Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
File:                     UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft (raw, json)
Hash identifier:          HDYITVdppTWGznwmCy2DTVlFaVjl3OnKA94u2uJBAPc=
Subject key identifier:   19:37:F8:70:6A:0F:63:0D:5C:59:27:8D:27:18:ED:D9:F3:F2:D9:2B
Authority key identifier: 52:F2:5B:D0:5A:C1:48:85:1F:A2:A4:63:AD:0D:E0:70:81:84:04:F7
Certificate issuer:       /CN=52f25bd05ac148851fa2a463ad0de070818404f7
Certificate serial:       0197B88EA4BBA320E2FB2B8CFBAA06E1BE82
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
Manifest number:          09E0
Signing time:             Sat 28 Jun 2025 22:00:45 +0000
Manifest this update:     Sat 28 Jun 2025 22:00:45 +0000
Manifest next update:     Sun 29 Jun 2025 22:00:45 +0000
Files and hashes:         1: UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl (hash: KUBwZuolMgaifHxgLDrnY0h7LAFy0nLecmfUfxYM9+I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 22:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b8:8e:a4:bb:a3:20:e2:fb:2b:8c:fb:aa:06:e1:be:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=52f25bd05ac148851fa2a463ad0de070818404f7
        Validity
            Not Before: Jun 28 22:00:45 2025 GMT
            Not After : Jun 29 22:00:45 2025 GMT
        Subject: CN=1937f8706a0f630d5c59278d2718edd9f3f2d92b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:48:2f:de:b1:ca:33:59:5f:d3:da:49:63:8b:
                    8d:13:c6:8d:63:98:0d:67:44:94:06:ae:10:c8:95:
                    98:b1:22:20:b4:3d:be:d0:79:b2:5a:a6:15:d6:5d:
                    bb:1c:62:a8:1b:63:b8:49:8a:78:c9:1c:fd:00:3e:
                    60:30:7e:69:ab:fd:aa:5c:11:7b:36:9e:94:b9:0d:
                    49:be:cc:52:63:39:68:eb:28:2e:ec:40:f5:94:ad:
                    1f:9d:70:fc:39:da:53:08:6a:96:7b:d6:60:bb:56:
                    49:5b:50:23:76:0e:b9:82:6d:45:01:3a:84:8f:65:
                    bf:ea:5c:d9:a6:0c:6b:b5:79:a7:7d:c6:9a:0a:67:
                    63:8d:b3:db:5b:cb:d9:84:8b:af:6e:5c:c5:f5:bd:
                    c4:7c:ea:08:61:0e:78:0a:54:16:c1:6b:6b:20:b7:
                    98:c7:ae:6c:b6:54:4d:a2:55:53:74:5e:b4:8e:40:
                    fc:f9:7d:5b:b1:2d:f9:3e:8b:cf:e9:c8:82:2f:ac:
                    f0:b2:a6:fa:0f:2b:62:cb:76:ef:3c:40:59:8c:c1:
                    2c:03:14:e8:57:a9:21:b4:6c:89:ff:54:8d:8a:c2:
                    b4:fc:34:4f:d2:d4:ea:c4:f1:86:be:31:1d:e0:3b:
                    cf:a8:47:bc:fe:66:00:1e:12:84:c4:62:d2:67:c1:
                    76:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:37:F8:70:6A:0F:63:0D:5C:59:27:8D:27:18:ED:D9:F3:F2:D9:2B
            X509v3 Authority Key Identifier:
                keyid:52:F2:5B:D0:5A:C1:48:85:1F:A2:A4:63:AD:0D:E0:70:81:84:04:F7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ca:d3:d9:33:83:f2:29:53:86:65:9f:a1:c7:79:c9:10:3d:eb:
         36:74:9f:c7:e6:74:56:f8:23:6e:fa:b2:32:96:71:45:11:65:
         ca:14:0c:37:44:e4:d0:fa:a0:83:75:d9:88:d6:e7:a9:81:31:
         c5:19:74:b8:b8:fe:5c:2d:6b:58:98:37:e9:67:29:5f:d3:f3:
         c3:ad:97:6f:a1:64:f2:04:6a:3a:43:48:40:6f:7a:cc:f2:29:
         7a:a7:e2:81:b8:f6:44:f8:6f:aa:a3:39:eb:bc:e6:0d:6b:31:
         39:7f:a9:a2:6b:50:69:01:3e:4e:ee:85:f0:8d:32:e3:62:6e:
         99:06:ee:4d:2f:6e:c6:90:c6:4b:51:af:fe:8c:f9:3f:38:bb:
         e4:68:5d:10:53:6e:9a:b8:31:25:68:5e:5b:0e:73:1c:56:71:
         ae:7e:18:3e:b1:00:35:1a:aa:6e:ea:59:8f:0c:25:25:15:13:
         3d:ef:38:65:b2:da:9c:cb:09:b7:c0:19:30:c6:0e:96:6a:38:
         c2:80:7d:df:3a:8d:e2:d1:75:f4:f8:4e:98:78:b9:02:bc:5c:
         da:c4:ae:d5:aa:ee:1b:2a:97:14:eb:9a:54:50:9c:b4:63:b0:
         6e:50:38:44:75:77:7e:35:23:20:b0:f6:cd:54:08:81:88:22:
         31:f2:9c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----