Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft
File:                     an0UIH91yLFYDbJ_defD_bH_hgw.mft (raw, json)
Hash identifier:          IHXfudJDqFfcHTwmpu851X2VLWPhBpUHkarRXMLvhDQ=
Subject key identifier:   45:CD:BF:FC:3F:79:8D:51:B8:A2:B3:C5:89:17:8D:72:04:BE:8D:43
Authority key identifier: 6A:7D:14:20:7F:75:C8:B1:58:0D:B2:7F:75:E7:C3:FD:B1:FF:86:0C
Certificate issuer:       /CN=6a7d14207f75c8b1580db27f75e7c3fdb1ff860c
Certificate serial:       0197B9341A1598289BDD2EC6197135EA2283
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/an0UIH91yLFYDbJ_defD_bH_hgw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft
Manifest number:          0845
Signing time:             Sun 29 Jun 2025 01:01:28 +0000
Manifest this update:     Sun 29 Jun 2025 01:01:28 +0000
Manifest next update:     Mon 30 Jun 2025 01:01:28 +0000
Files and hashes:         1: an0UIH91yLFYDbJ_defD_bH_hgw.crl (hash: Gxz5HDnyJau58nnHHRiCv2b9dOJUqXi3UQlokSZwZc0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/an0UIH91yLFYDbJ_defD_bH_hgw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 19:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:34:1a:15:98:28:9b:dd:2e:c6:19:71:35:ea:22:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a7d14207f75c8b1580db27f75e7c3fdb1ff860c
        Validity
            Not Before: Jun 29 01:01:28 2025 GMT
            Not After : Jun 30 01:01:28 2025 GMT
        Subject: CN=45cdbffc3f798d51b8a2b3c589178d7204be8d43
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:0e:34:e3:12:90:4f:9b:53:e5:13:c8:65:67:
                    33:7d:92:80:54:fa:17:21:1f:b5:82:e2:2a:06:53:
                    b2:d3:72:a3:16:b2:9c:00:59:bf:80:8f:23:42:9e:
                    17:be:14:e4:50:f4:1e:e6:5c:47:c3:c0:5e:54:a1:
                    62:cd:5d:fb:5c:a6:54:4c:a2:06:ee:fc:de:74:d4:
                    d1:63:d8:db:83:3f:8a:56:9b:e5:45:93:04:d7:a3:
                    37:d1:ae:00:14:89:85:1a:0e:15:7b:84:ca:37:29:
                    b7:dd:d8:30:c4:e2:ea:be:aa:2e:05:4c:3e:d9:4e:
                    45:29:97:b8:cc:16:4f:46:a3:32:d8:72:12:85:1f:
                    bc:48:8d:2f:ac:6b:87:a1:20:ac:b7:64:91:e6:5d:
                    43:2d:55:9a:dc:9a:b0:81:66:31:2d:68:1b:b1:66:
                    38:fb:da:d3:39:9d:36:86:b9:20:f7:aa:a0:52:c1:
                    12:f8:00:73:6f:dc:32:3e:62:e3:2f:65:41:b5:c2:
                    bc:e0:19:3f:ff:c2:b0:63:70:bb:ba:19:bd:29:66:
                    35:15:f5:9f:59:53:42:61:76:cc:70:7a:4c:75:64:
                    12:c9:5b:49:6f:a7:af:4f:72:d2:1c:b4:0c:50:f2:
                    34:75:be:41:cd:af:56:d1:20:28:99:93:55:54:6d:
                    12:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:CD:BF:FC:3F:79:8D:51:B8:A2:B3:C5:89:17:8D:72:04:BE:8D:43
            X509v3 Authority Key Identifier:
                keyid:6A:7D:14:20:7F:75:C8:B1:58:0D:B2:7F:75:E7:C3:FD:B1:FF:86:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/an0UIH91yLFYDbJ_defD_bH_hgw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:26:1f:77:e2:6c:13:c0:2a:29:54:4a:5a:04:f6:dd:30:45:
         29:aa:36:77:19:1d:ca:1d:0e:1a:29:d7:a5:7a:eb:3c:f5:ad:
         f6:d9:1d:47:93:b9:9d:5b:80:4a:70:21:d8:85:31:c9:bb:4e:
         90:a1:58:54:ec:10:cc:0a:29:4a:e4:ce:9c:22:5f:5d:07:b0:
         3c:78:67:14:3b:51:bf:b1:44:89:17:f4:1a:ca:fb:8b:3d:9b:
         e1:13:bc:ec:2e:1e:23:4c:a2:91:02:5f:37:4d:f0:7f:90:21:
         40:07:46:fd:c7:ee:94:82:7e:ba:6a:2c:d8:c8:fe:b3:c6:a3:
         1b:ea:6b:9f:d6:b9:65:c7:79:26:78:49:67:d8:de:4c:a3:54:
         65:e6:4b:15:9f:0a:ab:9c:31:de:0b:b8:54:4d:4f:9f:f3:a8:
         b7:1b:5f:36:f6:8f:59:23:59:0e:9e:bf:28:35:e8:ae:64:1f:
         53:b4:80:3f:dc:d1:44:44:09:6a:91:ff:68:34:81:0c:76:08:
         10:88:fc:e0:51:ab:4a:04:4e:d3:d2:45:03:23:3a:d1:aa:0c:
         a4:d8:a8:23:94:36:3a:68:e7:5a:93:9e:d0:a8:a8:19:dc:ed:
         58:a1:77:24:32:80:d4:93:70:77:48:4d:bd:7e:4e:28:90:89:
         1a:77:e8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----