Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
File:                     CUsU8URwOb33-d7l-ik4XB3OlZ0.mft (raw, json)
Hash identifier:          GTQfqKk6QwnkCj9jK8gQHRwIZYsUyrYbCc+qLls8glI=
Subject key identifier:   0F:EC:41:A4:34:A4:23:D2:6E:5F:1F:6C:ED:5B:ED:E7:C7:A4:44:03
Authority key identifier: 09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D
Certificate issuer:       /CN=094b14f1447039bdf7f9dee5fa29385c1dce959d
Certificate serial:       0197B6A07E5501485DDE06973705ADB0C0EA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
Manifest number:          1544
Signing time:             Sat 28 Jun 2025 13:01:00 +0000
Manifest this update:     Sat 28 Jun 2025 13:01:00 +0000
Manifest next update:     Sun 29 Jun 2025 13:01:00 +0000
Files and hashes:         1: CUsU8URwOb33-d7l-ik4XB3OlZ0.crl (hash: qfjs7Rn3fHTGm8KeBobLo6I4vVUD9ZJn+wrZCx53L6w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 10:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a0:7e:55:01:48:5d:de:06:97:37:05:ad:b0:c0:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=094b14f1447039bdf7f9dee5fa29385c1dce959d
        Validity
            Not Before: Jun 28 13:01:00 2025 GMT
            Not After : Jun 29 13:01:00 2025 GMT
        Subject: CN=0fec41a434a423d26e5f1f6ced5bede7c7a44403
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:62:a2:48:e0:a7:8c:03:de:81:4c:f5:fd:d0:
                    1e:2a:77:4e:42:94:f1:92:37:6e:a6:16:7c:e8:b9:
                    b1:39:3c:be:47:33:93:98:a7:b7:06:a1:3e:8d:1c:
                    04:96:fa:fb:83:f9:f9:37:d7:ed:5e:5e:f1:e4:61:
                    23:6a:2a:17:51:ee:79:dd:cb:9e:5d:22:90:27:e4:
                    a5:57:4d:10:8e:fb:53:04:9f:57:c0:56:22:28:48:
                    73:cc:0b:99:72:db:7d:02:cd:75:f8:a3:d7:76:57:
                    9d:8e:f9:eb:18:df:f6:ac:f8:04:99:8a:d9:a3:87:
                    59:7d:d7:d8:6b:fc:57:8f:53:4c:2e:38:b2:cd:7c:
                    dd:26:5c:d5:2d:f9:81:86:51:84:fd:ff:82:6a:77:
                    f3:28:f2:92:e7:da:52:f3:dd:7f:4f:ea:7b:37:80:
                    0c:1a:ae:87:d3:95:9c:06:45:18:11:46:46:f8:56:
                    52:8e:3a:fa:ca:a3:fc:c7:df:6d:31:3c:cb:7c:64:
                    1a:22:22:ca:20:b3:c8:9c:29:97:a1:93:5a:80:f0:
                    04:25:e3:f7:ca:e3:8b:20:1b:a8:fc:2c:74:bf:d9:
                    35:f8:02:95:7d:00:30:ab:94:b2:b9:23:d2:55:36:
                    92:8c:bc:51:96:0b:34:59:eb:f7:8d:3b:6f:86:04:
                    11:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:EC:41:A4:34:A4:23:D2:6E:5F:1F:6C:ED:5B:ED:E7:C7:A4:44:03
            X509v3 Authority Key Identifier:
                keyid:09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:95:22:f9:6b:5e:55:08:58:a7:1e:dc:e6:5a:f4:06:ba:21:
         8b:1b:a1:30:01:e6:71:fe:78:f3:bf:9a:63:04:23:e6:2f:c9:
         c4:ec:b3:cd:06:cb:2e:6f:3c:2a:50:96:48:42:e6:75:3e:ee:
         84:3f:66:a7:ce:53:a8:15:48:72:48:df:dd:38:ec:02:f0:13:
         ae:85:39:ae:46:d8:84:a3:08:1e:cd:72:a1:80:82:5f:65:31:
         27:f5:03:1d:92:3f:7f:a8:8f:69:e5:36:25:54:fa:77:55:3b:
         c3:33:df:30:d1:d9:fa:b1:ea:07:b4:ba:84:3b:1f:23:01:7b:
         f7:e8:9c:32:74:f2:11:1b:33:27:bd:10:cb:4b:d0:f5:3f:be:
         70:08:19:55:fe:78:82:41:30:ff:ed:75:ef:33:26:89:a2:d9:
         3d:1c:eb:6a:d0:6b:c1:d4:f6:0e:8f:b4:0e:44:54:17:56:31:
         0c:19:c7:73:f5:3f:7a:12:11:47:12:26:3e:27:a1:16:0c:1a:
         e8:95:b8:e3:1e:0a:2c:8f:e5:1b:ef:e3:51:c5:ae:42:0d:fc:
         0d:e2:af:09:bf:6d:98:0a:88:1a:5e:42:15:b3:63:6b:f9:43:
         9a:1a:6f:a6:38:80:7a:4f:28:67:df:69:e7:01:bb:85:ee:64:
         28:99:83:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----