Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft
File:                     rWbePns_OvDgZAZ70c52RUNYL18.mft (raw, json)
Hash identifier:          Y/9ALI53xdLm1Us4JjH2mGAqaFfjHKSZIJ+l+eBlU8U=
Subject key identifier:   F7:23:74:9B:C1:F3:81:6B:5B:56:FA:84:3B:86:8E:2D:A5:94:90:3A
Authority key identifier: AD:66:DE:3E:7B:3F:3A:F0:E0:64:06:7B:D1:CE:76:45:43:58:2F:5F
Certificate issuer:       /CN=ad66de3e7b3f3af0e064067bd1ce764543582f5f
Certificate serial:       0197B6A04470B15277545DAA35C6E3FBE4C7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rWbePns_OvDgZAZ70c52RUNYL18.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft
Manifest number:          1266
Signing time:             Sat 28 Jun 2025 13:00:45 +0000
Manifest this update:     Sat 28 Jun 2025 13:00:45 +0000
Manifest next update:     Sun 29 Jun 2025 13:00:45 +0000
Files and hashes:         1: rWbePns_OvDgZAZ70c52RUNYL18.crl (hash: tEbeTxNAq2Zx4sjbtgB2/qX3TxMKllZxabwOAtsecT4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rWbePns_OvDgZAZ70c52RUNYL18.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a0:44:70:b1:52:77:54:5d:aa:35:c6:e3:fb:e4:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad66de3e7b3f3af0e064067bd1ce764543582f5f
        Validity
            Not Before: Jun 28 13:00:45 2025 GMT
            Not After : Jun 29 13:00:45 2025 GMT
        Subject: CN=f723749bc1f3816b5b56fa843b868e2da594903a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:b9:25:ee:c6:10:ee:b6:2b:84:b0:1f:94:84:
                    d2:39:10:d3:51:ca:32:2f:c9:2d:a9:4d:28:2b:65:
                    13:a2:6e:88:cb:a9:64:ff:33:60:c1:d9:b4:b5:63:
                    02:34:1b:49:86:58:9d:c2:e3:df:86:ed:74:55:c5:
                    5e:2f:14:b7:76:f7:cd:45:b8:47:f6:b5:5f:58:39:
                    e0:63:84:39:7f:dc:f1:8e:44:de:47:db:6f:15:17:
                    a3:f3:72:3f:bd:68:58:90:31:0f:56:5c:7a:ca:a7:
                    1a:13:c1:56:59:a0:cd:7f:30:f6:be:16:c3:60:cf:
                    17:df:40:c0:8f:7e:f1:58:fb:b4:73:ae:5f:9e:78:
                    12:f3:4f:1c:2e:f8:ab:a8:46:32:64:10:eb:94:8b:
                    40:fa:bd:39:65:9e:b7:5b:a2:0b:d4:99:c9:7c:13:
                    58:e7:db:8c:18:3f:28:04:ef:af:d7:41:8e:2a:0a:
                    27:8f:e3:4e:03:ec:98:12:ac:0d:9c:47:a1:3a:0d:
                    c2:ae:3c:b8:92:a2:80:b8:1f:7f:6a:38:f2:28:07:
                    cb:8b:d5:ce:5c:47:b3:b8:3b:4e:3d:5e:f2:2a:b3:
                    ef:df:15:4f:40:5b:5b:5c:27:a9:41:8d:58:34:39:
                    44:32:6b:9f:ea:d6:70:cb:53:7a:8b:0c:cc:46:01:
                    24:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:23:74:9B:C1:F3:81:6B:5B:56:FA:84:3B:86:8E:2D:A5:94:90:3A
            X509v3 Authority Key Identifier:
                keyid:AD:66:DE:3E:7B:3F:3A:F0:E0:64:06:7B:D1:CE:76:45:43:58:2F:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWbePns_OvDgZAZ70c52RUNYL18.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/03e755-8021-49b0-82e4-71ef49799bd9/1/rWbePns_OvDgZAZ70c52RUNYL18.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:58:3d:3a:37:f9:8c:79:1f:8b:5b:ba:8d:4b:8d:26:30:c8:
         d8:18:e7:47:32:68:78:52:a1:69:07:12:ee:77:b3:bd:7b:6b:
         c1:4e:d9:c5:5b:be:4a:14:4c:1a:a6:4e:5c:28:c4:cc:3b:0f:
         ee:74:1e:42:09:10:83:14:b9:0e:50:31:78:4f:28:6a:3b:e0:
         28:c6:c8:0a:f1:2b:7f:01:0a:46:15:88:41:96:51:94:c8:4b:
         08:95:e1:25:a6:d9:b6:1c:24:11:a6:92:eb:09:76:61:39:6e:
         e3:10:f9:36:b0:b1:c8:55:0f:4d:a7:24:3f:b7:78:a7:2c:74:
         30:1b:41:53:78:36:08:42:16:c0:cc:cb:ba:24:1d:d7:50:8e:
         37:b5:85:06:1a:c5:2a:5a:82:81:ee:c7:40:06:49:02:8d:13:
         88:6d:b5:b7:1d:51:77:d8:a6:4f:29:76:7a:32:c4:c3:76:11:
         5d:c4:2b:68:c8:78:59:1c:a8:80:42:e5:35:01:58:e9:d0:6b:
         c7:6a:5e:55:68:f0:e5:5e:b8:18:e2:88:85:57:74:a5:8d:0d:
         f1:fc:5f:5c:09:8b:73:0a:5e:ca:55:f3:8d:ba:86:f4:ef:9a:
         16:61:a3:a9:93:e3:22:14:a5:16:0e:45:8a:c5:e3:a5:b2:f8:
         4b:d7:42:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----