Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
File:                     sxwNSGRgtxY3A-X_TYre2XiIx00.mft (raw, json)
Hash identifier:          zRt3k7BhyDpkFumveHRNiimKubnvMLvw2IHSiMrR1/I=
Subject key identifier:   F4:13:E0:5F:6A:C4:53:F1:27:CC:7E:C8:73:7D:C0:80:80:0F:D2:BF
Authority key identifier: B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D
Certificate issuer:       /CN=b31c0d486460b7163703e5ff4d8aded97888c74d
Certificate serial:       0197B7EAC1A66877747B414B98E78542EC44
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
Manifest number:          076A
Signing time:             Sat 28 Jun 2025 19:01:44 +0000
Manifest this update:     Sat 28 Jun 2025 19:01:44 +0000
Manifest next update:     Sun 29 Jun 2025 19:01:44 +0000
Files and hashes:         1: sxwNSGRgtxY3A-X_TYre2XiIx00.crl (hash: E6ZtH5GizLxu5G4KD01zeWJXuiebyHa3xneLbrDO6vk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 19:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:ea:c1:a6:68:77:74:7b:41:4b:98:e7:85:42:ec:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b31c0d486460b7163703e5ff4d8aded97888c74d
        Validity
            Not Before: Jun 28 19:01:44 2025 GMT
            Not After : Jun 29 19:01:44 2025 GMT
        Subject: CN=f413e05f6ac453f127cc7ec8737dc080800fd2bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:e1:b0:3d:1d:0a:d2:46:1b:bb:86:4f:90:07:
                    0f:83:9b:ac:24:de:40:06:46:5d:26:23:f4:d3:00:
                    01:c4:86:36:f5:cd:62:f0:81:9a:ed:a5:d6:9d:a5:
                    8c:b7:1a:ab:f8:60:23:de:e6:4b:b5:45:25:93:95:
                    8a:e2:0c:44:8a:81:07:94:57:e8:83:69:37:7a:03:
                    03:f2:f9:17:bd:57:31:4e:10:3a:b6:d0:ed:9d:87:
                    0a:f7:c3:e8:a4:37:fa:7b:6d:82:84:0d:2c:e6:53:
                    33:7b:ca:e2:47:77:c6:4f:c0:50:c1:af:32:74:c5:
                    d8:d2:af:f1:c1:41:b7:af:06:ad:3f:71:28:e2:7a:
                    a1:ce:24:d7:4d:53:9c:89:17:8e:92:ac:ce:80:59:
                    47:82:fe:39:ac:39:97:ef:65:62:9b:c9:b7:60:a1:
                    97:3f:aa:39:d7:7f:84:fb:33:bd:71:d0:58:e1:0d:
                    ab:ef:e4:53:ef:b6:57:83:44:29:18:5d:5c:5a:43:
                    2b:11:b0:96:62:3a:4c:75:58:c1:fe:82:7a:d2:12:
                    a1:39:f7:41:85:b1:2a:46:87:cc:23:5c:ec:d4:2b:
                    91:e0:cc:57:f2:0b:a5:ae:1f:1d:73:4f:7d:f3:e1:
                    0a:bd:c0:1d:d4:6f:fa:1c:b9:42:c3:e9:8e:a1:82:
                    c3:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:13:E0:5F:6A:C4:53:F1:27:CC:7E:C8:73:7D:C0:80:80:0F:D2:BF
            X509v3 Authority Key Identifier:
                keyid:B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:38:45:eb:90:20:c1:1c:60:59:50:69:86:80:f1:cd:74:d6:
         96:37:35:c1:17:dd:db:90:07:98:cb:f1:0c:6a:cc:09:3b:9c:
         69:7b:c5:5b:29:d5:1a:13:87:25:b9:2d:7b:a8:e4:6f:4b:09:
         fe:21:48:c1:2d:f6:2c:cc:b4:51:b2:63:7a:68:cb:a3:96:eb:
         f3:9b:92:e0:f2:8e:12:49:1e:b2:05:10:d5:87:44:de:d3:85:
         4b:00:bb:54:18:35:3a:bc:e6:e4:ed:65:9b:6f:ab:99:47:d7:
         0b:d0:3b:3b:30:4f:e9:f9:e4:35:4b:7a:4e:ac:44:8a:75:24:
         5d:f0:a6:5e:95:06:dc:24:40:ff:32:aa:93:fc:54:27:56:de:
         e9:7f:0e:ed:1a:c9:ee:ce:d5:7a:c5:a8:4b:31:51:a1:75:f7:
         5c:98:b5:5e:8d:36:a3:e6:d8:09:d7:d1:c7:40:1d:17:81:2d:
         13:c5:04:cc:68:cf:26:42:7a:c1:5d:2c:45:31:1d:33:fc:65:
         e5:e9:d6:57:9d:1b:a5:d4:2f:a4:d2:de:3b:29:cc:48:23:48:
         dd:db:fb:cc:8a:60:b8:e8:f9:37:ea:c3:8f:d9:cd:7e:97:3c:
         44:51:2f:ee:88:28:2e:60:55:67:cf:ea:1f:f2:82:17:5c:ba:
         2b:12:88:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----