Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft
File:                     2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft (raw, json)
Hash identifier:          syF6Q6R4NRx9Nou5PQVEeIS2ngh+1j311YWAynONOZg=
Subject key identifier:   7C:C0:A8:75:A7:96:FA:C2:98:09:2F:4D:8A:BB:EC:E2:8B:2C:77:4E
Authority key identifier: DA:7D:CB:08:1C:73:80:2F:C1:89:5C:6E:B4:A2:72:66:6B:D4:27:9A
Certificate issuer:       /CN=da7dcb081c73802fc1895c6eb4a272666bd4279a
Certificate serial:       0197B6A1C2B28EA53CE643FAD89C0151C169
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2n3LCBxzgC_BiVxutKJyZmvUJ5o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft
Manifest number:          15B1
Signing time:             Sat 28 Jun 2025 13:02:23 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:23 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:23 +0000
Files and hashes:         1: 2n3LCBxzgC_BiVxutKJyZmvUJ5o.crl (hash: UXfP1rEvpZ2FQvnSJcurv6JdsMd19n5ojhULTfb/RIc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2n3LCBxzgC_BiVxutKJyZmvUJ5o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:02:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:c2:b2:8e:a5:3c:e6:43:fa:d8:9c:01:51:c1:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da7dcb081c73802fc1895c6eb4a272666bd4279a
        Validity
            Not Before: Jun 28 13:02:23 2025 GMT
            Not After : Jun 29 13:02:23 2025 GMT
        Subject: CN=7cc0a875a796fac298092f4d8abbece28b2c774e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:11:d8:79:21:0f:b3:9e:ba:a0:a5:7b:6a:6a:
                    ce:0a:eb:02:94:8e:fa:ea:74:d9:8e:19:63:56:b9:
                    9f:2d:b3:5f:b6:3d:8d:f6:4b:45:6f:0c:74:73:d5:
                    6f:12:95:a5:b5:2c:d6:f0:c5:ad:5d:e7:a6:56:f8:
                    10:7d:8d:fe:67:e5:b6:44:8f:24:38:ed:9d:9b:39:
                    85:ec:3d:38:a0:a3:af:a2:82:c9:4e:b2:18:be:81:
                    d8:72:d8:07:1f:01:c0:15:f3:09:e2:e7:3d:07:78:
                    e9:4d:04:4f:43:d1:d9:f2:e0:15:8f:ea:da:77:ab:
                    12:d7:52:4d:bf:3f:7e:31:18:1a:96:47:1c:50:c8:
                    8f:2a:59:83:1e:17:30:ef:8c:c4:6b:02:84:fd:89:
                    5c:93:87:5f:c0:16:e3:0b:5b:7d:e1:91:b2:57:91:
                    f3:2f:da:52:65:50:32:35:93:0a:2e:a7:6b:e3:28:
                    db:26:0b:fa:e2:c0:b0:a3:97:3f:b7:11:5d:6e:7d:
                    41:d2:9e:64:f4:a3:74:2e:36:3a:52:8f:32:55:55:
                    1f:bf:b7:b3:6c:18:66:93:3a:0e:43:98:cd:ae:a0:
                    5a:94:ae:27:f6:dc:17:d3:07:65:64:b4:2e:34:1b:
                    c5:10:29:62:7e:3f:2c:a2:92:32:e8:8e:f5:92:45:
                    8a:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:C0:A8:75:A7:96:FA:C2:98:09:2F:4D:8A:BB:EC:E2:8B:2C:77:4E
            X509v3 Authority Key Identifier:
                keyid:DA:7D:CB:08:1C:73:80:2F:C1:89:5C:6E:B4:A2:72:66:6B:D4:27:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2n3LCBxzgC_BiVxutKJyZmvUJ5o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:30:30:13:c8:d3:4e:d4:25:6e:dd:82:08:e3:10:02:11:26:
         e7:46:0a:58:40:4f:79:d6:db:ff:92:1a:8a:3a:62:d2:bc:1e:
         09:06:bd:c4:ae:50:b0:3c:50:7a:6c:67:9a:0d:c3:4e:61:5f:
         f7:62:b0:38:df:44:1c:7c:a4:26:d7:a2:e3:91:e6:ca:60:ec:
         24:32:cf:5d:2b:eb:e6:db:59:e5:19:b7:32:b4:66:e7:40:a5:
         5a:92:98:5e:9e:85:53:bb:49:8e:8f:bc:dd:df:31:5f:01:bc:
         94:9a:68:a8:c3:70:5d:64:2c:27:8f:56:cf:fe:7b:06:ca:bc:
         bc:6e:ff:08:4d:ea:aa:b4:97:0e:af:c9:47:c0:d0:cd:86:d0:
         41:05:a5:0f:5a:68:e5:09:36:a9:f7:27:76:5c:3f:fd:2f:82:
         63:27:88:26:b1:18:7d:dd:2d:ca:47:bb:7a:fb:52:cd:71:7d:
         c8:94:16:3e:14:c1:26:cd:ec:c2:fc:2c:8b:ac:4c:60:e5:f8:
         06:59:f1:1a:b1:6b:eb:21:e5:8f:05:e7:a3:e1:29:53:52:f7:
         8d:1c:73:85:80:c3:37:a6:ac:6b:14:be:aa:3a:97:40:61:ff:
         3b:52:af:14:c0:3a:4d:81:9c:a3:73:dd:70:d8:c5:08:62:c4:
         21:2d:51:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----