Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft
File:                     g_65rfwvZVEiBb1IETJMnX9qAiI.mft (raw, json)
Hash identifier:          VfX7D4YjIYoAY8woC2V84CwvjJ1A9+UKp0yMIwng7Lc=
Subject key identifier:   00:60:19:80:33:75:13:CD:2E:12:59:CD:8D:E7:73:A0:9A:45:D1:21
Authority key identifier: 83:FE:B9:AD:FC:2F:65:51:22:05:BD:48:11:32:4C:9D:7F:6A:02:22
Certificate issuer:       /CN=83feb9adfc2f65512205bd4811324c9d7f6a0222
Certificate serial:       0197C614286CE4B5AB9E8EE08180C9052BA6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/g_65rfwvZVEiBb1IETJMnX9qAiI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft
Manifest number:          03B6
Signing time:             Tue 01 Jul 2025 13:01:39 +0000
Manifest this update:     Tue 01 Jul 2025 13:01:39 +0000
Manifest next update:     Wed 02 Jul 2025 13:01:39 +0000
Files and hashes:         1: g_65rfwvZVEiBb1IETJMnX9qAiI.crl (hash: SjR0ueoC2WjyRiR8tiOGRVu3odEVbZ6xHLZ3NumjKY0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/g_65rfwvZVEiBb1IETJMnX9qAiI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 02 Jul 2025 08:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c6:14:28:6c:e4:b5:ab:9e:8e:e0:81:80:c9:05:2b:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=83feb9adfc2f65512205bd4811324c9d7f6a0222
        Validity
            Not Before: Jul  1 13:01:39 2025 GMT
            Not After : Jul  2 13:01:39 2025 GMT
        Subject: CN=00601980337513cd2e1259cd8de773a09a45d121
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:5a:1f:9b:61:89:83:31:30:d0:6b:e9:0d:a5:
                    eb:76:dc:07:6c:b8:57:86:26:42:83:12:d4:ed:a3:
                    f6:59:aa:49:4d:96:55:c7:ca:87:1a:46:a6:b4:56:
                    26:7b:71:88:0d:1f:7e:71:eb:8b:fe:ea:24:5d:63:
                    1e:69:6f:49:8d:fa:77:ca:f7:66:73:34:ec:6e:45:
                    77:75:9c:6e:9a:30:db:8c:03:fc:15:a8:55:98:7e:
                    a3:a4:a8:b8:9c:ea:02:79:b2:e0:a7:0d:fa:0a:54:
                    73:9a:4f:41:6d:cf:be:b1:86:b8:6e:46:32:d7:87:
                    76:1d:fa:b2:7b:d1:80:5f:94:3c:cd:5d:b0:26:d9:
                    e1:15:08:2e:ba:7c:98:5f:67:c5:22:7b:26:99:12:
                    34:47:92:2f:a7:ce:81:e1:92:d7:0d:c6:08:ed:68:
                    b1:e4:e1:e5:80:fe:98:3f:66:f9:60:69:a4:a2:c2:
                    d4:e7:54:17:63:08:0a:a1:b6:81:74:a7:71:a2:28:
                    c2:ee:fb:88:f5:6c:38:ee:a7:5d:c8:b9:40:0f:33:
                    15:06:4d:e5:29:38:9a:ce:6f:20:98:06:82:5b:31:
                    9a:71:4e:73:15:26:82:2e:ed:1c:11:cd:9c:2c:a3:
                    46:3f:cf:08:73:74:49:69:aa:ae:a1:8d:03:b9:11:
                    72:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:60:19:80:33:75:13:CD:2E:12:59:CD:8D:E7:73:A0:9A:45:D1:21
            X509v3 Authority Key Identifier:
                keyid:83:FE:B9:AD:FC:2F:65:51:22:05:BD:48:11:32:4C:9D:7F:6A:02:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g_65rfwvZVEiBb1IETJMnX9qAiI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:12:b0:39:0d:2b:0b:46:3a:20:3f:48:6e:e9:14:54:b9:6e:
         14:bf:0e:5b:67:3b:f6:fa:69:01:3d:f1:9d:be:f5:d6:50:70:
         c1:9c:65:7e:2a:7b:7a:e9:f0:24:20:4a:64:86:2c:9a:b0:2c:
         52:e7:42:59:cf:af:ce:a8:7c:eb:f9:02:da:c8:f7:1e:09:35:
         b7:39:87:e0:f4:f8:53:b8:cd:cc:64:6f:d0:b7:dd:6a:65:0d:
         cb:cf:a2:3f:5d:f5:82:58:50:db:49:8d:a2:14:48:a3:5a:45:
         44:f3:74:2f:47:db:a0:a5:c2:7e:6d:f8:8b:91:6c:75:53:68:
         77:d8:56:c7:96:8a:6c:26:26:d7:b6:7c:76:22:cf:e5:4f:c0:
         d1:93:a3:8b:23:9f:17:2f:32:df:fd:e4:05:5a:f2:ef:6b:eb:
         9d:bf:69:c0:f3:f5:98:b4:6b:42:29:f4:34:96:53:7b:c0:bb:
         80:8d:2c:ee:8d:4a:cd:7f:cd:2f:60:8a:2f:77:3e:a5:fe:16:
         42:99:6b:e6:10:4d:ea:eb:84:b8:da:5b:84:a0:ac:49:44:a6:
         ae:76:d8:d9:87:db:6e:7c:11:b6:d3:cf:07:55:95:de:02:21:
         e4:33:4e:7a:72:35:84:a9:39:8d:c1:89:d8:53:5b:36:8d:0b:
         55:78:0a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----