Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
File:                     EDfew086MutlAvFmKoKiD4teohw.mft (raw, json)
Hash identifier:          AX56P6q/lPh0dqQ9pvKoMGlct24Lbc2ZjIw8i8t/Eyk=
Subject key identifier:   6B:71:E1:2F:7A:81:4B:0A:55:9B:CD:72:2F:47:1E:6E:0F:30:8B:CD
Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C
Certificate issuer:       /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
Certificate serial:       0197B70EDE6A357B39FCE26BA6D2A38D8A97
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
Manifest number:          15B3
Signing time:             Sat 28 Jun 2025 15:01:34 +0000
Manifest this update:     Sat 28 Jun 2025 15:01:34 +0000
Manifest next update:     Sun 29 Jun 2025 15:01:34 +0000
Files and hashes:         1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: EbdTCPjX7h3ScPWke+SGXjfS6PmR+G/NysXQ1xA48yo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:0e:de:6a:35:7b:39:fc:e2:6b:a6:d2:a3:8d:8a:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
        Validity
            Not Before: Jun 28 15:01:34 2025 GMT
            Not After : Jun 29 15:01:34 2025 GMT
        Subject: CN=6b71e12f7a814b0a559bcd722f471e6e0f308bcd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:94:f2:00:74:69:3f:e2:03:b8:58:9e:16:f1:
                    97:66:76:75:46:08:45:19:cc:35:f9:1e:f5:19:8a:
                    0b:27:ec:a0:a9:40:d6:e4:11:ab:02:ab:be:06:96:
                    af:df:c7:60:c3:af:37:09:31:a4:f5:dd:b8:b6:27:
                    41:31:7e:d0:86:74:53:6c:f2:15:0f:68:3b:4b:b9:
                    bf:d7:d7:3a:8f:4e:b4:f9:ee:05:12:bb:1c:4c:48:
                    87:bc:f8:93:0e:a9:80:28:e8:d9:3a:59:80:9d:94:
                    75:a8:9e:8c:76:d0:53:c6:2c:3f:75:a9:86:3b:62:
                    95:42:b3:55:72:24:da:9c:e8:0e:5b:1a:3c:4c:15:
                    cd:76:e6:c5:31:92:6f:2c:b9:54:5a:9a:ab:b7:7e:
                    9e:a3:ef:5d:8a:c4:98:84:a0:cd:f4:f3:e0:59:7e:
                    8c:e5:05:ef:c2:eb:f0:24:0f:c9:3d:df:0a:89:fa:
                    e4:e2:8f:63:cf:c7:1f:d6:db:3e:6e:48:bc:55:67:
                    b3:f5:44:c7:08:18:14:67:11:d7:40:cf:4c:20:67:
                    c7:0c:02:0f:05:b3:8b:e0:b0:eb:25:49:3c:ba:88:
                    c0:87:58:2c:98:58:aa:c0:34:28:fa:ae:6b:ea:b9:
                    8d:66:35:35:d4:78:ef:8d:a1:37:2d:48:bd:4b:f9:
                    fd:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:71:E1:2F:7A:81:4B:0A:55:9B:CD:72:2F:47:1E:6E:0F:30:8B:CD
            X509v3 Authority Key Identifier:
                keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:05:85:c3:d3:0e:cc:c3:65:55:8f:93:8b:bb:e1:be:2c:f9:
         7d:8c:37:31:cb:22:70:16:2b:d8:6c:b3:d4:46:5e:ac:36:c9:
         44:a1:53:fe:02:0c:81:ab:02:df:e8:ba:54:55:31:a4:b3:c5:
         d1:a7:d2:df:1c:b4:cf:b8:88:3e:8d:e6:34:a9:9f:b7:1c:39:
         8d:fc:7f:25:f6:07:8c:11:e1:dd:4f:0a:3f:07:c4:f1:15:ca:
         b9:bc:c7:81:b4:a7:00:d2:0c:f5:3d:c2:b9:38:50:cf:6e:ac:
         61:68:27:af:a3:71:94:18:2c:5d:1f:01:0c:c0:cd:93:5c:7e:
         8c:e0:ef:03:1a:af:b3:ad:db:4d:93:77:8b:61:ed:6d:0f:02:
         2a:19:dd:52:6a:ae:f6:ae:8e:db:7a:75:ca:61:aa:39:52:e1:
         73:23:be:b8:d9:92:d5:02:01:38:b0:97:d8:03:44:ac:0e:6c:
         41:68:9b:5d:18:a5:81:d3:ed:1d:36:9c:48:1c:61:c9:a4:d2:
         c9:ee:f3:56:b4:c4:5f:48:9c:25:59:5c:34:21:e2:50:e6:61:
         c0:ce:d7:78:dc:f2:f5:60:29:2c:10:0e:e0:7c:38:fb:76:a5:
         43:aa:6c:c9:74:89:3e:87:fa:2d:b4:e3:c8:fa:69:ba:26:2b:
         f9:34:1f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----