Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
File:                     G_A9uL9mABk75I-xDm4xa4tfiOM.mft (raw, json)
Hash identifier:          YCT7szUbX/0CAXw8jSy48tMq0gl1CIvAp+1D5XYFYLA=
Subject key identifier:   39:98:ED:BE:48:55:60:43:F2:3A:62:9B:73:54:40:2C:97:7B:7C:87
Authority key identifier: 1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3
Certificate issuer:       /CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3
Certificate serial:       0197B9D92B673D7F81D5A97253247F45182D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
Manifest number:          04FE
Signing time:             Sun 29 Jun 2025 04:01:46 +0000
Manifest this update:     Sun 29 Jun 2025 04:01:46 +0000
Manifest next update:     Mon 30 Jun 2025 04:01:46 +0000
Files and hashes:         1: G_A9uL9mABk75I-xDm4xa4tfiOM.crl (hash: jRqsjLk9vwHKQOHb5cSVM8GklWo3HCPTS9uatfm/eTo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 04:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:d9:2b:67:3d:7f:81:d5:a9:72:53:24:7f:45:18:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3
        Validity
            Not Before: Jun 29 04:01:46 2025 GMT
            Not After : Jun 30 04:01:46 2025 GMT
        Subject: CN=3998edbe48556043f23a629b7354402c977b7c87
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:4d:78:86:66:ef:38:4a:23:ad:d0:ae:2b:d9:
                    6b:ce:92:2d:31:dd:a4:8a:9b:2f:bd:3d:53:68:9e:
                    5b:30:80:28:df:c6:a3:d2:f2:f3:2a:e6:b5:94:3a:
                    00:06:54:fe:ad:f9:02:c3:c8:0f:54:16:cd:e4:61:
                    18:f8:b6:ad:8c:e8:9f:d1:75:d4:46:9e:2b:41:5f:
                    7d:54:d4:bf:8d:0e:90:9f:0d:35:d5:77:25:26:c3:
                    b6:06:73:7b:a7:76:df:1f:a2:ef:cc:b6:a5:15:e3:
                    16:0a:8d:ee:81:87:cf:52:73:b0:9b:03:3b:83:77:
                    f5:e7:d1:aa:79:54:02:17:1d:6a:ea:ce:7b:d4:7b:
                    76:62:3b:33:c2:07:86:db:69:83:08:73:83:04:af:
                    d7:f9:e3:6a:25:ec:55:2e:ea:24:6d:2e:f1:8b:c4:
                    e3:a8:0c:4c:7e:10:ca:fc:48:27:90:67:42:4d:7e:
                    87:fd:ee:50:3d:4b:e3:f8:df:27:f6:61:e9:41:d9:
                    71:55:b3:dd:de:09:f8:d8:7b:49:12:cb:d6:34:0e:
                    29:72:06:e1:42:ee:64:4e:cc:69:b2:3f:bc:9f:bf:
                    88:24:e0:f6:5e:e2:6c:ce:17:3f:3a:c9:7f:4d:7b:
                    00:ab:83:16:3e:31:0c:5c:a4:75:df:be:91:b5:c2:
                    73:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:98:ED:BE:48:55:60:43:F2:3A:62:9B:73:54:40:2C:97:7B:7C:87
            X509v3 Authority Key Identifier:
                keyid:1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:91:45:d3:07:15:e0:b4:07:85:3c:5a:6d:c9:3d:1b:11:bd:
         7f:61:3f:c9:2e:ce:0a:45:be:a9:db:51:fd:0e:46:15:a0:6a:
         7f:0f:c0:71:be:05:94:a8:e1:e8:33:6e:fe:be:a8:a8:10:c6:
         6e:dd:ce:59:2d:56:c3:c5:25:f2:86:f4:63:f3:49:f6:2e:f5:
         1d:5e:ac:10:c8:30:a0:fa:db:59:2c:61:77:12:ea:55:f1:73:
         1c:65:79:47:f2:a4:6f:22:da:6d:8e:fd:cf:41:7b:75:7b:5a:
         0d:4a:b5:23:16:4b:50:e4:bd:b1:72:9e:c3:72:c2:be:15:9d:
         70:0a:47:0c:b5:ee:fc:d0:40:fa:eb:7c:a5:4c:05:47:77:56:
         a1:12:0a:0b:0a:26:30:c6:63:e8:77:ba:9b:55:b7:b3:1a:f7:
         48:33:07:d2:60:6d:51:c0:ea:d0:e3:1f:3e:f3:3a:a1:c7:57:
         8e:c2:78:69:0e:16:6e:f9:be:75:4f:a5:59:26:8e:cc:31:14:
         b3:a8:75:40:7e:a2:a2:b2:60:98:10:ad:17:e6:35:d2:b7:17:
         c5:50:63:25:f9:56:10:e6:24:ce:7b:92:59:98:0b:3f:1d:78:
         64:cd:74:ae:d7:29:79:8d:c4:e1:02:cc:a9:19:ef:86:9f:ca:
         08:61:cd:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----