Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
File:                     uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json)
Hash identifier:          n9eJGsnjpPuTviXN1blA4UuahUQFcY0ASHUjLbWizFM=
Subject key identifier:   77:4C:75:7C:BC:94:FC:1D:E1:9B:4B:C5:DF:FB:D6:46:11:17:E8:46
Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
Certificate issuer:       /CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Certificate serial:       0197C0B638E3D83080E97FB813B6778574AB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
Manifest number:          0553
Signing time:             Mon 30 Jun 2025 12:00:57 +0000
Manifest this update:     Mon 30 Jun 2025 12:00:57 +0000
Manifest next update:     Tue 01 Jul 2025 12:00:57 +0000
Files and hashes:         1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: +aHrTSLg3OjJgOene1qTfwOAMiEJs68OeVd+H6hBUiY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 01 Jul 2025 12:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c0:b6:38:e3:d8:30:80:e9:7f:b8:13:b6:77:85:74:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa
        Validity
            Not Before: Jun 30 12:00:57 2025 GMT
            Not After : Jul  1 12:00:57 2025 GMT
        Subject: CN=774c757cbc94fc1de19b4bc5dffbd6461117e846
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:68:2a:50:a3:25:12:f6:c4:d1:97:a9:14:21:
                    a5:92:73:02:51:7d:50:67:7e:c6:ca:97:42:31:0f:
                    9e:7b:1b:38:60:fd:12:42:b7:82:4b:e0:5b:93:1f:
                    35:08:7e:51:5c:4c:79:e0:73:a3:d3:71:f5:d6:d7:
                    91:d4:64:06:a2:cc:f5:93:90:21:90:82:9b:db:83:
                    a4:19:fb:5e:64:e2:18:a4:f6:2a:49:63:47:9e:27:
                    07:5d:d7:29:b0:06:59:51:47:cd:16:21:6c:08:cb:
                    3e:63:02:0d:ab:81:1f:df:00:7d:8b:e8:fc:72:39:
                    34:44:50:9b:0d:fc:f1:a6:bf:93:ba:57:dc:0d:f9:
                    91:2f:01:db:31:16:6f:08:27:f7:68:a3:3a:0e:69:
                    39:a2:1e:ee:4c:90:3a:6d:80:ef:b0:89:46:a1:35:
                    62:d2:18:91:3b:4f:cd:63:82:6b:57:ab:49:31:ac:
                    a9:fd:2f:36:19:af:a5:6c:04:db:84:7b:49:65:84:
                    fb:eb:cb:81:79:d5:10:50:0b:03:cd:74:4e:0f:5c:
                    42:16:5e:b1:17:09:fe:d4:98:94:7f:60:cb:dc:65:
                    a0:6d:d7:c0:d7:a0:42:7e:0c:24:d0:fa:9c:52:fb:
                    4e:a2:57:1b:f4:c9:77:a4:32:d3:80:86:39:0b:ab:
                    d1:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:4C:75:7C:BC:94:FC:1D:E1:9B:4B:C5:DF:FB:D6:46:11:17:E8:46
            X509v3 Authority Key Identifier:
                keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:9e:a6:d0:ed:25:a8:3e:aa:44:f9:36:dc:bf:e9:0b:2c:fa:
         6b:47:4e:95:cc:43:ea:b1:3e:ac:6e:02:e0:19:d5:42:50:a7:
         5d:29:c8:12:4c:58:9a:ce:63:0d:f2:3e:d5:60:4b:c9:fb:c1:
         7f:fc:2d:54:8d:f0:1a:14:98:ee:93:1a:5f:2d:1b:b1:6d:93:
         5e:ce:39:46:d1:84:6c:3a:2e:fd:54:39:af:a5:18:61:c0:de:
         03:c0:29:cd:33:b5:94:9c:bb:d4:26:8a:e2:c8:45:be:0b:79:
         38:3a:a9:bc:87:ea:5e:1e:c4:cb:58:1d:c4:2c:33:8b:b3:1d:
         88:a8:fa:72:75:09:87:63:90:89:01:44:72:60:c5:03:cb:ae:
         fc:6a:35:7e:26:10:6e:ab:9a:f6:46:03:c9:3b:57:9b:73:52:
         a4:f1:58:d9:5e:67:47:83:c8:d9:a2:eb:6c:4d:14:1c:fe:d9:
         1f:c6:67:bb:a3:60:9f:b1:c2:35:cf:48:fa:07:24:09:9f:54:
         f7:5c:a5:bd:84:a5:a7:cf:f4:05:c7:88:84:72:95:ba:13:64:
         06:f9:7b:e2:4d:32:f7:f0:48:ba:f3:c3:b1:8d:36:dd:6c:4c:
         67:83:f4:3f:00:85:64:5a:c8:15:42:a0:fe:8d:da:05:15:30:
         cd:49:ae:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----