Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft
File:                     dtAtj564761YOO-TGIVJb8-vHGE.mft (raw, json)
Hash identifier:          lnF59VuOYpZI4Tj68dQiySk2Rs86OuvhC4B5qRXstUk=
Subject key identifier:   B4:7A:C0:DB:DB:82:CA:84:23:24:E0:E6:EF:6C:EA:C6:8D:98:9D:CF
Authority key identifier: 76:D0:2D:8F:9E:B8:EF:AD:58:38:EF:93:18:85:49:6F:CF:AF:1C:61
Certificate issuer:       /CN=76d02d8f9eb8efad5838ef931885496fcfaf1c61
Certificate serial:       0197B6A1C5934C8085C88CAA753C5B49D939
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dtAtj564761YOO-TGIVJb8-vHGE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft
Manifest number:          15B3
Signing time:             Sat 28 Jun 2025 13:02:24 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:24 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:24 +0000
Files and hashes:         1: dtAtj564761YOO-TGIVJb8-vHGE.crl (hash: KH93XZ7n+KfjVvES8Fj9NZkKiqzikRBFVLxuPJXIvao=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dtAtj564761YOO-TGIVJb8-vHGE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:02:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:c5:93:4c:80:85:c8:8c:aa:75:3c:5b:49:d9:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76d02d8f9eb8efad5838ef931885496fcfaf1c61
        Validity
            Not Before: Jun 28 13:02:24 2025 GMT
            Not After : Jun 29 13:02:24 2025 GMT
        Subject: CN=b47ac0dbdb82ca842324e0e6ef6ceac68d989dcf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:46:19:78:1d:cc:4b:bd:28:75:7f:d4:d2:5a:
                    0a:f6:10:f6:94:48:5f:f4:74:ed:ce:59:37:a4:db:
                    0f:d7:4a:dd:e9:5a:d1:b7:18:32:4e:59:fe:5d:57:
                    9f:23:9e:09:a1:31:e6:ac:e9:56:73:8b:7a:a2:42:
                    5d:16:46:ea:d6:bc:97:53:2d:37:a1:76:c6:40:0d:
                    5e:e0:62:17:70:a7:5a:7f:93:ad:5a:96:c2:20:cc:
                    e6:fa:c8:a0:c4:45:ba:dd:55:2e:9e:e2:c7:d5:36:
                    52:d7:b5:c4:f0:34:ee:0a:1a:06:89:85:e9:f5:7d:
                    2d:bf:4e:ec:aa:8e:fa:71:1e:82:dd:0e:48:54:97:
                    f7:47:54:d2:81:02:9d:80:51:06:01:d5:13:5d:a8:
                    27:e5:d4:8f:9f:f3:ad:cc:9f:2b:6b:92:81:92:1f:
                    71:e2:91:3a:c6:9c:b8:5f:f2:6b:f1:8f:1f:eb:25:
                    31:97:26:86:4a:77:0e:6d:84:2a:4b:45:db:e5:e2:
                    0e:15:29:5f:68:00:db:2a:01:01:3d:ad:39:d1:0e:
                    78:98:ed:e6:40:e7:27:2e:4e:a2:9a:94:3a:c2:09:
                    f1:33:10:63:d1:57:ff:03:8f:e2:23:77:cf:2f:4e:
                    81:39:ab:da:fa:8b:be:d2:4f:18:b6:c7:53:95:36:
                    ab:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:7A:C0:DB:DB:82:CA:84:23:24:E0:E6:EF:6C:EA:C6:8D:98:9D:CF
            X509v3 Authority Key Identifier:
                keyid:76:D0:2D:8F:9E:B8:EF:AD:58:38:EF:93:18:85:49:6F:CF:AF:1C:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dtAtj564761YOO-TGIVJb8-vHGE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:fe:55:c6:18:06:e1:76:cc:f1:2d:3d:9e:81:85:a8:96:43:
         35:cc:e4:ea:eb:9a:18:47:dc:9c:1e:b0:eb:f4:0e:6e:5c:d9:
         fc:b0:f8:3d:ef:a4:fa:62:18:a0:d9:ca:6a:c7:b9:63:32:2a:
         f4:40:ce:10:4c:7c:2a:21:46:6a:ed:2b:54:3e:e6:e2:0f:e4:
         62:2e:4c:f0:8a:f6:42:74:d8:4e:10:ab:42:8c:1d:c6:4d:8a:
         96:e1:53:89:8a:e4:5a:7c:f8:fd:5d:49:1c:47:d6:e7:4a:50:
         f3:65:95:0d:e3:cf:4f:77:de:2d:a2:9f:25:55:1f:8c:d7:79:
         3b:bf:e9:37:7b:93:30:6c:b3:52:e2:68:b0:01:3b:ef:2d:d3:
         20:a6:c7:c6:02:df:06:c0:01:33:20:47:70:17:c4:d5:39:d7:
         e9:9a:24:06:93:8a:7b:f3:59:89:dd:6f:00:07:c1:c1:1a:c6:
         24:fe:11:bd:5b:da:b0:df:4e:ff:7c:f6:36:41:82:b3:02:d4:
         d8:e7:4b:8a:59:4b:82:83:23:e2:d4:b5:df:4f:9a:46:da:02:
         e8:e4:09:6d:1a:02:fe:86:22:92:0e:fb:62:ab:82:ed:1d:c8:
         c3:97:1f:4c:63:fa:29:6e:5e:19:dd:4a:95:60:73:70:9a:0b:
         c3:97:72:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----