Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft
File:                     miIdT5cAcYIi7es06TinZjQ_JOE.mft (raw, json)
Hash identifier:          Bu9Kbdn8x0rIm4WRq0yJ6ZBiIhDQT64w66OSWBckmfs=
Subject key identifier:   F7:E7:D0:30:73:9F:17:10:8F:88:B9:55:CE:35:53:2F:C1:93:1C:72
Authority key identifier: 9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1
Certificate issuer:       /CN=9a221d4f9700718222edeb34e938a766343f24e1
Certificate serial:       0197C426A5983201DB56F776729823FCE687
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft
Manifest number:          1466
Signing time:             Tue 01 Jul 2025 04:02:36 +0000
Manifest this update:     Tue 01 Jul 2025 04:02:36 +0000
Manifest next update:     Wed 02 Jul 2025 04:02:36 +0000
Files and hashes:         1: miIdT5cAcYIi7es06TinZjQ_JOE.crl (hash: EDyA7O4aMzB7+Sf+YcmKHFg+OYFKgODFXIJhw25Amf0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 02 Jul 2025 04:02:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c4:26:a5:98:32:01:db:56:f7:76:72:98:23:fc:e6:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9a221d4f9700718222edeb34e938a766343f24e1
        Validity
            Not Before: Jul  1 04:02:36 2025 GMT
            Not After : Jul  2 04:02:36 2025 GMT
        Subject: CN=f7e7d030739f17108f88b955ce35532fc1931c72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:77:26:16:15:c9:b6:d1:1b:62:e9:31:62:14:
                    20:63:5b:eb:f4:14:dd:2f:cc:b0:75:42:d9:9e:43:
                    52:3e:5b:f9:9e:84:ce:7a:58:a0:4d:64:19:85:6b:
                    99:a7:c0:36:b2:90:f4:ff:dd:9a:a2:c6:21:bb:af:
                    61:d3:8f:f6:f2:c5:21:5b:63:ca:d4:b7:4e:48:84:
                    54:92:14:fe:4b:5f:62:98:ca:bd:e0:25:01:00:68:
                    71:9c:e5:df:ba:b9:6d:7a:e5:93:17:fe:28:24:51:
                    e2:47:ad:bd:05:96:6a:f8:8f:97:0b:28:91:9b:df:
                    87:35:59:ba:87:60:ab:c9:a9:e3:91:5d:f1:b2:40:
                    95:87:be:6d:37:d8:1e:b3:87:7c:f4:a6:62:e1:0d:
                    4f:3c:ce:92:18:b5:e9:72:b0:4d:ed:65:c4:06:2f:
                    0d:9e:64:39:5e:e3:45:9e:44:6b:7b:86:e1:60:4e:
                    42:1f:92:56:90:ee:e1:16:f8:ba:1a:44:15:53:a7:
                    30:76:32:3f:a0:28:f3:ee:17:d4:b2:b0:e6:33:bb:
                    ba:7d:d3:3a:ff:24:09:8e:06:76:b0:29:5a:53:51:
                    52:1a:a0:90:54:01:f0:65:35:bb:f8:de:38:b2:de:
                    be:8a:0d:8c:fe:25:fe:f5:f7:af:eb:41:c6:2b:09:
                    07:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:E7:D0:30:73:9F:17:10:8F:88:B9:55:CE:35:53:2F:C1:93:1C:72
            X509v3 Authority Key Identifier:
                keyid:9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:97:d4:78:5c:4e:e2:a0:42:5b:07:99:bf:46:a8:f2:9a:e0:
         ff:17:ee:0d:86:1e:16:ef:58:7f:a9:29:8e:56:66:35:47:05:
         a9:ce:bf:0f:78:7f:ff:1a:b6:65:3c:b4:87:24:74:53:c9:12:
         5b:a7:87:38:c3:84:84:b0:6e:ed:4f:9f:9f:dd:50:eb:2c:a7:
         32:35:6a:f1:72:43:79:09:0b:79:40:f4:bf:8c:b6:4e:c3:8d:
         1e:03:2e:78:19:b1:dc:72:2a:1f:e9:e5:26:32:de:b4:a1:40:
         07:4b:75:82:ac:31:66:24:58:d2:9c:9b:0e:89:3a:36:ba:02:
         a0:e9:43:90:45:64:62:d9:c5:fe:43:70:8b:32:a8:db:c6:72:
         d1:0c:67:3e:a3:6b:fc:f3:5f:d0:1e:47:2a:62:d0:db:d0:e4:
         60:8e:51:27:b9:fb:5b:90:50:2a:46:85:ab:2b:e4:30:5b:a1:
         35:93:ab:ee:c1:fd:b9:c6:30:3b:a4:84:7a:4e:67:c4:38:c1:
         87:a9:3e:10:87:92:69:e1:3c:d7:24:a1:05:1b:c4:7b:cb:69:
         f5:b0:13:ce:c6:99:5b:36:41:54:6d:f5:50:5e:31:9a:d2:06:
         0a:98:67:03:ac:42:ba:8c:f4:65:af:e7:ef:56:d2:81:bd:ad:
         16:c9:f8:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----