 2025 07:01:45 +0000
Files and hashes:         1: mXFUBuche_wTgSpHBMYq4JnnyP8.crl (hash: 8YAvDFv/1uV0hiAnprkBlzOn9Z6uPZNzPVuDVOh7rD0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 01 Jul 2025 07:01:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:bf:a4:4c:94:c4:e9:11:03:3c:85:14:d1:4b:c9:68:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99715406e7217bfc13812a4704c62ae099e7c8ff
        Validity
            Not Before: Jun 30 07:01:45 2025 GMT
            Not After : Jul  1 07:01:45 2025 GMT
        Subject: CN=6ccf15ca0f03814bd06501ef9d1651231cbdfcc5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:40:38:9b:57:d3:0c:f9:34:bb:29:c4:46:9c:
                    8f:51:98:e3:0d:6a:97:3f:e5:55:48:5c:a4:f5:5d:
                    08:62:a0:70:72:92:40:36:5a:45:7a:e0:dc:46:85:
                    79:a1:15:69:37:a3:38:90:61:2c:d2:b8:d7:73:5a:
                    fa:99:ba:ba:85:28:4c:71:ec:20:8c:40:6e:28:50:
                    4a:37:98:a4:de:f6:02:c9:89:60:9b:35:03:82:36:
                    2c:1e:5f:e2:a6:ea:87:be:5d:04:34:0f:60:38:5c:
                    1c:fa:ac:f2:56:43:a0:c4:e6:0c:50:e1:80:cd:02:
                    62:70:38:69:ff:cb:09:ad:87:d7:1c:54:d6:9c:a9:
                    9b:97:8a:b3:d0:42:0e:55:5a:7d:5f:95:f5:06:be:
                    48:db:34:d3:c9:a4:d7:1c:5b:33:c1:30:94:6a:d5:
                    29:07:da:78:95:4d:fe:3e:64:86:7e:a3:d7:1a:88:
                    56:68:90:6d:c3:a8:08:b3:e3:96:00:38:81:24:43:
                    0f:18:41:65:d6:2b:89:d5:6a:af:ae:30:8c:40:e6:
                    eb:9f:dd:0e:76:23:e2:91:7b:fa:dc:79:1e:72:ed:
                    5e:5c:ec:fd:68:d2:a9:92:c5:0d:46:d7:0d:e3:6e:
                    81:03:7c:15:5e:84:7b:f7:b1:b2:e5:e7:75:5d:a0:
                    bc:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:CF:15:CA:0F:03:81:4B:D0:65:01:EF:9D:16:51:23:1C:BD:FC:C5
            X509v3 Authority Key Identifier:
                keyid:99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:ac:7f:f6:a5:14:c2:91:d8:4f:7f:0a:04:8f:fe:22:ee:96:
         6e:a9:96:bf:8a:b7:52:d3:4e:5c:c4:fa:16:5b:b5:95:e9:ee:
         01:21:8a:6c:9e:4c:f7:43:ba:32:b7:9e:be:a6:ba:ea:1d:23:
         9b:03:48:ca:18:b0:70:f2:ad:13:74:e1:40:70:22:fb:3f:a7:
         47:d0:e2:53:38:4d:36:50:61:54:a1:21:07:df:aa:e1:e9:e0:
         0b:0d:b3:3d:ec:4b:de:54:04:e7:96:32:23:f8:74:de:38:a7:
         fc:dd:9b:ab:54:e5:db:ca:8c:ce:6a:ef:ed:d8:4b:c0:6c:2e:
         a3:95:f4:0c:8c:0b:75:7f:d4:16:01:71:b1:b2:64:d0:c3:4e:
         38:7c:d9:e0:2e:02:ee:c4:13:39:00:43:51:70:d1:68:c5:4d:
         4d:6e:67:ca:1a:79:08:7a:d8:1a:21:54:95:09:0e:18:36:0d:
         0b:e2:8d:f1:74:20:40:13:02:49:ee:24:63:9b:e3:dc:5f:df:
         0f:aa:91:0b:39:c0:a0:00:f5:7b:84:96:5a:a2:7c:e0:54:ed:
         fc:be:57:d9:a5:f6:f8:cd:89:f4:40:c8:07:04:96:9b:bb:8c:
         ce:cb:4a:23:69:76:39:d3:c2:e1:f3:32:07:ea:22:bc:f2:2e:
         e0:1b:26:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----