Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft
File:                     52vcVigM5dn89QMlGKfsm2HizO0.mft (raw, json)
Hash identifier:          3aQ9rS5qSbuei5NiRRRhkxFEEXkXsmjgpV1y7OWEW2o=
Subject key identifier:   BD:04:AB:CB:B2:09:9A:0B:48:5E:38:9D:4A:86:C4:E3:77:A5:FD:92
Authority key identifier: E7:6B:DC:56:28:0C:E5:D9:FC:F5:03:25:18:A7:EC:9B:61:E2:CC:ED
Certificate issuer:       /CN=e76bdc56280ce5d9fcf5032518a7ec9b61e2cced
Certificate serial:       0197B6A243E0A98869F7F3E8CC67128130A1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft
Manifest number:          107E
Signing time:             Sat 28 Jun 2025 13:02:56 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:56 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:56 +0000
Files and hashes:         1: 52vcVigM5dn89QMlGKfsm2HizO0.crl (hash: EXUv2WbvQd9SHIlZbUF/SYKipoUPyJxc4mZpC8QO2Aw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:02:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a2:43:e0:a9:88:69:f7:f3:e8:cc:67:12:81:30:a1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e76bdc56280ce5d9fcf5032518a7ec9b61e2cced
        Validity
            Not Before: Jun 28 13:02:56 2025 GMT
            Not After : Jun 29 13:02:56 2025 GMT
        Subject: CN=bd04abcbb2099a0b485e389d4a86c4e377a5fd92
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:35:7a:0b:eb:d2:18:0a:db:45:d5:cb:43:14:
                    2c:84:bb:74:39:eb:39:da:3a:d0:84:60:01:b8:b2:
                    df:db:2a:f4:60:17:24:35:bd:fc:53:cb:de:8a:35:
                    8c:82:0c:9b:12:0d:07:e8:76:3a:2c:1f:af:3c:cc:
                    0d:43:09:4d:47:74:15:ee:41:83:53:2c:d4:16:77:
                    ab:a4:fc:62:b7:8f:e6:d1:b6:8c:53:9e:4a:f7:9d:
                    d6:ab:84:ea:36:42:bf:bf:f8:a3:13:00:2f:f9:d6:
                    de:93:38:40:c0:a9:aa:29:8f:d5:1c:a5:cb:76:62:
                    cc:2e:21:0e:ad:e1:9a:72:8c:af:33:57:d9:12:16:
                    fa:89:31:3b:da:fb:d1:af:43:1e:10:a6:a3:a2:4b:
                    e1:31:c4:96:23:94:20:6c:9a:d4:67:d5:4e:65:61:
                    d0:4a:3a:c9:6d:0b:42:82:25:b4:c6:c8:cb:b2:7b:
                    9e:ad:cc:45:9d:a1:70:12:71:56:59:07:5d:8f:d8:
                    7f:22:ec:03:59:6c:fb:52:cc:46:e1:3f:de:8c:89:
                    d0:50:f4:42:68:5a:72:ab:6a:57:cc:96:46:0f:4a:
                    00:0b:be:f9:d1:42:e1:1b:c1:f3:01:e0:52:0e:20:
                    61:e5:52:b9:d3:5e:00:e3:f4:fb:6d:17:55:db:35:
                    4c:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:04:AB:CB:B2:09:9A:0B:48:5E:38:9D:4A:86:C4:E3:77:A5:FD:92
            X509v3 Authority Key Identifier:
                keyid:E7:6B:DC:56:28:0C:E5:D9:FC:F5:03:25:18:A7:EC:9B:61:E2:CC:ED

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:18:31:11:92:2b:bc:38:e9:b1:7b:b7:e9:33:da:54:fb:ea:
         75:c9:0d:37:5f:28:e7:5b:de:85:b8:7e:93:fc:e3:43:77:77:
         07:7e:2d:9b:3e:40:55:ca:a3:23:11:da:55:86:fd:89:08:bd:
         8b:6d:4a:df:9a:c9:b4:82:f5:a9:9f:b5:ca:a1:41:66:24:1b:
         38:77:73:33:a3:48:09:cc:fb:94:58:6d:00:de:6f:11:f6:dc:
         ad:fd:71:19:6e:5f:4d:b8:d5:d3:bf:50:3f:c4:ca:23:6f:88:
         cb:e7:ef:05:f1:bd:ff:7f:73:67:f1:e8:2f:03:34:37:2f:e5:
         24:d5:26:47:38:5d:76:5d:46:06:dd:2f:1d:a2:bf:9d:8a:ac:
         1b:8f:68:ff:24:cd:cc:0f:f0:bf:8f:00:d7:94:f8:65:32:8b:
         a9:01:cf:31:2c:0e:41:8a:0c:fd:90:28:21:a2:bb:ff:23:95:
         91:8e:ee:3a:22:cb:a9:a9:c3:4d:e5:02:f1:02:5a:50:69:d2:
         16:b5:a9:72:70:fe:cd:ad:aa:9e:01:c2:7c:6f:91:cd:90:2a:
         22:da:69:9f:e9:5a:c5:8b:38:aa:82:ba:50:58:92:8a:2b:a1:
         63:23:57:72:43:58:17:38:b0:4c:f1:ac:7a:6e:36:e4:64:d2:
         32:ec:a0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----