Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
File:                     q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json)
Hash identifier:          ntaU4DRw2mj1QKbZCYfVykR1p2678PREHg60aiT0DJg=
Subject key identifier:   64:EA:C7:E8:C2:43:F1:C3:6D:8C:6C:58:AC:FB:30:6F:04:58:B1:28
Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC
Certificate issuer:       /CN=aba374394fe1080d64a219d7d35a49462e8e99ac
Certificate serial:       0197B9342556338E405EF6506C4DD2FC7003
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
Manifest number:          06C3
Signing time:             Sun 29 Jun 2025 01:01:31 +0000
Manifest this update:     Sun 29 Jun 2025 01:01:31 +0000
Manifest next update:     Mon 30 Jun 2025 01:01:31 +0000
Files and hashes:         1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: bOCSY3ZPYohoXex+VE9wQNPD1tZglvZaNpJq4n9EZNQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 19:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:34:25:56:33:8e:40:5e:f6:50:6c:4d:d2:fc:70:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac
        Validity
            Not Before: Jun 29 01:01:31 2025 GMT
            Not After : Jun 30 01:01:31 2025 GMT
        Subject: CN=64eac7e8c243f1c36d8c6c58acfb306f0458b128
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:72:01:6d:a0:51:cb:9d:15:d4:af:99:da:44:
                    f5:55:02:64:72:81:97:84:fa:37:83:9a:91:5c:cb:
                    b4:50:ce:21:e3:50:09:9b:41:81:58:e8:6e:19:1a:
                    17:51:56:a2:5d:b0:93:4a:98:4e:9a:bd:0a:90:1e:
                    ec:a5:a7:be:e5:a7:b4:d4:cc:f1:e9:9b:35:66:ed:
                    20:fd:98:ab:7f:6d:47:91:22:9e:bd:c3:8e:43:1e:
                    4b:31:22:07:a4:e7:6f:b7:ed:6a:32:81:ca:53:60:
                    61:00:c2:24:fd:af:36:6f:8f:66:14:9c:3e:a6:15:
                    bd:55:34:e0:85:aa:af:a2:33:0c:2d:3f:f8:d3:66:
                    66:c5:e7:9b:5d:d0:a3:41:8a:60:19:d6:8f:30:46:
                    15:96:3c:c9:15:2e:33:ae:07:d7:55:53:95:a0:bd:
                    53:b0:a0:cd:13:50:f7:ee:b9:11:0f:f5:51:a0:23:
                    52:09:67:4a:36:2e:be:9e:f7:11:48:68:0c:9c:22:
                    b9:da:a1:b4:0e:d0:61:ef:48:c9:12:ed:14:9a:27:
                    c6:cd:ac:01:2e:1e:f3:8a:76:e3:b7:a2:52:dc:be:
                    e4:49:cf:3d:2c:66:34:4d:26:cb:5a:33:12:73:0b:
                    b0:c0:ef:0f:4b:54:e0:71:f7:08:dc:81:f8:9d:21:
                    fb:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:EA:C7:E8:C2:43:F1:C3:6D:8C:6C:58:AC:FB:30:6F:04:58:B1:28
            X509v3 Authority Key Identifier:
                keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:ab:28:40:b7:c5:12:c4:cf:a0:f3:e1:d6:2c:4b:24:be:42:
         b1:66:86:c3:d8:62:46:a2:16:f7:7b:03:a7:56:ac:bb:da:53:
         32:3b:8d:ad:1b:e3:a6:a2:d4:f3:5b:7f:e3:e3:62:70:7c:06:
         6a:af:be:5c:00:d5:59:aa:77:20:c6:d3:b4:ea:c7:43:61:91:
         5f:b8:04:57:cd:7a:28:ef:da:e8:1a:94:72:d0:b5:b4:e4:73:
         0e:2e:7b:ae:18:5e:21:ab:5d:f9:c4:b7:dd:35:91:fe:78:47:
         97:06:2d:ac:b4:aa:db:f7:58:c4:d3:93:1a:87:19:b0:f4:0d:
         b4:78:32:7f:fc:b4:09:5c:78:06:28:35:85:c0:c4:9f:94:10:
         55:c7:2c:e8:0f:4a:c4:20:8e:0a:5f:42:c7:50:aa:eb:76:00:
         b7:cf:7e:5c:a9:bf:2e:d6:df:e6:57:46:e9:f6:b4:5b:dd:9f:
         4e:8d:22:b6:21:0e:26:ed:2a:3f:0a:24:cc:0e:e7:a1:8b:32:
         15:b3:31:48:aa:69:c9:35:29:8c:7b:b0:fb:bd:27:8e:48:67:
         ee:d2:84:a1:54:a6:85:38:41:74:9b:a5:7f:f6:8e:73:3f:44:
         23:03:fa:6e:22:69:27:e6:71:f7:e3:de:c5:0b:a2:52:43:52:
         60:cd:64:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----