Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
File:                     BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft (raw, json)
Hash identifier:          PbJ5UcCiZuliWXZMh5yMyPvbAnKRlGuN2WzCd5023QY=
Subject key identifier:   E0:19:93:CE:9B:BC:09:04:88:6C:75:D6:88:06:B0:1D:F5:31:A1:BE
Authority key identifier: 04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
Certificate issuer:       /CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Certificate serial:       0197B6A0FB01D0691162062ED693FBCF2EE6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
Manifest number:          0C0D
Signing time:             Sat 28 Jun 2025 13:01:32 +0000
Manifest this update:     Sat 28 Jun 2025 13:01:32 +0000
Manifest next update:     Sun 29 Jun 2025 13:01:32 +0000
Files and hashes:         1: BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl (hash: FG/vgUFmfIMrgDOFq4hZCNqAvc/MoESu6Z5mtkee7mk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a0:fb:01:d0:69:11:62:06:2e:d6:93:fb:cf:2e:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
        Validity
            Not Before: Jun 28 13:01:32 2025 GMT
            Not After : Jun 29 13:01:32 2025 GMT
        Subject: CN=e01993ce9bbc0904886c75d68806b01df531a1be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:7a:4c:b0:8a:5c:5a:49:d1:d3:5c:b7:f8:b8:
                    16:c7:e7:4c:dc:86:4a:9c:1b:8d:80:87:b9:c5:74:
                    a9:b5:a4:0c:b2:f7:23:e1:de:3e:dc:4d:96:9d:5e:
                    c5:54:98:f4:30:fc:97:c9:53:44:dd:c5:f8:49:b9:
                    bb:52:b9:63:5a:e3:55:35:c9:49:a5:01:12:44:c5:
                    6b:e0:a4:2f:44:2e:5a:e2:28:8e:8e:7b:49:96:b2:
                    64:98:29:ab:07:97:7a:4b:69:3e:31:e5:ed:b3:35:
                    c3:4e:bf:04:43:47:d1:f0:01:5f:b3:fe:96:c2:dc:
                    ca:c2:e2:4c:58:7a:1d:5e:23:77:fa:43:47:b6:b1:
                    dc:f7:ec:a0:14:b0:6b:77:e5:89:ed:50:58:63:da:
                    0c:70:92:a5:16:f1:2c:d0:b1:c8:b4:e4:39:0a:e9:
                    56:83:94:bb:fa:8e:c6:fc:f8:b0:07:1c:e0:63:90:
                    3d:c7:a2:59:02:5c:87:ee:ac:0e:f9:e5:e4:8b:93:
                    ad:19:88:26:f9:1f:51:68:f4:f4:11:1c:28:d9:74:
                    47:04:6c:0e:fc:38:16:57:bd:fb:db:c4:e5:62:37:
                    3f:4e:72:0a:b2:6b:ab:9d:29:9f:2a:d5:3c:8a:27:
                    53:bb:26:31:18:de:22:58:73:31:a0:2b:54:8a:de:
                    bc:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:19:93:CE:9B:BC:09:04:88:6C:75:D6:88:06:B0:1D:F5:31:A1:BE
            X509v3 Authority Key Identifier:
                keyid:04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:fc:4b:9c:73:59:09:bb:b2:ec:a3:86:8b:4c:27:0e:4f:88:
         8c:83:00:00:67:f7:17:83:ce:43:2f:1e:e1:38:18:ee:48:8f:
         d2:48:84:0e:f7:88:e0:7a:60:0e:c5:26:f1:4f:9e:9d:ab:4e:
         72:30:f1:c4:c5:25:f3:77:32:50:8b:a3:ec:32:30:93:3f:28:
         ad:86:50:a5:f4:cc:08:39:ac:66:28:0e:0a:5e:6f:51:96:d2:
         92:73:47:8c:33:16:fd:88:79:27:7a:59:18:18:9f:8a:5e:95:
         e4:4a:75:d2:b3:c5:cb:55:98:9d:e4:5d:75:16:3c:5e:17:a7:
         e0:9a:13:55:d4:fe:2a:6c:02:92:a7:39:be:93:86:97:f5:ea:
         b6:98:50:6e:63:c7:e6:62:e4:73:b3:8b:26:ca:43:85:5e:74:
         cb:32:db:02:9c:45:e3:4b:48:d1:7c:24:f2:a4:c0:e7:c1:0b:
         d8:02:f8:46:93:8c:7e:03:b8:5e:5d:dc:35:93:88:d0:37:56:
         72:e1:54:4a:82:e9:42:53:a9:43:89:68:11:b9:ae:ba:79:1d:
         79:1c:c7:cd:f0:11:8d:80:56:1a:2a:80:26:5a:c3:1d:1e:75:
         e4:81:7b:32:fb:3c:e0:28:84:42:a9:bd:93:cc:5f:23:5e:3c:
         70:1f:4a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----