Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
File:                     k4KIfhkEky8RhsLDHGqS_17GQ4c.mft (raw, json)
Hash identifier:          X8VO5VsVg+tMAcbuFaEgiEXHKDzlvfpXNcuVXJ9yQ9g=
Subject key identifier:   C1:18:CE:15:34:1B:2C:E6:15:26:23:03:A7:B1:2F:2E:9B:69:54:81
Authority key identifier: 93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87
Certificate issuer:       /CN=9382887e1904932f1186c2c31c6a92ff5ec64387
Certificate serial:       0197B6A1DE235A8069A885E9316C0443F82C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
Manifest number:          02E4
Signing time:             Sat 28 Jun 2025 13:02:30 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:30 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:30 +0000
Files and hashes:         1: k4KIfhkEky8RhsLDHGqS_17GQ4c.crl (hash: ST4bOFfeDoM+IQM/6PfaMfhob9woALaX8PtPNqY8Nqw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:02:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:de:23:5a:80:69:a8:85:e9:31:6c:04:43:f8:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9382887e1904932f1186c2c31c6a92ff5ec64387
        Validity
            Not Before: Jun 28 13:02:30 2025 GMT
            Not After : Jun 29 13:02:30 2025 GMT
        Subject: CN=c118ce15341b2ce615262303a7b12f2e9b695481
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:4e:a4:a8:02:50:55:25:e9:4a:80:2f:7d:96:
                    ea:fe:5b:40:02:be:40:d8:82:f9:17:c0:3e:6b:dd:
                    42:a6:1b:7e:18:84:cf:9e:0c:82:2e:57:0f:66:c7:
                    98:c0:f4:a6:5f:2c:ad:07:de:ca:f5:3a:ce:d4:e9:
                    5b:23:21:45:ce:80:e3:14:6a:9c:07:b0:82:2e:9c:
                    0e:6e:de:03:7a:ae:09:b4:06:bd:dd:85:be:69:66:
                    92:0a:a6:ab:69:6f:09:42:87:ec:3d:38:04:33:ff:
                    ba:d4:84:46:ff:40:c9:9b:6e:ee:5c:30:8f:ca:56:
                    6d:0c:49:92:3b:cc:73:be:59:2a:12:b9:8a:31:66:
                    d0:e7:d1:3c:6e:d6:12:aa:5d:b7:58:11:82:38:25:
                    e0:42:7f:b6:47:06:bd:4b:a0:1b:4b:c6:1b:ab:44:
                    12:aa:aa:40:e0:75:c1:f2:97:b3:d0:b3:5c:6c:63:
                    2b:a6:92:26:d8:2a:cc:21:50:ce:e5:15:98:28:5c:
                    26:ee:a7:01:a4:39:9e:2d:40:92:9c:70:b8:5c:31:
                    43:a4:a8:5c:06:9f:8c:63:0e:ac:19:98:af:15:8d:
                    68:3e:91:c6:05:6d:7a:78:ba:91:75:e7:8e:35:af:
                    4d:f6:0c:c5:ed:fd:87:fc:18:91:8a:5b:89:37:19:
                    0e:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:18:CE:15:34:1B:2C:E6:15:26:23:03:A7:B1:2F:2E:9B:69:54:81
            X509v3 Authority Key Identifier:
                keyid:93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:53:5b:f5:e7:50:2d:34:11:d7:8c:8f:b6:d6:13:b6:d2:78:
         0b:f3:81:40:69:e8:f2:27:20:17:44:a5:16:69:7f:02:6a:03:
         f6:82:f9:04:e8:39:63:c9:bf:43:ea:12:d5:13:ce:cb:81:70:
         00:33:50:f4:9a:fd:ce:c8:56:45:cd:09:f4:28:42:f5:33:d2:
         78:50:f8:99:e7:f3:5d:6f:10:66:2d:9f:7e:7f:39:73:20:35:
         71:71:b0:b8:c5:66:46:e3:ca:fe:a2:d2:bc:d2:2c:1e:3f:19:
         44:df:56:71:05:27:c8:e2:a6:05:c2:09:ed:1d:b8:e8:2e:ea:
         b4:f2:15:8b:6c:ed:78:93:37:9e:0a:b0:94:05:2e:78:32:9a:
         6e:5e:aa:16:d1:73:4b:6c:31:9e:1b:ef:87:7b:1b:73:77:1c:
         d3:7d:ad:26:67:cc:20:66:de:f7:1e:69:a2:3f:0d:1c:b8:6e:
         9f:0a:c1:ac:7f:e9:be:81:25:79:14:af:fb:59:88:f9:28:cd:
         0b:78:15:21:df:ec:13:39:47:1d:0a:25:6a:d0:8c:33:db:14:
         88:21:b3:d8:35:39:e4:32:7d:76:88:04:6d:7d:ba:0c:4f:ce:
         b4:62:85:b6:69:4b:2c:9d:b4:1f:c2:e3:68:45:45:b7:b4:3c:
         85:c3:dd:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----