Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
File:                     0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json)
Hash identifier:          mi7aEjvntjz28CrRwSdhI1C7XX9jNLVYCeOK5H4Mk4A=
Subject key identifier:   2A:5A:64:43:63:44:EF:A7:4E:8B:65:F2:90:57:4D:9A:E9:3F:6F:1B
Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
Certificate issuer:       /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Certificate serial:       0197B77CD09953860EB485D1D752C2B87246
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
Manifest number:          15B0
Signing time:             Sat 28 Jun 2025 17:01:39 +0000
Manifest this update:     Sat 28 Jun 2025 17:01:39 +0000
Manifest next update:     Sun 29 Jun 2025 17:01:39 +0000
Files and hashes:         1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: //GM0r4Z2tZNSkyeMGu9it337qglvgaxVnBJzvBI+Bg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 17:01:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:7c:d0:99:53:86:0e:b4:85:d1:d7:52:c2:b8:72:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
        Validity
            Not Before: Jun 28 17:01:39 2025 GMT
            Not After : Jun 29 17:01:39 2025 GMT
        Subject: CN=2a5a64436344efa74e8b65f290574d9ae93f6f1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:91:ef:58:71:04:59:b7:1a:b7:f9:13:e0:7e:
                    6f:73:7c:3b:5e:8f:ef:49:44:1e:63:8f:05:2a:9b:
                    de:6f:61:63:52:13:3f:98:05:f8:2a:77:04:a0:d7:
                    71:7c:ea:e5:d4:b8:bc:b7:28:64:a0:56:02:c8:92:
                    12:d5:12:ec:7d:0e:93:1d:6b:dc:b2:ee:ba:8c:33:
                    54:90:45:a1:1a:3a:3c:91:df:9e:b9:a7:e0:39:84:
                    c6:d6:84:de:34:aa:cc:9f:5b:93:48:4a:6a:77:39:
                    53:f3:28:3c:f1:a5:cc:92:fc:91:d4:63:98:23:e5:
                    26:59:94:55:4b:ec:14:e1:bb:3b:9e:d8:18:f1:73:
                    98:55:e2:59:4d:6d:62:bd:da:d9:76:c0:6a:fa:f0:
                    51:eb:08:16:64:47:f9:6f:72:92:ad:e1:69:cc:d2:
                    81:b8:8c:d8:a4:6d:72:66:8d:0c:a2:2e:8a:e7:29:
                    38:96:d8:e8:1e:a5:1c:7d:09:f2:1c:c4:a4:7d:be:
                    90:ee:05:c0:11:6f:df:83:2e:10:a6:45:31:f5:b8:
                    43:61:28:ea:08:37:32:d1:ff:7e:b0:70:40:28:4d:
                    19:2d:fa:52:d2:42:80:4b:a4:76:a8:7f:be:65:0c:
                    1d:3d:28:88:dc:bd:6b:52:95:e6:9d:95:0c:57:1c:
                    99:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:5A:64:43:63:44:EF:A7:4E:8B:65:F2:90:57:4D:9A:E9:3F:6F:1B
            X509v3 Authority Key Identifier:
                keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:72:85:09:bd:ba:d5:e2:91:70:19:62:ef:7e:1a:67:e4:8d:
         ed:a4:5d:1b:48:7c:20:ad:e5:a2:af:a1:9d:0f:e1:82:9c:84:
         51:99:ed:a7:33:62:8f:45:b3:86:b3:75:a3:0e:4e:96:3f:06:
         d9:45:de:c7:bf:fe:56:ec:5b:e2:ea:7e:82:6a:df:32:84:de:
         2e:54:5d:9c:29:77:c2:14:c0:c1:ae:29:36:67:e0:13:fd:04:
         98:b8:11:17:02:67:8c:d3:d3:8d:29:10:8b:c2:11:de:cf:f8:
         4b:32:43:b7:eb:2f:7d:98:ed:3f:41:44:0f:e9:12:b6:13:7a:
         f0:d6:7f:46:25:c8:55:31:77:51:21:37:e5:4a:63:22:25:5f:
         5d:59:6c:3d:b1:89:c0:e5:3c:e4:24:83:0a:cf:d2:73:04:a6:
         2d:5a:9d:c9:3a:5c:6e:be:71:20:0d:14:27:3e:65:26:a6:a2:
         b0:48:8f:cf:06:30:43:29:cc:ce:6c:23:c3:de:c0:ea:91:c4:
         dd:b5:1e:7b:9f:fe:7a:57:01:eb:9b:d1:43:0d:98:03:09:5f:
         29:20:10:f6:33:b4:77:26:9e:6f:a8:56:b3:4a:bd:2f:80:45:
         6b:e9:b0:96:fb:f4:dc:c3:4d:bf:56:c0:79:e5:60:92:ac:34:
         1b:b5:48:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----