Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
File:                     67YrcxkGEIQRy1VV2BvcOj_cbbg.mft (raw, json)
Hash identifier:          s93hrroiqzLEFxbuNJPISqiKtSBRM3meByhSysVW4O8=
Subject key identifier:   43:BF:E0:8A:F0:8B:73:55:4C:09:44:4C:F4:87:0A:0E:88:0E:54:1F
Authority key identifier: EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
Certificate issuer:       /CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Certificate serial:       0197B77C22B1B23D97F6523BDCCF100F5579
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
Manifest number:          62
Signing time:             Sat 28 Jun 2025 17:00:55 +0000
Manifest this update:     Sat 28 Jun 2025 17:00:55 +0000
Manifest next update:     Sun 29 Jun 2025 17:00:55 +0000
Files and hashes:         1: 67YrcxkGEIQRy1VV2BvcOj_cbbg.crl (hash: kzV9AholIRm6sI4PEbyEs0bToQ9lPJ0oRKXOjn2UliU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 10:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:7c:22:b1:b2:3d:97:f6:52:3b:dc:cf:10:0f:55:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
        Validity
            Not Before: Jun 28 17:00:55 2025 GMT
            Not After : Jun 29 17:00:55 2025 GMT
        Subject: CN=43bfe08af08b73554c09444cf4870a0e880e541f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:f9:58:e1:7d:a4:4b:18:7a:63:98:6f:8f:71:
                    6d:b7:54:dc:d9:a6:83:8d:55:d7:d3:d2:0f:3e:94:
                    a8:c0:a1:65:57:83:18:e9:b0:26:a5:b0:0f:e5:8f:
                    14:e7:67:69:d0:e7:50:1f:00:67:ca:91:68:6e:c6:
                    6a:57:58:6d:3c:49:1c:37:b0:f4:38:65:d3:ae:ec:
                    73:f4:ba:90:21:38:a8:e1:8a:74:dd:0b:e0:86:52:
                    bc:bd:c2:e5:c3:11:95:7f:b1:9e:75:29:59:c4:37:
                    36:a7:89:8c:21:ed:72:f6:3a:63:da:fe:ea:ef:02:
                    98:3e:9e:c6:8f:81:2a:f6:96:2f:e4:fd:7e:f8:59:
                    15:8b:e6:3d:9e:be:3e:92:87:85:57:3f:b2:2f:4f:
                    1e:59:4f:22:22:11:05:93:62:0a:5d:bd:18:18:4f:
                    5d:ad:45:aa:5f:26:0c:c5:9f:08:a6:a0:1e:8f:c4:
                    8e:ba:f6:8a:4e:c4:e7:34:f2:78:33:c8:85:24:dd:
                    cb:c9:ce:c0:92:e3:3c:c5:27:28:34:03:38:20:1c:
                    51:48:ce:eb:7e:65:f1:67:bd:1b:77:b2:84:30:ce:
                    2e:5b:42:97:90:a3:fb:38:ef:b9:53:03:8e:1d:ef:
                    9b:9d:41:f4:9c:57:ae:ff:9b:38:c4:b7:e0:df:24:
                    ec:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:BF:E0:8A:F0:8B:73:55:4C:09:44:4C:F4:87:0A:0E:88:0E:54:1F
            X509v3 Authority Key Identifier:
                keyid:EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:a9:39:73:3d:8e:41:83:9a:c3:a1:49:3c:53:d8:b7:b5:58:
         9b:a0:25:89:44:ef:56:4a:74:ed:48:6d:2a:1b:d6:7e:57:ec:
         43:2e:0f:61:db:ef:9e:56:2b:fb:0e:83:88:93:59:c0:fd:17:
         69:03:e1:79:f0:96:b5:ff:31:46:8a:91:19:0a:4e:b8:ef:1f:
         ff:eb:a7:28:74:08:ed:cd:01:eb:a1:f2:a5:db:fd:e2:dc:b7:
         ea:f2:a1:ae:9a:24:ea:79:1b:3e:3e:95:98:85:cf:71:a1:60:
         26:a5:7a:ef:fd:85:ba:69:e6:a3:20:c0:27:ce:f6:6f:a7:3f:
         3d:9b:88:81:2b:31:59:09:b5:25:eb:7c:0d:46:bd:bd:45:9e:
         2b:68:93:af:36:e5:2a:0e:1f:3f:f5:6f:56:1a:a1:a6:89:32:
         e9:64:95:54:19:81:f8:e3:30:6a:01:36:9c:25:60:7d:70:f6:
         a3:20:eb:e5:b5:88:25:19:0c:83:38:d7:a5:77:a4:e8:23:62:
         74:8c:6f:34:99:bf:02:0d:27:c8:d7:18:78:1f:27:18:fd:94:
         c1:23:f9:2c:5a:81:66:a7:51:d3:13:50:98:9a:15:cc:4d:c1:
         a6:e0:88:de:c1:0c:53:d9:bd:64:6a:54:5a:d4:42:e0:e0:56:
         76:dd:ed:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----