Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File:                     obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier:          p9LheQErHJP+4Va3Sy/p/Cx+qDEpMj/vw2rUngKtQ3s=
Subject key identifier:   AC:52:FA:48:29:72:03:6A:E2:CA:06:B7:A1:1B:60:D1:6F:CD:A2:C9
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer:       /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial:       0197B96B27DE117AA2031569F0B1A80115F6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number:          05CB
Signing time:             Sun 29 Jun 2025 02:01:36 +0000
Manifest this update:     Sun 29 Jun 2025 02:01:36 +0000
Manifest next update:     Mon 30 Jun 2025 02:01:36 +0000
Files and hashes:         1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: sGs14G5vHvcSt+eg455Lu6EkWn7zUsDbeDvdv92Mgwk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 02:01:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:6b:27:de:11:7a:a2:03:15:69:f0:b1:a8:01:15:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
        Validity
            Not Before: Jun 29 02:01:36 2025 GMT
            Not After : Jun 30 02:01:36 2025 GMT
        Subject: CN=ac52fa482972036ae2ca06b7a11b60d16fcda2c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:6e:b6:1f:fe:e1:ee:50:9c:01:54:83:06:66:
                    6d:07:11:94:17:bc:de:e2:de:31:7b:fb:85:f8:20:
                    6d:9e:8d:7f:15:5d:6f:89:ad:09:74:24:52:98:b0:
                    da:35:55:74:e1:cf:90:7e:44:fa:35:bf:dc:7b:3d:
                    e5:1e:ff:60:38:40:9a:53:6e:a0:dc:9d:a5:29:d4:
                    ed:f8:ee:d8:85:d7:b0:30:a5:73:19:1b:1c:f9:8e:
                    63:41:0f:10:0b:b1:31:83:71:9c:db:27:a6:e4:ca:
                    e9:03:7f:77:c2:7d:be:9c:42:14:61:18:0c:3d:40:
                    d0:00:2a:f4:cc:90:bb:26:c6:b7:be:57:35:c8:57:
                    b2:10:b9:f4:14:4e:19:79:92:61:69:f0:d4:85:60:
                    d7:a7:18:fc:fb:8a:eb:5d:19:c3:94:11:a0:37:56:
                    a0:f7:86:12:e8:54:18:48:e4:33:40:26:33:49:5e:
                    81:ed:1d:ec:e5:89:16:86:87:ba:5f:db:be:88:98:
                    94:78:23:5a:43:9b:87:84:79:4b:4e:9d:22:dd:80:
                    e3:fb:98:55:f1:84:e7:64:20:f4:41:2d:80:b0:77:
                    a3:88:cb:f7:e0:d6:6e:04:d6:05:c0:c8:fd:3f:b4:
                    2f:12:9f:11:87:be:0b:4e:a5:f2:02:98:e5:d3:ba:
                    a2:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:52:FA:48:29:72:03:6A:E2:CA:06:B7:A1:1B:60:D1:6F:CD:A2:C9
            X509v3 Authority Key Identifier:
                keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:85:a9:25:f7:46:62:b0:88:fb:83:06:3a:64:68:8f:7a:d9:
         c2:85:b9:08:73:48:30:bb:99:8f:44:fa:06:d6:48:35:23:67:
         ee:44:0b:1e:d7:ea:4a:f1:a0:5c:ed:23:e9:07:ae:27:8b:db:
         1e:7c:26:a0:48:a2:ef:d3:9c:aa:c6:51:84:29:8e:01:89:fb:
         d5:99:58:19:99:67:1e:d2:f5:1b:de:7a:dc:6c:e3:5f:0b:99:
         ad:29:fb:de:64:64:ed:48:78:33:44:8a:de:74:76:24:f7:d5:
         0e:50:c1:db:d3:91:25:0e:58:a6:80:3d:4c:11:6a:60:4c:fa:
         e9:84:2c:d0:7b:8b:eb:6f:c7:66:5c:cb:89:4a:3c:08:c8:18:
         3c:a3:f9:e0:9c:1b:b4:54:d4:bd:f6:dd:df:4b:f1:e7:b2:76:
         80:94:3d:4d:14:4f:88:47:c9:0d:4b:a7:0a:97:03:79:66:e4:
         b2:62:d4:67:74:a5:af:64:44:f1:60:15:2a:10:b9:6f:71:6b:
         40:5e:e4:36:36:8a:8f:1c:e9:f3:88:d0:8f:ea:f3:fc:ae:91:
         81:bb:7a:c8:38:76:8c:d4:ac:3d:58:0f:2a:d5:31:59:5e:78:
         6a:f7:40:70:e3:70:8b:af:f5:87:10:98:f2:2d:44:c5:8f:80:
         bb:e3:79:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----