Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
File:                     24tcHuy6hgz_8XR5ZtdjyagvbZo.mft (raw, json)
Hash identifier:          NNKzxPA+8SWHoxrV6hSUUa1aD4xeRReZWR//t+AqpHA=
Subject key identifier:   72:C9:6E:13:25:03:81:EC:48:F5:12:F4:DA:9D:AE:95:24:3D:C6:DD
Authority key identifier: DB:8B:5C:1E:EC:BA:86:0C:FF:F1:74:79:66:D7:63:C9:A8:2F:6D:9A
Certificate issuer:       /CN=db8b5c1eecba860cfff1747966d763c9a82f6d9a
Certificate serial:       0197BAEBBBE11FC605F22F94C39C084794DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
Manifest number:          15B3
Signing time:             Sun 29 Jun 2025 09:01:40 +0000
Manifest this update:     Sun 29 Jun 2025 09:01:40 +0000
Manifest next update:     Mon 30 Jun 2025 09:01:40 +0000
Files and hashes:         1: 24tcHuy6hgz_8XR5ZtdjyagvbZo.crl (hash: TIfYt6H/6roivb/PV9j438vhY6BQcP+rqUGJbZZ6Z+M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 04:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:ba:eb:bb:e1:1f:c6:05:f2:2f:94:c3:9c:08:47:94:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=db8b5c1eecba860cfff1747966d763c9a82f6d9a
        Validity
            Not Before: Jun 29 09:01:40 2025 GMT
            Not After : Jun 30 09:01:40 2025 GMT
        Subject: CN=72c96e13250381ec48f512f4da9dae95243dc6dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:71:47:72:ae:4d:14:3c:e5:41:17:03:92:57:
                    54:e7:22:eb:ea:6c:45:7a:95:9e:2b:fb:38:04:db:
                    28:c8:f2:2b:43:19:9e:29:46:bf:0b:b2:0b:40:3e:
                    ac:22:5d:9b:80:20:56:c2:98:7b:f2:c4:c2:17:a9:
                    24:c7:1f:bd:2c:d7:f4:d7:2a:f0:f5:03:e1:75:f1:
                    ba:22:c7:dd:a8:23:e7:58:4f:b5:4f:74:47:15:40:
                    db:ed:a7:15:df:94:ad:7e:b0:33:91:82:29:34:1b:
                    60:f4:ca:20:9f:e7:4e:c6:cb:91:88:bd:2f:26:32:
                    0e:68:89:92:11:0a:15:bc:de:f5:52:d6:be:09:4f:
                    50:6e:fa:73:7b:67:b5:91:5e:58:97:4f:10:df:7f:
                    6a:13:b5:30:ab:09:7a:ec:c4:83:77:5d:8c:b1:3d:
                    19:bc:66:93:b3:a9:29:7e:99:79:b5:68:2f:70:e1:
                    87:22:39:7f:60:39:6c:a0:ee:a8:5a:70:2e:18:8e:
                    71:be:c0:db:9a:e1:bc:c0:60:c6:48:0b:25:8c:06:
                    75:7f:16:f2:a3:6d:88:9a:96:32:9e:3f:4f:d8:f2:
                    a7:33:19:37:39:94:7d:14:07:ab:96:d3:c3:69:3b:
                    1c:ee:be:ff:3a:1b:f0:6e:9b:f6:84:69:91:8b:7b:
                    a5:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:C9:6E:13:25:03:81:EC:48:F5:12:F4:DA:9D:AE:95:24:3D:C6:DD
            X509v3 Authority Key Identifier:
                keyid:DB:8B:5C:1E:EC:BA:86:0C:FF:F1:74:79:66:D7:63:C9:A8:2F:6D:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:86:fa:a0:f1:ae:07:76:b5:e9:bd:22:2a:57:83:a3:05:15:
         54:e9:49:7d:e7:ef:77:08:33:8b:22:34:c9:05:b4:86:ff:97:
         79:c6:17:2e:ce:cf:ce:38:26:17:74:69:b0:a5:24:bc:68:af:
         da:24:40:0f:d0:ad:8b:52:41:79:81:a3:d1:c4:3c:82:36:cc:
         ff:cb:17:93:27:da:c6:91:61:7f:39:df:ef:2a:ac:32:3d:4c:
         45:ef:9e:d2:b4:9e:2a:c4:05:c6:a8:31:06:41:ad:36:ff:ff:
         db:e4:1a:c6:36:60:8a:85:43:56:b2:40:f0:b7:a4:fe:70:3e:
         4c:c0:07:b0:91:1e:bf:4e:88:04:16:28:ee:db:59:ea:c5:c5:
         75:68:65:50:d8:27:f6:4c:88:83:58:8f:f9:ab:39:85:1d:ce:
         2d:d8:c4:a7:82:40:c6:27:41:e3:09:3e:2d:2b:9d:ae:b1:56:
         2d:3b:c7:11:c8:79:74:30:93:3d:35:03:36:d5:6d:21:cb:99:
         06:da:e9:d9:95:77:22:e0:c6:ec:99:ca:29:e4:f0:06:c9:fa:
         b9:73:98:98:fe:e4:86:dd:f9:6b:cb:ea:af:3b:0f:64:2d:1a:
         b9:7f:31:ef:02:8b:19:c1:4a:33:de:ef:2e:40:a9:f6:d8:b9:
         64:f4:34:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----