Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft
File:                     in1zAecVR30mgJu6u0zQMr07Vhg.mft (raw, json)
Hash identifier:          DVFoiNRwmckm08oeOVhHMJxVBjpoo4O+ltdL4HmdatQ=
Subject key identifier:   22:CF:E1:A0:1C:D0:5B:D4:E5:CF:3B:E9:19:0E:AF:D7:37:EA:F5:C3
Authority key identifier: 8A:7D:73:01:E7:15:47:7D:26:80:9B:BA:BB:4C:D0:32:BD:3B:56:18
Certificate issuer:       /CN=8a7d7301e715477d26809bbabb4cd032bd3b5618
Certificate serial:       0197B96A87B97A0F958D5909604563C64653
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/in1zAecVR30mgJu6u0zQMr07Vhg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft
Manifest number:          0265
Signing time:             Sun 29 Jun 2025 02:00:55 +0000
Manifest this update:     Sun 29 Jun 2025 02:00:55 +0000
Manifest next update:     Mon 30 Jun 2025 02:00:55 +0000
Files and hashes:         1: in1zAecVR30mgJu6u0zQMr07Vhg.crl (hash: cLohLgQGorKjb3wMNwJwvsc7Eo3C+0SMOijbIf7PAbM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/in1zAecVR30mgJu6u0zQMr07Vhg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 02:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:6a:87:b9:7a:0f:95:8d:59:09:60:45:63:c6:46:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8a7d7301e715477d26809bbabb4cd032bd3b5618
        Validity
            Not Before: Jun 29 02:00:55 2025 GMT
            Not After : Jun 30 02:00:55 2025 GMT
        Subject: CN=22cfe1a01cd05bd4e5cf3be9190eafd737eaf5c3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:d6:22:14:cd:fd:72:d8:54:bb:73:77:0f:48:
                    c8:74:8f:3a:c8:7e:5b:3f:5d:dd:fe:05:e2:d3:9d:
                    41:b5:ba:11:f2:00:90:71:a6:15:18:e1:ec:fb:d6:
                    60:3e:37:8f:2a:c4:c1:4f:6d:3e:ed:fb:a0:c6:e1:
                    51:5a:c8:ed:0a:0c:ed:12:54:11:d3:57:df:dc:ae:
                    6c:65:63:b6:21:4f:5a:c2:55:ad:ea:e1:8c:f1:4b:
                    5e:55:51:f5:67:67:6d:16:52:d8:b2:69:61:c9:df:
                    b6:83:18:e8:85:72:4d:1f:85:5e:73:c2:e3:91:42:
                    a3:7f:59:dc:58:66:af:c5:92:01:04:2f:3c:32:85:
                    c7:83:bd:c4:83:46:72:fd:6f:f4:62:d0:b4:0b:4b:
                    65:8c:08:d6:2b:a9:f9:37:c3:1e:7e:27:e7:d4:c9:
                    b9:23:b9:cd:c3:07:d1:0a:3e:25:b8:3c:14:00:e0:
                    4e:5c:32:b2:76:c3:e5:a1:e0:06:16:91:a1:f9:ca:
                    d8:2f:69:03:0a:1d:cb:04:00:32:f9:3a:48:20:ce:
                    75:af:e9:e3:7c:db:eb:c3:f3:06:f0:97:74:27:19:
                    46:5d:21:9a:d0:b7:d9:90:cd:30:66:50:9a:de:ae:
                    41:1d:51:65:aa:0f:13:06:89:29:c7:e6:6c:45:57:
                    cf:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:CF:E1:A0:1C:D0:5B:D4:E5:CF:3B:E9:19:0E:AF:D7:37:EA:F5:C3
            X509v3 Authority Key Identifier:
                keyid:8A:7D:73:01:E7:15:47:7D:26:80:9B:BA:BB:4C:D0:32:BD:3B:56:18

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/in1zAecVR30mgJu6u0zQMr07Vhg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b66986-8f6b-46b9-bccd-f7369f9dcc9c/1/in1zAecVR30mgJu6u0zQMr07Vhg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:43:a3:f1:33:a6:94:f5:d3:5d:cd:f7:2c:b5:97:74:d6:6b:
         a3:ac:d7:0e:d6:65:c5:b1:f1:0a:c9:d8:30:99:2f:99:6a:5d:
         e7:eb:d4:ee:af:2d:8b:95:22:88:fd:47:ff:66:3e:24:e0:1c:
         c0:d5:3a:55:10:c6:f4:39:81:9a:e8:d4:b9:59:98:52:c3:7a:
         37:10:19:e1:25:fa:9c:20:b1:79:fb:4a:b0:8d:3b:3b:20:f2:
         92:bc:d0:91:98:06:b6:78:34:e7:e1:c1:d1:fb:56:f0:d3:83:
         4e:51:7e:ba:21:57:92:a3:a7:49:86:60:fa:20:29:12:f9:23:
         6c:54:28:d3:19:35:1b:3d:d7:cb:31:c5:9d:74:fb:cc:ee:bf:
         cc:b6:98:46:ea:23:2c:c3:72:ab:71:f8:72:f8:8d:10:65:54:
         21:84:86:86:28:2f:4a:f2:08:39:30:f1:dc:d6:44:8e:65:8d:
         85:22:d8:10:2f:79:a4:4d:37:46:f4:39:78:26:13:5d:da:75:
         ab:d8:ae:dc:e0:b1:86:0d:4e:5c:a1:31:f4:3d:92:9a:06:a4:
         6f:3d:8c:89:53:d9:d6:98:3e:68:ed:a9:fd:1f:ab:cd:a7:9b:
         84:4e:b8:c1:ba:27:2b:97:da:cc:92:69:80:f7:9b:ec:0b:0d:
         62:17:3a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----