Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft
File:                     uo1nmL3QsriAXUOzRV92c5uUbx0.mft (raw, json)
Hash identifier:          WodL5l1RVyYqEfcsakKGCZJ1FMyNugKSj89lFaduIHg=
Subject key identifier:   FF:6E:CC:68:52:5B:FF:1B:FA:0F:FD:E9:18:9F:48:6F:B0:B7:93:F2
Authority key identifier: BA:8D:67:98:BD:D0:B2:B8:80:5D:43:B3:45:5F:76:73:9B:94:6F:1D
Certificate issuer:       /CN=ba8d6798bdd0b2b8805d43b3455f76739b946f1d
Certificate serial:       0197B6A07551320FC00E41D4CB795761A26A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft
Manifest number:          1544
Signing time:             Sat 28 Jun 2025 13:00:58 +0000
Manifest this update:     Sat 28 Jun 2025 13:00:58 +0000
Manifest next update:     Sun 29 Jun 2025 13:00:58 +0000
Files and hashes:         1: uo1nmL3QsriAXUOzRV92c5uUbx0.crl (hash: Q2aZ5SjSH/hqP8DhA9EY1zojTcIObpmg5DdXG6nuJb4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a0:75:51:32:0f:c0:0e:41:d4:cb:79:57:61:a2:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ba8d6798bdd0b2b8805d43b3455f76739b946f1d
        Validity
            Not Before: Jun 28 13:00:58 2025 GMT
            Not After : Jun 29 13:00:58 2025 GMT
        Subject: CN=ff6ecc68525bff1bfa0ffde9189f486fb0b793f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:ca:8c:24:e0:64:67:33:55:73:4d:96:85:5b:
                    af:53:21:2d:96:c2:6a:3d:74:89:e9:d0:c6:b4:96:
                    7c:c7:ed:f1:8c:53:a7:c3:7a:09:87:a4:27:ae:d3:
                    bd:27:31:37:75:90:e5:31:74:0c:e4:21:13:31:e3:
                    33:7a:f1:b7:cd:f8:6e:d5:6f:47:6b:6d:e3:98:ce:
                    ac:62:15:da:03:a4:88:b4:4c:fe:e4:94:d0:57:a5:
                    f1:a3:bd:50:de:65:c5:5d:64:c8:1f:b8:be:46:c2:
                    d1:53:b3:cb:45:e3:04:1c:a5:63:a8:43:40:e3:77:
                    d6:48:57:89:a4:88:88:16:24:46:df:61:38:fd:8f:
                    96:98:34:38:32:ab:49:1c:bf:38:1c:44:25:b9:f1:
                    c8:ab:cd:7e:b0:07:f1:62:ab:75:45:3e:49:31:9d:
                    bf:03:bf:75:57:27:9d:db:d4:9d:ab:bf:e9:d2:bd:
                    ff:fb:6e:16:49:91:e1:40:5d:91:dd:38:d8:43:ba:
                    8a:47:84:78:15:c1:44:de:61:fc:91:b8:c1:63:de:
                    1d:80:77:0a:8a:34:c7:5d:e5:af:5c:e8:7a:9a:a1:
                    68:b7:44:f0:cd:9d:e9:5f:92:f7:ee:08:a0:ac:ba:
                    13:d4:25:37:7b:7c:85:1f:13:03:f2:fe:f1:18:e5:
                    1f:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:6E:CC:68:52:5B:FF:1B:FA:0F:FD:E9:18:9F:48:6F:B0:B7:93:F2
            X509v3 Authority Key Identifier:
                keyid:BA:8D:67:98:BD:D0:B2:B8:80:5D:43:B3:45:5F:76:73:9B:94:6F:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:f8:38:51:e5:0d:f4:c5:eb:59:8a:42:a0:a3:02:4f:b0:4c:
         21:e2:c3:a6:6b:5b:b0:32:a3:42:95:70:8a:a3:1f:e9:00:6e:
         d6:34:3c:18:4e:d3:84:4d:6c:c1:da:ae:86:27:62:f4:42:c0:
         6d:58:bc:98:27:2b:0c:fe:e6:11:ad:31:64:35:7a:6e:f4:7b:
         16:2b:83:66:24:aa:62:5b:4b:b4:c7:4c:e9:6e:73:28:a9:de:
         92:a3:37:cd:b3:3f:92:72:c3:7e:27:5b:33:2d:03:96:9c:dc:
         b6:82:f1:4b:ef:c2:96:14:e8:28:19:80:d4:c3:f1:75:1e:fe:
         7c:42:86:f6:46:02:70:8e:8a:41:7f:06:2c:98:23:fb:ec:7d:
         40:5f:e0:bb:46:80:c6:0a:b6:70:a7:9d:62:77:fe:67:2b:e9:
         2e:4d:bf:d0:01:48:97:5e:71:98:7b:16:91:74:49:3d:5a:7a:
         5b:c2:d4:1b:a8:64:0b:9f:90:23:5e:5b:67:28:7d:69:b6:da:
         b0:8e:81:30:61:94:db:fb:fa:49:30:64:be:94:71:28:02:85:
         37:69:0e:1f:fe:4d:34:f3:e8:a3:2c:d7:73:6a:a5:d5:f2:e6:
         74:6a:45:85:3c:bd:67:f4:a5:17:32:4b:94:4d:28:b9:38:19:
         39:f2:a8:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----