Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
File:                     X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft (raw, json)
Hash identifier:          BL2/A1XPzKCK9JVinDzLugANCHAvaOUTwp7XiinBJLg=
Subject key identifier:   0B:8A:5B:83:F3:9A:4F:4E:BC:32:E6:52:F8:11:5A:F1:65:AB:25:A7
Authority key identifier: 5F:40:62:82:EC:14:FA:0B:C7:D6:51:1E:FC:BC:6A:E9:F1:E0:5B:3D
Certificate issuer:       /CN=5f406282ec14fa0bc7d6511efcbc6ae9f1e05b3d
Certificate serial:       0197B77C141C05D580752FD9199A927E94DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
Manifest number:          63
Signing time:             Sat 28 Jun 2025 17:00:51 +0000
Manifest this update:     Sat 28 Jun 2025 17:00:51 +0000
Manifest next update:     Sun 29 Jun 2025 17:00:51 +0000
Files and hashes:         1: X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl (hash: qVHsGDlc6iLg6IUmZfmc10obDkPUadzBEYlhD5nRxGA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:7c:14:1c:05:d5:80:75:2f:d9:19:9a:92:7e:94:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5f406282ec14fa0bc7d6511efcbc6ae9f1e05b3d
        Validity
            Not Before: Jun 28 17:00:51 2025 GMT
            Not After : Jun 29 17:00:51 2025 GMT
        Subject: CN=0b8a5b83f39a4f4ebc32e652f8115af165ab25a7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:98:e9:b7:1b:71:33:72:4d:d7:b8:07:67:d1:
                    75:a1:f3:38:d3:cf:79:be:39:95:62:b8:3e:39:2a:
                    06:07:79:c5:d5:47:fa:f0:62:e4:bc:39:b6:9e:c5:
                    c7:a8:f3:36:dc:cb:8b:8c:a7:08:b1:9c:6c:9a:b2:
                    ca:c0:01:a2:cc:f8:39:a4:1d:a4:62:b5:9f:40:a1:
                    8c:1f:b5:8f:6c:8a:cb:96:6a:f1:e0:28:f8:86:69:
                    37:86:8b:c3:24:65:57:2f:56:6d:ca:85:d8:e8:e6:
                    04:66:33:6d:38:12:21:24:7a:5e:7c:c5:b4:b8:e1:
                    42:dc:d7:b1:83:4d:1d:12:fa:83:ee:99:39:3c:a1:
                    1f:53:ba:db:fc:55:be:f0:05:2a:00:13:6f:e8:9c:
                    78:f0:40:78:e3:b2:11:31:9a:8c:78:af:c3:64:b3:
                    73:d7:db:39:be:40:ec:15:b7:71:b7:65:2e:21:a5:
                    9a:6f:0a:d2:57:04:4d:a5:cf:36:06:1c:15:d6:e4:
                    aa:4a:c8:81:88:e7:d3:9f:bf:88:55:c4:25:8e:6c:
                    4b:38:7d:96:eb:3d:c8:99:26:29:d4:96:03:b7:84:
                    57:41:0b:c0:50:57:1a:f0:fd:a0:e0:b0:db:5e:3c:
                    6c:4a:84:fe:a7:f6:ee:68:c1:97:2a:d6:e9:f2:2c:
                    01:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:8A:5B:83:F3:9A:4F:4E:BC:32:E6:52:F8:11:5A:F1:65:AB:25:A7
            X509v3 Authority Key Identifier:
                keyid:5F:40:62:82:EC:14:FA:0B:C7:D6:51:1E:FC:BC:6A:E9:F1:E0:5B:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:42:ae:90:8a:11:9a:72:80:5b:86:3b:39:13:cc:d5:e6:0e:
         6e:1b:ff:c4:19:55:0a:8b:cc:5b:be:39:8e:c6:44:9d:7b:45:
         32:2f:22:7e:3d:96:f4:e0:e2:df:21:15:33:46:38:84:74:95:
         65:c3:52:93:1e:aa:db:f6:65:c0:18:33:7d:96:d7:c1:0c:1f:
         a8:1e:a3:45:12:98:e4:38:29:79:13:53:9c:f4:ad:c6:25:be:
         5f:31:a3:fe:6e:1f:3e:cf:f5:a8:e3:61:db:f8:55:f6:7d:da:
         8b:25:ec:ce:3d:2b:72:27:3b:1e:a5:52:61:42:59:07:62:5a:
         2d:db:4c:c4:42:95:39:12:9e:6f:00:d4:b9:ee:65:94:15:b4:
         ab:4c:9a:77:a4:6d:5b:de:1f:9e:ce:23:ac:80:cf:b5:d1:ae:
         28:bf:73:e3:14:22:17:ce:92:8c:e1:db:d6:76:7f:8e:71:5a:
         50:38:23:2a:dc:d7:b8:d4:e2:99:d6:38:93:68:30:7e:77:76:
         da:28:d6:8d:4a:54:e7:4c:18:35:71:a7:8a:b7:d4:66:3b:c5:
         07:73:cf:62:2b:8d:ab:a7:08:2f:bd:a9:31:62:eb:86:4e:9d:
         d7:68:b2:ef:54:92:de:fb:f9:cf:8c:95:35:d4:2e:a6:06:5a:
         9c:f9:f3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----