Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
File:                     9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft (raw, json)
Hash identifier:          75vqRp0R9V9XaTmWWKKTZvCJwHyQOPLjVQro35Ovi8Y=
Subject key identifier:   E2:7B:98:0A:4A:31:27:BD:B8:92:67:0E:69:87:08:2B:53:2B:17:4B
Authority key identifier: F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84
Certificate issuer:       /CN=f70592c90b4cb245e54718d7c5799b47d419a684
Certificate serial:       0197B7EAE9C64302E2D3C8B42D2D9E0948B8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
Manifest number:          15B3
Signing time:             Sat 28 Jun 2025 19:01:55 +0000
Manifest this update:     Sat 28 Jun 2025 19:01:55 +0000
Manifest next update:     Sun 29 Jun 2025 19:01:55 +0000
Files and hashes:         1: 9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl (hash: tiJfOcyIUJDkoZdssQYDz76s3Ua4n8crr70pCpkKaXY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:ea:e9:c6:43:02:e2:d3:c8:b4:2d:2d:9e:09:48:b8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f70592c90b4cb245e54718d7c5799b47d419a684
        Validity
            Not Before: Jun 28 19:01:55 2025 GMT
            Not After : Jun 29 19:01:55 2025 GMT
        Subject: CN=e27b980a4a3127bdb892670e6987082b532b174b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:61:ac:29:96:36:63:0d:ad:9c:e7:48:30:ae:
                    f8:ae:77:4f:7c:18:7e:4f:0a:1b:00:97:81:4d:33:
                    bf:5c:d8:eb:a8:ff:55:c8:64:51:8e:2a:43:cf:d5:
                    84:b0:18:ed:df:6c:21:70:7c:03:e7:bc:56:81:6a:
                    5c:ba:41:e0:a9:f6:ca:0d:5b:ad:54:f9:b8:ef:2b:
                    4e:ae:db:a3:d2:b9:eb:e4:ed:02:61:62:2a:e9:4a:
                    5b:10:09:9a:a7:9a:55:32:d3:f5:a2:37:50:bf:cf:
                    8d:53:97:06:36:b9:7a:07:ca:bc:c4:cb:ff:09:c7:
                    42:04:a9:eb:39:f8:fe:c0:93:d5:43:bd:ed:60:49:
                    38:8d:b7:f8:b5:e9:27:70:86:d6:ec:4b:93:73:51:
                    e9:c2:03:c3:d9:b3:49:d6:42:5e:6b:a2:de:fa:ea:
                    2c:94:a4:50:9f:36:c3:70:f1:c3:07:ed:1a:ac:85:
                    40:0c:36:9b:e9:c8:71:26:e6:9c:3c:a8:97:8d:9f:
                    ca:eb:1e:05:27:aa:f9:6c:f2:4b:20:bf:7f:4b:d0:
                    9c:32:6a:e9:e8:4c:df:95:32:bb:31:26:5f:f9:71:
                    e5:53:11:6f:c9:e4:29:cd:0b:ee:a1:39:72:bb:f5:
                    a6:19:56:be:4a:2d:0d:17:d8:24:6b:b0:95:b7:76:
                    43:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:7B:98:0A:4A:31:27:BD:B8:92:67:0E:69:87:08:2B:53:2B:17:4B
            X509v3 Authority Key Identifier:
                keyid:F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:d5:c5:3b:c0:e4:0a:99:35:5f:bf:4b:38:e6:f9:0a:01:ba:
         7a:e0:cc:1b:ab:ae:7f:25:8c:6c:ec:82:18:88:da:fb:19:6d:
         6d:db:1a:60:22:08:7c:64:00:74:a6:f1:14:f8:a4:f1:18:95:
         7e:8f:90:08:e3:c5:87:f4:25:31:b6:1e:96:a7:db:bc:de:d3:
         d2:20:a6:aa:db:50:d2:83:72:25:ce:4d:3f:80:86:e1:e1:9c:
         5d:10:9a:f2:e7:44:e2:8f:ad:ee:8f:54:99:05:e3:fb:74:b6:
         63:4c:5d:76:95:0d:73:5a:3f:6e:c1:ed:cc:ae:b7:c1:a9:ad:
         fa:d9:67:86:ed:85:81:90:20:23:e9:20:0b:69:9a:79:02:92:
         78:15:70:13:fe:5d:42:36:b9:3b:c5:9e:97:f9:0f:17:96:1c:
         c2:71:5a:b4:8a:9f:c6:6d:48:3f:83:51:46:e8:5c:19:1f:7b:
         29:c8:db:aa:b9:b6:70:d8:7a:9e:50:12:80:42:ce:b1:28:2f:
         b3:b4:12:16:db:2e:2c:79:a9:a1:15:2a:3c:c5:37:80:fd:92:
         2a:dd:13:11:e5:7a:df:88:bf:3f:da:20:05:56:f0:c6:3a:2b:
         11:ba:dd:43:b5:9c:41:00:73:6b:e3:6a:9d:95:9f:7c:6b:ed:
         ce:9a:4e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----