Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
File:                     0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft (raw, json)
Hash identifier:          cYWrzZ6w0qA1/VyzdAz0OADRd/GW0Umkolb2npb4wCM=
Subject key identifier:   93:B1:4C:27:84:5D:73:3B:8B:50:22:A6:48:EF:B8:DC:FC:E1:D4:3F
Authority key identifier: D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0
Certificate issuer:       /CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
Certificate serial:       0197B70F45ABF456F41C30EB1BDF3F3A5649
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
Manifest number:          0C5F
Signing time:             Sat 28 Jun 2025 15:02:00 +0000
Manifest this update:     Sat 28 Jun 2025 15:02:00 +0000
Manifest next update:     Sun 29 Jun 2025 15:02:00 +0000
Files and hashes:         1: 0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl (hash: PvB4uqzlQXqvLnBe45BTKx0bBiqQQ6Kex7GxpHsJXSc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:0f:45:ab:f4:56:f4:1c:30:eb:1b:df:3f:3a:56:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
        Validity
            Not Before: Jun 28 15:02:00 2025 GMT
            Not After : Jun 29 15:02:00 2025 GMT
        Subject: CN=93b14c27845d733b8b5022a648efb8dcfce1d43f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:5d:c5:f0:24:ce:7a:a1:5b:3a:7c:d3:32:65:
                    72:5c:ce:6b:fc:f8:fd:e2:09:bb:59:14:5b:ac:c9:
                    a9:22:5a:5c:cd:ac:f8:da:0c:39:16:60:3a:7f:97:
                    98:0a:68:40:05:c0:d9:87:01:1a:67:6a:31:b1:a9:
                    ec:f2:df:e3:4b:ae:e7:0f:34:94:c5:33:dc:b8:48:
                    0f:03:d7:fb:f7:65:61:c0:c0:c4:dc:83:9e:ab:00:
                    4a:a0:32:22:ca:65:e3:0d:67:7d:a0:01:f2:b5:91:
                    ae:76:64:af:de:67:59:6c:b9:55:14:40:bb:ec:ab:
                    0f:99:ee:d2:24:a5:7f:86:98:24:0a:f8:e5:71:ea:
                    6f:b2:69:c2:f1:a5:f7:90:66:7e:ec:94:44:3c:ca:
                    7f:3d:2c:52:19:64:5d:1f:ab:1b:ba:76:4b:21:de:
                    f6:1a:f1:a4:52:1a:b7:1c:d8:96:26:b2:08:12:22:
                    93:55:44:00:4a:21:c2:13:02:b3:cd:79:8e:f0:cc:
                    f1:57:4f:27:18:5a:0c:7a:e5:ab:a0:2a:f4:d2:db:
                    d9:8f:14:64:bc:fd:8f:4a:20:3b:c8:8e:79:59:a8:
                    9f:b3:9a:9b:be:68:ae:70:f4:be:48:be:da:40:e2:
                    e7:bc:62:5c:ac:e9:e7:6a:78:11:7a:65:b3:4c:8c:
                    f4:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:B1:4C:27:84:5D:73:3B:8B:50:22:A6:48:EF:B8:DC:FC:E1:D4:3F
            X509v3 Authority Key Identifier:
                keyid:D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:34:12:34:82:b8:15:1d:72:d6:79:76:bc:59:c1:29:17:e1:
         f8:bb:04:a7:4a:d0:08:91:e5:65:83:79:69:50:ba:66:3f:84:
         ef:28:81:18:f2:27:d9:71:b3:dd:ba:54:3d:13:6a:d6:f6:b7:
         f7:fa:e0:3c:57:3c:2e:e8:4d:9b:e0:57:ea:eb:92:54:09:20:
         14:07:87:71:33:f5:a6:0d:a9:ce:77:7c:90:a1:63:6f:3e:aa:
         90:16:5c:14:62:6b:97:98:eb:f3:57:cb:58:6c:9f:f4:84:3c:
         a0:29:b4:e3:29:28:a6:95:b9:0a:5a:63:b2:9e:d4:85:c1:0f:
         6a:41:47:5f:0e:dd:c3:27:fa:9b:d0:cb:87:30:b7:02:6c:e0:
         f0:dc:54:7e:1c:f0:30:f7:46:10:e0:e1:94:db:92:bd:e2:02:
         41:bd:74:99:3b:ef:c4:a7:65:0f:2f:d9:92:2d:61:77:ee:61:
         50:c4:1c:b5:43:12:aa:01:7d:c5:ab:1b:ff:e7:11:0c:ae:25:
         d2:16:5c:d1:3b:4a:70:9d:d8:0b:99:ae:15:a9:18:40:40:dc:
         41:71:8a:eb:d7:c6:99:e1:f4:55:79:3c:c0:61:b0:d5:f3:a1:
         e0:47:48:c8:75:ab:e1:34:32:3c:37:53:5f:ad:17:99:2b:05:
         10:3d:69:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----