Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
File:                     eY97H9gCs9xqvXpc2nhqYxHh1j0.mft (raw, json)
Hash identifier:          W/XqxEZc7Z5nWiXrX80Kvj86qSaoCz/ND8xUDZw56+Y=
Subject key identifier:   28:75:65:99:1E:09:09:95:F7:60:3F:00:21:EB:75:26:B5:2B:67:0E
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Certificate issuer:       /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial:       0197B96A955A5A2E581F105C2826558E67E2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
Manifest number:          0DFC
Signing time:             Sun 29 Jun 2025 02:00:59 +0000
Manifest this update:     Sun 29 Jun 2025 02:00:59 +0000
Manifest next update:     Mon 30 Jun 2025 02:00:59 +0000
Files and hashes:         1: eY97H9gCs9xqvXpc2nhqYxHh1j0.crl (hash: PRk22fFQyK5oiB5kwOMYpsWDl+zuSyqTZXmaQxUJinY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 19:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:6a:95:5a:5a:2e:58:1f:10:5c:28:26:55:8e:67:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
        Validity
            Not Before: Jun 29 02:00:59 2025 GMT
            Not After : Jun 30 02:00:59 2025 GMT
        Subject: CN=287565991e090995f7603f0021eb7526b52b670e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:77:ab:1d:4b:f9:7b:87:d1:b3:50:2a:56:aa:
                    20:ff:b7:c4:d9:d1:bd:ef:4b:b4:a2:4c:db:45:c2:
                    ba:7e:5c:79:bf:87:87:34:91:71:4c:b2:78:ad:93:
                    e8:54:4d:2b:c5:97:a7:49:60:2d:e4:c9:8a:bf:9b:
                    a2:52:49:87:fc:16:1a:bf:96:ea:4b:a0:b3:de:a5:
                    87:67:22:68:9c:ae:e3:8d:97:2a:f0:78:67:2f:af:
                    a4:23:b6:57:4e:31:dc:9b:92:3c:bb:ce:08:c1:19:
                    d3:f8:fb:95:72:b3:e0:f7:1e:6d:13:d3:97:78:7a:
                    8b:39:40:9a:af:b5:d8:68:79:87:77:f7:99:2d:45:
                    57:da:07:a1:20:4e:ec:23:7c:14:84:7b:28:82:7b:
                    da:fd:08:cd:b6:81:bb:08:c5:c8:99:df:53:a3:66:
                    ca:96:4f:78:e9:21:fa:f0:de:f3:60:cb:50:3e:d9:
                    8d:7f:5e:54:e3:d9:c0:d3:66:7c:9f:8d:ee:15:93:
                    ae:69:76:1e:5d:49:78:2f:09:5b:f4:97:97:c5:df:
                    5a:d5:18:fa:19:c7:23:29:56:2a:a8:24:8b:4f:2b:
                    0e:d6:a5:8f:cc:62:3d:bd:9a:86:35:cc:b1:1a:7e:
                    a1:73:26:7b:93:33:7a:73:8c:a5:7b:41:da:f5:c5:
                    0a:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:75:65:99:1E:09:09:95:F7:60:3F:00:21:EB:75:26:B5:2B:67:0E
            X509v3 Authority Key Identifier:
                keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:48:53:fc:b1:0b:4b:51:91:d2:43:f7:02:c5:b2:38:9b:4a:
         7d:96:1d:4b:37:59:f6:d3:6e:81:fe:d0:e3:47:bb:d2:06:2b:
         97:18:46:e8:39:18:52:2c:3f:8f:33:04:67:89:70:5d:10:2a:
         d5:f4:cd:5c:77:0a:14:85:27:43:5e:e6:80:96:b5:0c:23:ee:
         97:3b:0f:31:fc:40:7e:9f:df:3d:fb:07:cc:92:0f:49:c8:c4:
         8c:dc:78:36:f6:89:ad:ca:45:ea:76:82:69:25:9c:35:06:bc:
         02:4d:52:0c:4f:a0:d4:fb:d8:ad:af:e4:c4:8a:db:67:05:ef:
         9c:32:d4:98:b1:bc:26:b3:0e:55:99:25:be:a8:49:9f:2d:92:
         9f:00:7d:1b:8d:b4:25:34:7f:0f:e8:fb:31:95:9d:a1:9a:b7:
         f6:51:7c:7f:f1:a4:cc:7d:d6:16:55:69:98:f5:30:fb:c6:6b:
         2f:fa:9f:e5:af:03:10:c1:79:88:f7:a7:72:ee:60:55:40:18:
         b6:54:75:c8:6b:d8:34:94:66:f5:6c:1d:89:e7:5b:fd:19:c1:
         49:ff:af:31:d5:16:98:66:3d:96:e0:8d:9a:f5:b6:a0:46:80:
         2c:60:2c:ec:6a:27:b7:39:89:c2:9a:3b:7a:d1:f7:58:2e:a5:
         39:b2:9b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----