Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
File:                     Wy17v8Kblv03I3vOZ4bFO604D70.mft (raw, json)
Hash identifier:          VIhoYov4zoaubuj9LamNbarTmUJpx7DFEHCKq7yDt6g=
Subject key identifier:   13:81:01:E6:AA:71:2E:FF:2F:91:98:1F:46:29:7B:9C:B1:1F:A2:C1
Authority key identifier: 5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD
Certificate issuer:       /CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd
Certificate serial:       0197B77CA35A9FAFA6380D1454002B328FF2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
Manifest number:          0187
Signing time:             Sat 28 Jun 2025 17:01:28 +0000
Manifest this update:     Sat 28 Jun 2025 17:01:28 +0000
Manifest next update:     Sun 29 Jun 2025 17:01:28 +0000
Files and hashes:         1: Wy17v8Kblv03I3vOZ4bFO604D70.crl (hash: eXpTL5jJC4PXnbkEyfOG0YRQRBIubnqimdwgAlMFRn8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:7c:a3:5a:9f:af:a6:38:0d:14:54:00:2b:32:8f:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd
        Validity
            Not Before: Jun 28 17:01:28 2025 GMT
            Not After : Jun 29 17:01:28 2025 GMT
        Subject: CN=138101e6aa712eff2f91981f46297b9cb11fa2c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:b4:ec:c7:6d:51:4d:bb:10:d5:96:aa:25:af:
                    c3:16:d9:6c:07:be:75:17:71:8a:3a:70:52:9c:96:
                    09:3d:4b:53:04:c8:dc:d0:1b:68:43:73:cd:73:20:
                    6e:56:47:ab:7e:48:42:a8:09:e2:a7:f5:5d:30:91:
                    a4:12:d5:a6:5d:42:14:b0:9f:a8:a3:96:e3:99:24:
                    ba:43:06:60:e9:2f:23:08:5a:af:88:b4:83:b2:d5:
                    21:6a:15:33:bb:30:fb:70:64:5b:20:14:e5:b3:35:
                    8c:a1:90:f8:c3:84:c1:eb:c9:48:f2:37:df:ed:89:
                    72:5a:4f:2e:06:48:ce:07:fe:ba:2f:d8:fc:e4:1a:
                    62:50:3a:6e:f6:10:d2:af:6c:03:9a:0c:79:e5:f6:
                    8f:a7:b2:2c:61:9b:63:f1:a1:77:35:94:e8:68:66:
                    3b:8b:cf:4b:af:7b:9d:e6:9f:fd:bd:ef:04:56:6a:
                    ad:45:ff:07:00:1d:c8:16:7f:da:ab:4e:78:9c:a3:
                    23:45:de:46:1e:79:08:5c:69:9e:6e:58:3d:49:a6:
                    9b:28:b9:c4:9c:b2:b6:cd:72:47:33:01:cf:ff:57:
                    a7:de:7c:f6:3c:74:4c:bc:b5:f0:88:05:ad:70:01:
                    6a:2b:56:f2:95:67:1b:6f:06:4c:89:48:2e:9f:0e:
                    41:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:81:01:E6:AA:71:2E:FF:2F:91:98:1F:46:29:7B:9C:B1:1F:A2:C1
            X509v3 Authority Key Identifier:
                keyid:5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:06:0e:41:6a:1b:9a:be:a6:1b:18:6b:50:74:f4:c7:53:17:
         ef:5a:0d:b1:8a:4a:f8:5b:c6:51:63:47:6f:a2:53:73:2b:61:
         d0:cc:c1:62:f6:91:f7:cf:fb:83:4d:4b:cf:21:02:46:a5:21:
         19:4b:c7:c8:10:c2:71:bb:39:d5:d6:2e:77:5b:84:90:01:47:
         d3:a9:be:3c:07:23:e6:0f:5f:24:6f:0a:de:97:7b:f7:1b:20:
         6f:89:24:0b:c6:5f:0f:5b:06:f8:29:b9:00:b0:80:ae:83:bc:
         24:5c:41:7f:c5:27:d6:8f:e3:9e:2b:15:b5:a3:f8:0f:10:9b:
         e1:3f:3f:b5:8d:ab:d0:7b:f7:08:bc:9a:72:05:aa:f6:29:00:
         de:c8:d2:b8:58:79:35:fb:e8:96:b6:d1:44:b4:41:a8:b5:b8:
         5f:06:32:5e:f4:ce:1c:76:0c:aa:1c:42:c7:00:56:99:e3:4e:
         14:92:74:03:27:6c:20:d1:2d:22:fd:72:4b:c4:de:65:61:08:
         9c:5e:69:8a:43:1c:0c:2a:24:b8:fe:4e:d7:76:25:71:26:ca:
         a3:16:ce:64:05:a5:6a:63:42:cb:78:1f:41:45:6b:21:11:75:
         c9:b4:cd:db:72:ba:1f:dc:6c:e2:5c:a1:cf:53:a5:89:92:d2:
         49:97:12:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----