Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
File:                     v5ulghwIWljj4dM6TvQem3YQXuU.mft (raw, json)
Hash identifier:          pIfftKc+trRFnJBh+H7XoC+8pXRQgz7cZKZTOY+vJe8=
Subject key identifier:   D9:DD:71:34:00:7B:24:8A:7A:28:2F:1B:F8:0F:95:06:2F:78:D9:93
Authority key identifier: BF:9B:A5:82:1C:08:5A:58:E3:E1:D3:3A:4E:F4:1E:9B:76:10:5E:E5
Certificate issuer:       /CN=bf9ba5821c085a58e3e1d33a4ef41e9b76105ee5
Certificate serial:       0197B6A0677AEAC5080088D77B68650E09BF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
Manifest number:          1179
Signing time:             Sat 28 Jun 2025 13:00:54 +0000
Manifest this update:     Sat 28 Jun 2025 13:00:54 +0000
Manifest next update:     Sun 29 Jun 2025 13:00:54 +0000
Files and hashes:         1: v5ulghwIWljj4dM6TvQem3YQXuU.crl (hash: qiFZfpRRSDxpNp/n3RUh327jFQD34SzEPWVN4sKUXN0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a0:67:7a:ea:c5:08:00:88:d7:7b:68:65:0e:09:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bf9ba5821c085a58e3e1d33a4ef41e9b76105ee5
        Validity
            Not Before: Jun 28 13:00:54 2025 GMT
            Not After : Jun 29 13:00:54 2025 GMT
        Subject: CN=d9dd7134007b248a7a282f1bf80f95062f78d993
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:04:d8:93:cc:74:7a:45:1c:f2:ec:2d:de:61:
                    9f:25:6f:82:1f:27:24:e6:b0:7f:9f:ad:0c:7b:1c:
                    dc:c8:eb:16:b7:b8:74:e1:5b:dc:45:2b:a0:ae:29:
                    c7:84:55:6c:6f:a3:34:d5:e8:41:5b:68:d3:4c:c5:
                    1a:30:c0:a4:e6:51:44:5e:12:80:ee:29:f4:86:00:
                    87:66:f3:ea:d9:08:65:f0:8c:04:41:7d:40:51:24:
                    16:39:da:9f:ad:59:ac:0b:52:a5:ee:6f:91:be:34:
                    9a:1e:28:a7:ed:ee:12:ad:47:24:e3:15:3b:f0:e5:
                    f7:1f:55:aa:c5:45:81:fc:12:39:d0:39:27:9d:2b:
                    8d:5e:2a:d3:4f:3c:6b:e2:0b:2b:cf:0e:b8:b6:ad:
                    5d:c8:16:25:be:f9:f1:3e:c0:72:0c:4e:b0:a3:c8:
                    60:b6:48:90:95:8e:c0:a5:2b:57:98:8c:eb:64:82:
                    a1:87:5c:e8:38:7c:1a:28:ec:4b:e5:e5:5a:20:41:
                    00:b2:da:1a:3a:39:14:68:b7:b4:13:5f:fc:d1:90:
                    f1:d1:3e:e8:9d:f1:42:64:63:06:33:6c:98:de:f2:
                    cf:2f:53:a6:01:87:70:30:8b:77:32:c4:c8:0d:9d:
                    6e:88:80:b7:5d:b6:c1:ec:02:9e:a8:d7:1b:98:b3:
                    8e:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:DD:71:34:00:7B:24:8A:7A:28:2F:1B:F8:0F:95:06:2F:78:D9:93
            X509v3 Authority Key Identifier:
                keyid:BF:9B:A5:82:1C:08:5A:58:E3:E1:D3:3A:4E:F4:1E:9B:76:10:5E:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:30:54:4a:e8:cf:e0:5c:03:e1:a7:e7:7b:85:71:00:80:f4:
         c4:a5:64:87:bd:12:99:9b:c3:a3:55:7f:15:1d:0b:e7:8c:86:
         cf:21:06:49:af:a0:03:5a:d0:80:bd:b0:16:19:64:fe:54:70:
         c3:f6:ce:02:45:4a:2c:24:f6:5d:3b:77:c7:35:3e:6c:56:eb:
         94:a9:95:db:d1:ca:3f:2c:8c:e6:85:40:ce:bf:1c:88:69:88:
         4b:6f:ee:8d:88:fa:9f:ec:8b:ac:60:b4:d9:f3:3e:f7:8b:91:
         45:32:89:f0:77:61:68:97:4f:7c:91:01:65:60:50:03:33:6f:
         be:06:3e:33:64:75:4a:1a:78:69:33:e8:51:a8:c1:29:1e:5e:
         af:2d:50:f9:d6:82:f4:60:b1:09:cf:aa:bd:c0:e5:75:73:58:
         97:61:8e:9a:31:b9:73:a2:3a:a8:9a:54:09:67:42:10:8b:ce:
         6b:4b:54:fe:e1:44:a0:c5:43:12:be:63:b0:01:52:a1:b7:ca:
         d4:d9:78:b9:1d:d4:46:49:15:53:9d:46:dd:e1:07:b5:9e:ce:
         22:9d:18:20:60:b5:e6:2c:24:dc:21:fc:a3:f2:65:4a:5a:86:
         aa:bf:20:07:da:9c:e4:a0:43:f2:08:40:a4:0a:b6:8a:9b:eb:
         13:f2:fc:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----