Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
File:                     vDImMeLrfqv7XttPywq4yZaCPEg.mft (raw, json)
Hash identifier:          DVqbLgk5Xaigh5qXos6YMGFo9HHMc2JLOe9/oktfhMI=
Subject key identifier:   7B:75:87:C0:DF:B1:F0:90:16:D1:31:69:3B:7A:DE:CB:D9:84:F4:B1
Authority key identifier: BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48
Certificate issuer:       /CN=bc322631e2eb7eabfb5edb4fcb0ab8c996823c48
Certificate serial:       0197B88FF4FEAD0F5059D140BB0D9479D55C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
Manifest number:          0619
Signing time:             Sat 28 Jun 2025 22:02:11 +0000
Manifest this update:     Sat 28 Jun 2025 22:02:11 +0000
Manifest next update:     Sun 29 Jun 2025 22:02:11 +0000
Files and hashes:         1: vDImMeLrfqv7XttPywq4yZaCPEg.crl (hash: I8FieI7LNa6jkczZCoq5zEzwf+Fa7lhRN2NiHQjAWO0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 19:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b8:8f:f4:fe:ad:0f:50:59:d1:40:bb:0d:94:79:d5:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bc322631e2eb7eabfb5edb4fcb0ab8c996823c48
        Validity
            Not Before: Jun 28 22:02:11 2025 GMT
            Not After : Jun 29 22:02:11 2025 GMT
        Subject: CN=7b7587c0dfb1f09016d131693b7adecbd984f4b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:48:8c:e6:0e:72:2b:b1:da:71:79:36:10:f1:
                    c9:ea:97:54:9f:82:d1:35:bd:30:84:6b:4a:24:7b:
                    6a:81:a0:35:82:d4:e2:8a:af:48:a0:6a:ac:4a:ba:
                    f9:d7:13:38:17:e1:e6:a9:12:4c:86:36:35:52:b7:
                    0b:dd:65:aa:fb:ca:86:f8:87:c0:d1:27:c5:e0:c5:
                    7a:db:a8:ff:53:d9:d8:fc:59:ad:a0:5e:b3:3c:7f:
                    8e:7a:93:e7:44:a7:5c:45:03:76:07:a7:30:23:38:
                    1d:b7:85:f7:a2:a5:8a:fc:c5:21:eb:85:78:21:f9:
                    d1:08:e4:6b:b0:84:56:d1:61:33:e6:22:70:af:02:
                    ef:26:b1:79:64:7c:2c:31:67:71:fc:aa:9a:c1:1a:
                    43:20:d3:6d:5f:75:df:b1:99:cc:4f:14:ae:49:3a:
                    f1:9e:5f:9d:0a:d0:18:88:86:f4:22:30:39:e8:6c:
                    49:c0:8b:25:1f:82:76:e7:fe:ae:75:33:71:94:41:
                    f1:23:d5:1e:08:cf:43:68:9e:37:83:c2:ed:e9:32:
                    13:3b:14:74:16:f0:84:47:3f:50:e0:a0:0d:26:05:
                    3c:81:0f:d6:1c:a1:e2:f7:c1:79:a1:7d:49:0d:80:
                    c1:30:2d:b3:b4:9f:14:93:55:c3:7d:ff:c5:52:96:
                    b7:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:75:87:C0:DF:B1:F0:90:16:D1:31:69:3B:7A:DE:CB:D9:84:F4:B1
            X509v3 Authority Key Identifier:
                keyid:BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:b1:79:ff:68:bc:ec:59:bd:86:1e:75:c8:d7:23:be:27:c0:
         ef:e7:df:40:73:e2:88:61:53:34:70:e6:1b:1a:65:73:97:ea:
         76:df:d9:15:fd:15:6e:b6:6b:a4:73:18:a2:da:fd:fe:1e:fc:
         e9:e8:e3:0c:ea:89:b5:a2:ec:56:20:52:13:22:47:39:9c:9d:
         dc:80:ec:5a:ff:f4:ab:b6:9d:34:9e:e8:f9:ea:c7:58:cf:e6:
         52:2b:d9:44:42:b6:9c:1e:f6:7d:8a:32:20:51:19:60:e2:ee:
         39:9a:df:d9:d7:2c:09:a7:4a:3b:fa:b0:a2:37:6d:0a:87:bd:
         f2:5b:10:52:33:d6:d7:71:cd:f7:e1:55:07:b2:79:64:87:95:
         71:0c:9f:ca:5a:b1:bb:b7:f3:5f:b3:89:03:cc:a9:57:9a:00:
         51:a1:ce:82:95:ed:c0:bd:e5:5a:8b:97:41:68:dc:5f:af:ea:
         05:f1:af:b3:b9:17:7f:3f:e8:cd:36:bb:62:69:c5:e6:00:de:
         6e:50:56:8c:dd:33:7d:50:05:96:19:71:e5:1e:ad:2d:c6:fe:
         ac:8e:27:e0:e3:fc:7f:b4:37:70:59:98:f5:78:b8:fc:c2:b9:
         e8:ad:e6:de:97:34:66:b7:5f:62:ce:fb:ce:c1:fe:30:e6:2a:
         9d:88:99:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----