Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File:                     cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier:          OSBZ9tXr+FLlxSqrN7lplvIVt0r9k/50aPWkc5KVl4A=
Subject key identifier:   0D:6B:4B:DA:06:53:EB:D9:90:E4:EF:59:6E:DD:47:89:B2:59:D6:D3
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer:       /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial:       0197B7EAC6A159C52432413725F112D4D4E3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number:          035F
Signing time:             Sat 28 Jun 2025 19:01:46 +0000
Manifest this update:     Sat 28 Jun 2025 19:01:46 +0000
Manifest next update:     Sun 29 Jun 2025 19:01:46 +0000
Files and hashes:         1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: Ij3g+ieaxyHhjCly146T6W4b9Elnh0yyQ3PK1OM7eSo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:ea:c6:a1:59:c5:24:32:41:37:25:f1:12:d4:d4:e3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
        Validity
            Not Before: Jun 28 19:01:46 2025 GMT
            Not After : Jun 29 19:01:46 2025 GMT
        Subject: CN=0d6b4bda0653ebd990e4ef596edd4789b259d6d3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:89:76:5b:a8:19:86:8d:14:69:a7:dc:86:d9:
                    35:b6:a1:68:2f:26:14:be:c4:7f:7b:86:0f:36:8d:
                    7f:1d:fa:28:ac:62:c1:04:9c:1c:d4:23:cf:a9:b5:
                    0f:78:dd:39:89:12:2f:e6:8f:ee:ca:07:5a:2c:e8:
                    eb:d8:01:75:30:ed:8c:49:de:7b:6b:a6:4a:b2:c3:
                    44:c1:64:17:a3:93:d2:19:91:bf:b4:5a:5a:2f:21:
                    d7:7f:e3:bb:09:17:4d:63:28:2f:8b:d2:03:f2:4d:
                    d0:dc:7c:a8:1e:73:ff:69:ad:ed:e3:76:48:22:71:
                    2d:ed:7b:f5:0d:21:9e:e0:a8:b6:91:72:c2:fa:83:
                    96:66:d0:bf:72:8f:66:5b:bf:34:10:a4:ff:06:60:
                    1f:69:bf:c5:f2:6d:d9:2b:53:34:2d:bc:ee:79:d4:
                    94:64:00:e9:fd:28:6c:3c:76:5d:80:59:61:26:a2:
                    87:2a:bf:a2:e5:37:84:bf:41:ae:f8:03:e8:ba:ff:
                    21:20:12:c7:3f:75:b7:43:80:c7:91:d9:ae:43:c8:
                    71:a6:c7:39:52:26:19:45:94:78:db:64:2b:db:12:
                    75:4f:f6:0a:e4:a5:62:00:0f:d1:e5:b6:62:3f:eb:
                    b9:14:38:45:d7:a6:f9:51:7a:0c:51:1d:44:0c:16:
                    57:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:6B:4B:DA:06:53:EB:D9:90:E4:EF:59:6E:DD:47:89:B2:59:D6:D3
            X509v3 Authority Key Identifier:
                keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:1b:a8:27:bc:d0:1e:2a:e1:95:b4:f5:d9:cf:12:d9:d4:c4:
         3a:0e:f8:1e:6e:ec:82:d4:1c:11:a5:f8:b6:61:05:ec:f6:b6:
         bb:7e:b0:5f:9f:01:cd:5e:31:9b:d8:70:b9:f9:40:24:20:de:
         d0:d4:08:e7:73:60:2a:e1:29:52:a8:ee:a3:b7:c8:ce:8d:6c:
         2d:c2:3d:4d:a0:e4:21:5e:74:8c:87:14:93:68:1f:08:7c:90:
         ec:43:12:48:1f:ff:8a:fe:18:59:da:61:84:50:2d:ff:50:36:
         84:59:fa:d3:d6:2f:e4:b9:63:4c:4a:7e:11:20:be:b8:34:f7:
         ea:d2:12:6b:3c:a8:40:1e:7b:ea:c3:9a:ee:6c:f4:26:35:f0:
         e1:ca:6d:65:29:e8:7c:8b:0f:bb:f5:5d:6b:15:c2:5f:2a:59:
         bc:dd:c4:89:73:50:21:a2:49:76:63:31:05:87:74:6c:70:fe:
         6d:82:ef:99:c8:a6:a3:5f:bf:6e:1f:be:e9:cf:fc:e4:b7:2d:
         98:4b:25:24:2a:47:cf:bc:56:a3:94:9f:f6:f4:2f:c6:31:cc:
         5c:4e:e4:f4:3f:e6:6b:c2:32:4c:1e:f5:7f:a7:b7:79:4c:de:
         69:3c:22:f3:7a:45:c0:17:10:ba:ef:82:54:33:6a:d6:6b:03:
         80:24:48:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----