Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
File:                     FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft (raw, json)
Hash identifier:          62S39GdB6rdIarAGFL/tkbvSnpaTjKMlrsKauSavl5g=
Subject key identifier:   7D:71:53:FD:F2:72:13:07:F0:D1:93:B6:6F:CE:E0:5C:59:52:81:EC
Authority key identifier: 14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A
Certificate issuer:       /CN=14c735259fdb7b83f277adf12d08cc98b5a6100a
Certificate serial:       0197B6A0AC7531E8FBECC244EA90F8008DD8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
Manifest number:          08D6
Signing time:             Sat 28 Jun 2025 13:01:12 +0000
Manifest this update:     Sat 28 Jun 2025 13:01:12 +0000
Manifest next update:     Sun 29 Jun 2025 13:01:12 +0000
Files and hashes:         1: FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl (hash: d1DcyzHj1S7UyFBWLrMAX5xzD8f83fAH+GsYTyesj/g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a0:ac:75:31:e8:fb:ec:c2:44:ea:90:f8:00:8d:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14c735259fdb7b83f277adf12d08cc98b5a6100a
        Validity
            Not Before: Jun 28 13:01:12 2025 GMT
            Not After : Jun 29 13:01:12 2025 GMT
        Subject: CN=7d7153fdf2721307f0d193b66fcee05c595281ec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:56:4b:ce:5b:61:0f:ff:3c:db:99:c9:0e:5d:
                    41:43:cb:c4:0b:74:ae:96:70:ae:d0:4e:b0:62:3b:
                    74:40:89:42:c3:da:46:d2:ac:44:b6:a3:50:6b:7d:
                    44:d7:f0:71:32:58:c3:ba:24:b5:f5:9b:e9:4c:ea:
                    86:16:81:78:ac:a4:40:82:b6:ee:82:be:97:cb:69:
                    0b:f5:ca:23:a0:26:a3:f8:01:b3:b7:03:65:6f:46:
                    df:d3:49:0f:5b:a3:1a:2a:e9:ea:e6:f5:97:d9:6f:
                    fd:04:57:da:a2:ea:ce:e1:77:fc:f1:94:5b:05:28:
                    c3:28:b0:e7:66:7c:42:43:d5:44:82:9c:83:f5:bc:
                    dc:c4:54:df:0b:05:4a:84:c3:fd:97:ba:7d:bc:ee:
                    08:09:3b:a3:e6:57:c4:3c:da:31:5f:98:a7:0c:47:
                    53:47:d4:85:9c:8e:71:98:c9:e0:b5:3f:af:5b:13:
                    b0:ff:c0:8a:fd:01:3b:67:38:1c:38:40:ca:72:18:
                    c7:23:ff:9f:ec:12:8b:02:5d:5f:66:aa:4a:6a:08:
                    0a:e1:de:f2:c2:22:7b:0b:8a:f8:b2:91:1e:eb:c3:
                    67:d3:9b:e4:85:20:10:22:44:b7:d0:e1:69:78:c7:
                    ef:be:3d:bc:06:f2:22:37:3e:11:50:30:e8:f7:68:
                    6c:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:71:53:FD:F2:72:13:07:F0:D1:93:B6:6F:CE:E0:5C:59:52:81:EC
            X509v3 Authority Key Identifier:
                keyid:14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:96:73:0f:a7:f9:bb:4b:85:30:7f:3e:37:2b:96:2e:ef:aa:
         71:fd:25:f1:29:70:b0:5f:52:e1:d2:dd:51:f1:c8:93:e8:fc:
         2c:01:8e:25:87:af:73:89:1c:39:4e:9e:69:de:82:0b:e5:47:
         31:51:60:ac:05:9f:d0:20:e8:4f:36:0f:77:d3:e4:c1:d5:77:
         c9:f3:46:4e:b1:6c:87:f0:ce:18:c0:2b:1e:06:ee:02:b5:0a:
         a2:dc:34:fa:fa:58:b7:49:3f:ca:7e:e4:c4:5d:06:99:1f:bb:
         c2:9d:71:e4:6b:1e:7b:bf:da:40:7c:d4:da:6a:7b:15:e0:68:
         69:3b:dd:91:12:cb:6d:c6:c5:e2:36:00:01:2c:fb:bd:35:f5:
         45:2b:74:30:58:79:6a:09:fe:df:17:38:02:4c:ce:1c:27:fe:
         be:3b:8c:c8:32:5b:0e:23:3a:27:3c:8e:db:f4:fe:d2:69:57:
         69:b4:c6:22:32:87:ad:0d:7e:53:14:e8:a9:4c:e7:dd:45:7e:
         52:03:02:f2:bd:42:22:0d:2d:49:93:ec:76:7e:0b:af:d5:35:
         56:8e:0b:a1:47:e1:fe:02:5e:b9:fd:b6:46:67:0e:22:96:9f:
         4e:33:61:4d:1c:65:c7:67:db:29:71:bd:97:45:4d:d6:27:a5:
         a1:6e:20:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----