Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
File:                     2V_Z-7sug4agu3amyEH8aKfD65g.mft (raw, json)
Hash identifier:          d3JXj8TJdpuODc8cZ3Ho/2TjNfYpb31zTcra6lmnMQQ=
Subject key identifier:   E1:12:D1:E5:EA:63:8F:45:86:6D:06:4F:70:84:C5:09:46:26:4A:1E
Authority key identifier: D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98
Certificate issuer:       /CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
Certificate serial:       0197B7B2E5D35C6D29FD7C70C891D26980C0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
Manifest number:          0207
Signing time:             Sat 28 Jun 2025 18:00:44 +0000
Manifest this update:     Sat 28 Jun 2025 18:00:44 +0000
Manifest next update:     Sun 29 Jun 2025 18:00:44 +0000
Files and hashes:         1: 2V_Z-7sug4agu3amyEH8aKfD65g.crl (hash: ERC7uVgX8OyTLzbkatZPE6DxlWVlKRge3eKIM2Iw7rc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:b2:e5:d3:5c:6d:29:fd:7c:70:c8:91:d2:69:80:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
        Validity
            Not Before: Jun 28 18:00:44 2025 GMT
            Not After : Jun 29 18:00:44 2025 GMT
        Subject: CN=e112d1e5ea638f45866d064f7084c50946264a1e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:b4:e6:80:9f:3b:dc:09:ae:fd:8a:64:05:0a:
                    94:00:0a:07:ce:08:d9:d4:4e:9d:7b:cb:85:74:29:
                    fa:03:ed:e7:3c:23:93:a2:42:53:e7:4d:5d:1a:a2:
                    0b:d3:fa:84:27:84:f8:0c:59:6a:a9:68:4b:06:11:
                    d4:d5:bf:c2:71:3a:1c:43:75:72:12:8c:b6:b7:19:
                    a8:6a:5f:bf:70:be:34:2b:18:52:5b:fa:16:3d:bf:
                    0d:20:1d:db:8a:b3:70:92:97:e7:a2:98:26:4f:3b:
                    cc:d1:fe:98:fa:e6:9c:95:5a:3b:51:9f:97:47:ae:
                    ac:1e:c6:b7:46:0d:77:6b:a7:77:05:6c:fc:02:6f:
                    2b:41:92:3b:db:33:f8:b6:12:5a:a0:f9:26:d4:54:
                    c2:61:2c:81:4b:32:f5:a3:d3:ab:e3:43:09:2d:ca:
                    b0:5c:3f:e3:5a:66:2f:f3:2a:c4:39:43:75:5c:ba:
                    07:b6:76:ff:da:6b:b6:8f:64:23:20:7c:75:15:7f:
                    6a:88:5f:dd:25:68:18:01:a6:10:3a:86:e7:46:dc:
                    26:10:17:7c:be:59:b1:a0:05:10:90:bd:1d:ec:8d:
                    b0:14:69:f8:3e:ee:4d:70:8d:d3:95:7b:98:69:d2:
                    9e:64:7b:b9:7e:6b:1f:26:bb:83:d6:25:96:e3:1a:
                    ab:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:12:D1:E5:EA:63:8F:45:86:6D:06:4F:70:84:C5:09:46:26:4A:1E
            X509v3 Authority Key Identifier:
                keyid:D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:02:9b:1f:d7:2c:f7:9f:76:24:59:b9:a5:a3:8d:73:b9:37:
         a9:05:17:69:6d:86:ad:f5:ce:ea:8d:40:2e:3f:ad:b4:6b:56:
         91:36:07:ac:f0:6a:66:aa:56:07:c7:21:ac:c6:01:1b:8d:7a:
         c4:43:49:69:e2:bb:68:19:1a:9b:13:13:70:85:af:15:67:88:
         22:c1:fb:4a:43:df:e8:2f:14:e9:6f:01:c1:5f:9f:7e:9b:71:
         4c:3a:c4:ab:a4:7b:68:a3:61:01:41:8f:82:2b:9e:85:60:a2:
         0f:56:bf:07:52:15:df:9e:51:a4:d3:60:63:91:44:78:ed:aa:
         e8:12:94:d1:2a:71:af:b2:b9:74:c0:30:10:e0:9c:64:6e:6e:
         b1:99:70:58:63:ee:a4:94:c4:af:50:8e:97:97:52:05:25:46:
         57:02:4b:60:89:80:17:8d:9f:c6:86:7d:9c:1b:31:6b:ea:3b:
         f0:93:e3:e4:0f:55:df:e9:b8:2f:78:1e:8d:f7:33:6b:24:5a:
         44:77:db:bc:41:30:09:8b:5e:9b:d9:4a:e0:d7:c1:43:3b:7f:
         0d:a6:6a:69:eb:7a:ef:b9:e2:88:a4:49:7a:5f:45:3a:47:2f:
         36:60:3e:04:a8:a1:9f:06:09:87:23:8e:f0:61:2a:03:fa:9e:
         e1:ae:8a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----