Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
File:                     cVYaucXzkpItp8rhgMMwc2XwI4Y.mft (raw, json)
Hash identifier:          a44yhDDSEejfFyZXPso57jMV1g7TIvWVzgDfk3PxhH8=
Subject key identifier:   39:C9:0A:13:42:94:87:58:B9:99:F5:58:C9:90:03:9E:3C:87:54:DD
Authority key identifier: 71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86
Certificate issuer:       /CN=71561ab9c5f392922da7cae180c3307365f02386
Certificate serial:       0197B6A17FB7C3B9855DCFC543CDE8C537A7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
Manifest number:          0EE6
Signing time:             Sat 28 Jun 2025 13:02:06 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:06 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:06 +0000
Files and hashes:         1: cVYaucXzkpItp8rhgMMwc2XwI4Y.crl (hash: qXL3hRS8DFgBafowZYR21cmOhDc5ftIAeRJaJlktMVE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:02:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:7f:b7:c3:b9:85:5d:cf:c5:43:cd:e8:c5:37:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71561ab9c5f392922da7cae180c3307365f02386
        Validity
            Not Before: Jun 28 13:02:06 2025 GMT
            Not After : Jun 29 13:02:06 2025 GMT
        Subject: CN=39c90a1342948758b999f558c990039e3c8754dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:01:a5:e2:0d:02:d6:2f:b1:f0:f7:d2:7e:a7:
                    00:61:fa:26:0d:b5:ae:7c:12:f7:3e:ad:db:b9:ff:
                    5e:f7:6d:76:ca:9d:6f:aa:f5:7d:53:d9:34:c0:7f:
                    b7:58:eb:ba:6f:22:62:54:53:a4:78:3c:33:57:ff:
                    ea:fb:1e:e8:7f:56:60:9c:a0:52:30:5f:78:21:01:
                    b2:52:20:27:c6:f0:a4:33:60:dc:50:42:b9:80:64:
                    57:78:e0:98:d1:7b:2e:2a:e2:00:24:13:21:95:9c:
                    7d:c1:50:f3:75:5b:4b:2b:38:98:cd:15:a1:96:08:
                    cf:68:28:53:bc:e8:68:78:13:2c:d0:02:34:a4:31:
                    60:b3:a0:50:12:27:32:d1:ca:bb:f8:bf:bf:8f:7e:
                    63:5e:50:8b:99:ff:fe:74:ec:bf:83:bc:1d:79:61:
                    fa:50:51:82:6e:12:ba:bd:a4:82:36:a0:86:f5:6f:
                    fe:3e:c7:fc:d1:90:50:e3:d8:38:99:4e:1e:f2:2a:
                    31:a4:91:55:33:06:8d:9f:8e:81:0a:5c:20:1b:8a:
                    16:ef:f9:b3:4c:f8:e4:2f:81:90:98:5d:19:27:1d:
                    19:5a:00:d1:d3:74:2a:75:dd:c1:50:19:fd:95:0f:
                    26:66:20:1f:b5:58:d8:89:84:aa:fc:97:80:d4:1d:
                    bf:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:C9:0A:13:42:94:87:58:B9:99:F5:58:C9:90:03:9E:3C:87:54:DD
            X509v3 Authority Key Identifier:
                keyid:71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:ac:2c:4a:6c:ef:04:3d:13:a0:c2:44:ed:23:a0:7b:74:3e:
         dc:02:98:85:8b:2b:2f:f6:f6:81:11:d3:73:9b:fd:df:00:16:
         5b:be:25:2b:3c:d3:6b:c8:91:46:38:6f:eb:e7:12:e7:09:fd:
         f9:1f:2d:91:2b:3f:4a:14:8e:05:8a:36:3a:69:6e:df:e0:0b:
         8f:0b:3e:d6:d4:bc:b0:be:cb:0a:2e:19:d6:49:ba:a1:11:85:
         4c:58:09:37:f0:4f:d6:62:62:c4:59:79:7c:81:b9:70:c1:e7:
         6e:2b:1d:1c:c9:24:3f:31:42:38:cd:2e:e6:c3:a5:f6:02:13:
         bb:5f:ed:c7:89:9b:88:2c:7c:74:f4:6b:d0:b2:45:a1:80:5b:
         37:20:3e:8d:79:11:ac:02:03:48:4c:e1:c4:34:bd:d7:23:d5:
         15:5b:ff:e2:ca:63:48:d0:b8:2c:10:20:ef:cc:04:ac:d8:53:
         eb:8a:b0:05:3f:41:9c:e2:f0:ed:4f:96:fc:fc:4f:9c:c8:28:
         b1:9c:e8:bb:53:e2:1d:5a:c1:6a:22:50:b6:aa:58:b9:4b:f2:
         b1:9f:6d:cf:36:bd:c1:87:19:4b:3f:5d:4f:51:9b:07:8b:7a:
         7d:de:31:58:6c:af:77:f2:51:67:12:94:f4:3c:81:d4:bd:38:
         64:1a:38:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----