Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
File:                     T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft (raw, json)
Hash identifier:          FAnHFkNnOf+xbOQwQ3HE413vN9qlmk4KWVCEzIwlQtA=
Subject key identifier:   F0:8D:06:D6:BB:43:E0:72:20:6D:44:BE:EF:50:4B:93:B6:7E:D7:E0
Authority key identifier: 4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E
Certificate issuer:       /CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
Certificate serial:       0196B6A255C93FC87B73AED7A2DEB5AD91B6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
Manifest number:          0615
Signing time:             Fri 09 May 2025 20:00:14 +0000
Manifest this update:     Fri 09 May 2025 20:00:14 +0000
Manifest next update:     Sat 10 May 2025 20:00:14 +0000
Files and hashes:         1: T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl (hash: 7NUPryf/i1k0N0vqdKl/fmBrpYQeA44DG9ISjw5izDk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 10 May 2025 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b6:a2:55:c9:3f:c8:7b:73:ae:d7:a2:de:b5:ad:91:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
        Validity
            Not Before: May  9 20:00:14 2025 GMT
            Not After : May 10 20:00:14 2025 GMT
        Subject: CN=f08d06d6bb43e072206d44beef504b93b67ed7e0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:52:bc:87:f4:3e:1e:15:82:7d:cb:66:c7:1c:
                    ef:aa:30:38:a7:39:a5:dc:b5:6d:a6:a6:45:cc:fb:
                    14:b3:4e:d4:af:22:4b:b1:05:e3:28:b1:b9:f9:b7:
                    a7:09:d9:18:f6:72:23:ed:f4:c7:52:0f:08:93:ca:
                    db:d8:3f:15:af:37:dd:e4:e8:ea:65:df:9f:a8:d3:
                    19:9b:7b:85:dd:4d:9e:91:be:4d:b6:df:70:d0:c3:
                    ac:39:bf:14:a7:74:b8:07:bd:08:25:9f:be:3d:f8:
                    72:4f:76:b0:5a:7d:ff:25:ce:8f:14:27:2d:15:ef:
                    3d:e7:ac:8b:e7:83:b0:49:18:b7:c8:cb:3d:00:85:
                    fc:6a:1f:53:bc:e5:75:9f:48:59:7a:30:6a:8f:f7:
                    83:a6:d5:cd:89:05:f8:d5:65:42:cb:c4:a1:4f:ad:
                    2f:a8:ed:39:e3:23:ea:eb:4d:f4:66:c2:32:93:90:
                    60:e8:75:dd:16:47:b1:75:5e:6b:7a:52:7c:7d:54:
                    05:7c:ec:6c:b8:aa:a2:a8:ea:11:53:8c:cb:24:ce:
                    b6:60:15:fa:ab:f0:34:55:72:1f:70:c1:b7:42:46:
                    72:8a:6e:0c:c5:38:f0:cb:af:ff:27:eb:d5:6b:c0:
                    af:5b:6c:d1:06:db:df:de:2a:ee:a2:d9:a5:30:0f:
                    8e:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:8D:06:D6:BB:43:E0:72:20:6D:44:BE:EF:50:4B:93:B6:7E:D7:E0
            X509v3 Authority Key Identifier:
                keyid:4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:4c:e0:87:d4:b5:4a:08:56:88:43:10:6d:9b:b0:6e:1e:77:
         4c:9b:9e:8d:8c:82:67:ea:99:cb:c8:11:e6:a0:ba:5f:14:9b:
         15:06:fe:96:75:c8:67:17:89:26:3b:02:54:84:cf:06:c1:ab:
         c0:d6:3c:45:9d:3a:32:49:ae:15:7c:cd:f3:99:7e:fd:cd:b5:
         a2:f6:40:ce:d4:8b:03:01:e8:35:78:d4:ab:43:39:25:70:33:
         de:f5:6b:37:2d:e9:cb:38:a4:91:fa:e4:57:79:96:e0:9d:f4:
         10:35:27:6c:a8:4e:16:1d:ad:57:c5:0a:a4:f0:da:08:89:09:
         06:c8:95:d2:90:07:cd:56:71:98:0b:49:15:02:ca:0a:aa:18:
         5e:22:ce:a3:8c:61:23:82:35:8a:ba:7d:e7:c2:ba:c7:8e:32:
         af:79:5e:76:cb:76:08:de:81:3b:17:91:72:7d:e3:77:12:98:
         d7:f2:e7:37:5e:a3:90:94:79:cc:3f:a2:9d:2b:3b:9d:bb:60:
         d1:06:67:ed:10:76:3e:0e:d3:92:d3:31:26:3a:51:97:15:bd:
         18:b7:11:d6:72:83:41:04:11:8d:bf:37:86:00:19:ab:c8:ee:
         e7:9f:d8:03:14:d9:f1:59:9b:c1:e5:bf:34:91:1f:b1:9e:48:
         d9:ed:67:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----