Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
File:                     dbh4BinZITNXwHDBwBBgU0dIg8E.mft (raw, json)
Hash identifier:          P1mfSWwXtEiqUlwapM47P23B/AzOhpSxu/Il33mJdk0=
Subject key identifier:   4D:1C:11:C6:E1:AB:3C:FF:91:E6:E1:F3:14:64:25:97:C8:93:15:E5
Authority key identifier: 75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1
Certificate issuer:       /CN=75b8780629d9213357c070c1c0106053474883c1
Certificate serial:       0197C8020C9DAFA9F9DB9481CDDE4EC437C6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
Manifest number:          0BE2
Signing time:             Tue 01 Jul 2025 22:01:06 +0000
Manifest this update:     Tue 01 Jul 2025 22:01:06 +0000
Manifest next update:     Wed 02 Jul 2025 22:01:06 +0000
Files and hashes:         1: dbh4BinZITNXwHDBwBBgU0dIg8E.crl (hash: uz/vYR8MHbnwYnfPLrDOMUNw+zHFOzL/iTUFz7cne/o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 02 Jul 2025 22:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c8:02:0c:9d:af:a9:f9:db:94:81:cd:de:4e:c4:37:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75b8780629d9213357c070c1c0106053474883c1
        Validity
            Not Before: Jul  1 22:01:06 2025 GMT
            Not After : Jul  2 22:01:06 2025 GMT
        Subject: CN=4d1c11c6e1ab3cff91e6e1f314642597c89315e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:ac:17:db:d0:ce:e8:6a:db:92:d8:76:be:69:
                    56:6f:dd:91:ff:c5:42:eb:94:89:68:00:ef:29:41:
                    e1:dc:86:2d:85:c8:8d:cf:d6:d4:70:88:f6:25:70:
                    7c:2e:8e:64:9b:bb:57:4d:d2:28:4d:6b:4f:a3:2b:
                    90:a3:bf:4d:b9:a2:c8:40:7a:08:17:d4:37:e4:91:
                    19:a6:9a:13:4f:51:dd:2f:b7:53:14:95:d3:62:81:
                    62:bd:ae:d5:4e:7d:2c:ff:7a:2e:d5:a5:c5:0e:00:
                    03:97:66:67:8a:bb:0a:7d:d8:37:68:52:08:3e:e6:
                    b0:b6:5f:d8:4c:df:fb:89:3f:4d:bf:f7:90:9d:f0:
                    2f:39:e1:e6:22:48:82:ce:6e:a2:60:f1:8f:cf:61:
                    8b:73:9a:46:78:b9:e2:81:ee:2f:4f:d6:b5:19:6f:
                    3c:eb:3e:d6:dd:b3:b5:67:76:7c:96:e7:0d:6c:47:
                    dc:eb:2c:7d:76:e9:9d:5a:01:6d:11:b8:a7:06:e3:
                    8b:da:12:3a:bd:06:9f:09:c3:e0:f5:be:ba:8d:9f:
                    68:7d:5d:8d:0d:3d:36:03:76:c1:2b:88:5a:98:85:
                    37:14:dd:02:47:74:eb:1d:4f:f3:e4:b5:ba:a0:1d:
                    e8:5a:a6:ef:f9:80:6c:b1:8d:ae:2c:c7:d5:ab:14:
                    92:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:1C:11:C6:E1:AB:3C:FF:91:E6:E1:F3:14:64:25:97:C8:93:15:E5
            X509v3 Authority Key Identifier:
                keyid:75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:48:59:cd:da:30:2a:2e:12:d5:59:f2:db:33:8f:0d:08:99:
         0a:5d:61:ab:8f:68:84:06:25:45:b4:ec:6e:8b:e1:dc:1f:1b:
         96:34:1e:6d:dd:8d:18:c7:28:e5:9a:bd:4e:b6:89:50:5f:77:
         da:5f:77:6d:57:31:1d:76:ad:86:03:ed:d7:a0:5b:43:ac:d6:
         e3:c9:8c:eb:ca:f1:21:81:60:ab:63:c0:0f:7d:f6:60:f9:5d:
         8b:ca:d9:6f:4f:21:03:e1:d7:15:d7:15:be:54:a2:85:db:61:
         7d:f8:17:8b:f3:06:56:29:9e:fe:30:18:2f:2d:87:ab:b5:29:
         1a:1b:a8:80:e3:4e:10:ad:14:1a:06:d8:d3:81:1f:ab:32:31:
         6d:11:cd:0a:75:27:79:f2:e1:2a:0c:4f:f6:e4:08:6a:71:75:
         a3:b6:85:15:53:18:be:8d:5b:0d:45:b8:da:f9:d7:fd:28:87:
         bf:04:63:39:f1:ca:1e:f1:e1:2c:87:db:39:20:30:6f:60:70:
         d9:1e:c9:f2:cb:4f:41:fa:fa:11:35:86:41:23:8d:11:fc:6a:
         c5:7d:c6:85:c2:d7:61:81:34:4c:38:a8:2c:2d:20:ff:59:06:
         39:51:4a:f8:5a:c1:b4:ed:24:3b:91:86:ce:80:c9:0b:83:db:
         34:de:7e:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----