Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
File:                     yAH8mVpSGvH1Atnq8S1mIaZMr00.mft (raw, json)
Hash identifier:          0zComsCdB5ZOjTTJGGG5jk5hTtVUTw2zaWcAqp4ANBM=
Subject key identifier:   63:EB:5A:15:24:D0:20:F7:48:4E:6E:98:C4:27:24:BD:A5:2D:2A:36
Authority key identifier: C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D
Certificate issuer:       /CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
Certificate serial:       0197C2376966E3EF4541DC02A1307B5B1F1F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
Manifest number:          15B7
Signing time:             Mon 30 Jun 2025 19:01:40 +0000
Manifest this update:     Mon 30 Jun 2025 19:01:40 +0000
Manifest next update:     Tue 01 Jul 2025 19:01:40 +0000
Files and hashes:         1: yAH8mVpSGvH1Atnq8S1mIaZMr00.crl (hash: W+ynyJMkH077N6XaTlZ3cqQNtizOA5DPyatm4pClGdI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 01 Jul 2025 19:01:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c2:37:69:66:e3:ef:45:41:dc:02:a1:30:7b:5b:1f:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
        Validity
            Not Before: Jun 30 19:01:40 2025 GMT
            Not After : Jul  1 19:01:40 2025 GMT
        Subject: CN=63eb5a1524d020f7484e6e98c42724bda52d2a36
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:93:b2:b7:de:1d:d8:d6:0b:9b:fd:93:f8:dc:
                    ba:61:85:89:41:59:40:c9:f6:b4:89:57:7c:87:ee:
                    b4:c4:0c:f1:7c:cf:0b:bc:bf:5d:a2:9b:d4:cd:66:
                    e5:c4:1d:57:5f:82:bb:08:b5:90:9c:db:a0:2c:38:
                    8c:38:19:4d:6c:78:7a:b9:5e:bd:86:5b:47:23:f7:
                    b2:23:af:cc:0e:81:95:f3:91:61:d5:1e:0e:e6:9a:
                    11:12:ae:0f:3b:a5:8d:20:65:c0:54:60:1f:7d:16:
                    ba:91:53:c8:6c:b1:47:49:52:ad:d7:29:0d:84:dc:
                    80:e4:7c:ce:6b:e6:c2:1d:c8:bc:f6:95:20:c7:67:
                    85:92:70:a4:9c:72:c2:0f:e0:2b:fe:ca:c1:3c:cb:
                    5c:9d:95:7b:59:37:af:35:9b:a7:b4:13:60:fc:29:
                    66:02:b8:9e:63:c2:b0:a7:b2:82:49:e8:10:14:6f:
                    d6:00:d0:53:bf:a2:a6:40:5a:f2:ba:6a:5f:5d:3a:
                    81:9f:40:13:3e:89:f9:71:63:7a:2c:b3:cc:92:92:
                    98:94:cd:af:2f:80:45:fd:dc:6a:b5:ae:b0:5b:b6:
                    23:bd:bd:20:c4:3d:05:c1:5f:44:f0:90:5e:96:17:
                    2b:df:8a:73:cf:c7:93:19:50:a6:ee:c9:03:db:4a:
                    c7:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:EB:5A:15:24:D0:20:F7:48:4E:6E:98:C4:27:24:BD:A5:2D:2A:36
            X509v3 Authority Key Identifier:
                keyid:C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:0e:fd:36:7b:94:8f:f5:01:2c:f7:0a:41:77:cb:87:00:07:
         55:32:a7:2f:58:da:47:1a:02:8a:f0:ba:8c:06:86:07:32:cb:
         82:45:3e:aa:df:9d:04:46:c2:83:39:2b:80:01:e1:d1:a5:4d:
         da:31:19:7e:c4:c0:f3:a5:1a:0f:b1:56:4e:9b:85:f4:bd:da:
         fe:0b:d1:1f:94:16:ae:16:9b:85:fd:08:be:56:22:a3:fa:90:
         26:37:d9:80:3e:f8:2a:f5:e5:db:ba:8a:ae:da:c7:6e:32:5d:
         8f:a6:bc:03:ca:0f:9a:f7:11:4a:59:8e:44:e8:46:f7:84:ce:
         ef:3c:51:35:c3:5e:86:e4:0f:4b:e7:6d:b9:1d:dc:55:5a:66:
         24:78:02:36:bb:dd:10:0f:2b:b6:9f:14:46:cd:3e:d9:f4:1f:
         91:59:30:71:4e:e2:11:84:90:ea:8b:c5:14:fc:dc:fa:e9:b9:
         a8:64:51:b1:a8:d8:94:e5:47:22:be:c3:8f:ba:ae:c1:ec:11:
         22:73:5a:ef:a9:2d:23:28:9a:20:1e:85:1f:63:d1:d3:d9:00:
         e6:ad:1c:20:6c:db:67:1e:9a:69:4f:c2:55:b1:73:f1:e9:d9:
         24:e4:d7:b1:e4:5c:26:75:a3:d4:09:6d:84:0f:9b:0e:9c:d3:
         51:53:66:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----