Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft
File:                     bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft (raw, json)
Hash identifier:          uyBC2v1QK2gLXKEerJ2Dw7P/dFfblHt8Y4oZ3bk/p9Q=
Subject key identifier:   B9:F8:58:AF:41:61:59:5D:D8:69:2C:96:94:9B:A2:6B:A0:62:FD:5B
Authority key identifier: 6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C
Certificate issuer:       /CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c
Certificate serial:       0197CFBC2A7331E1D4EE0ED7673AC4F093EF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft
Manifest number:          03E1
Signing time:             Thu 03 Jul 2025 10:01:44 +0000
Manifest this update:     Thu 03 Jul 2025 10:01:44 +0000
Manifest next update:     Fri 04 Jul 2025 10:01:44 +0000
Files and hashes:         1: bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl (hash: A3gEsU6fFF0ngS38wuzDMPYiOtsQLigDfjhrvdnkGFI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 04 Jul 2025 10:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:cf:bc:2a:73:31:e1:d4:ee:0e:d7:67:3a:c4:f0:93:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c
        Validity
            Not Before: Jul  3 10:01:44 2025 GMT
            Not After : Jul  4 10:01:44 2025 GMT
        Subject: CN=b9f858af4161595dd8692c96949ba26ba062fd5b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:78:a7:5c:45:26:71:88:71:f8:09:a2:1e:68:
                    79:da:ce:0d:2d:3a:8a:bc:6f:62:73:35:a9:b9:8c:
                    5b:1a:2a:46:a8:46:b7:af:25:43:0e:e1:96:dd:93:
                    4c:fa:95:85:35:dd:61:8e:d9:38:c0:5b:67:0c:0e:
                    74:f0:b1:eb:ac:42:38:8c:94:16:0d:37:75:1d:fe:
                    57:dd:10:72:23:4d:cd:cb:26:70:71:eb:3b:4e:99:
                    68:1e:ca:b7:a7:d2:01:d8:84:4a:7c:2f:61:0b:76:
                    92:e6:5c:e7:91:61:37:78:04:a2:16:23:0b:b2:e5:
                    9a:ed:3c:af:17:83:6c:c6:23:50:bf:36:72:9c:d9:
                    80:55:62:82:4b:55:c6:0f:44:bf:6c:d6:99:66:2d:
                    93:ef:cd:1c:ac:c2:f0:31:dc:50:bd:9d:8b:80:2a:
                    fc:36:86:19:44:57:53:45:d6:3a:7d:3c:7e:66:77:
                    be:cc:04:e5:68:a7:dd:42:2b:d1:5a:c3:7b:c0:08:
                    b5:35:ed:86:0f:c6:79:98:ac:e9:ad:bc:64:c7:be:
                    19:9a:56:79:16:4c:74:04:e7:75:0e:6c:cc:d3:da:
                    43:ca:8f:63:86:66:c0:8c:71:18:c0:bd:94:c8:cf:
                    3a:00:0a:37:8a:7c:66:19:e2:e8:57:fd:51:79:82:
                    11:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:F8:58:AF:41:61:59:5D:D8:69:2C:96:94:9B:A2:6B:A0:62:FD:5B
            X509v3 Authority Key Identifier:
                keyid:6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:87:9e:d8:db:c6:93:fd:4c:36:1e:85:2f:10:5d:8a:50:f8:
         8c:2b:14:e1:9e:bf:81:9c:9d:10:d1:7e:db:2b:98:18:c2:0e:
         c1:15:70:77:d1:f7:ab:78:dd:90:e1:31:1b:24:01:d2:b8:46:
         4f:18:67:26:70:63:d1:74:42:7f:a4:d7:da:d0:fb:ed:16:a9:
         b5:3c:73:ed:58:00:f3:fb:65:19:f3:c3:48:e7:33:40:80:c9:
         3e:6b:00:31:2e:32:a8:45:dd:9e:41:86:06:f8:77:8d:48:d2:
         f5:5a:f5:70:ca:a7:25:aa:60:a6:33:0b:f5:9b:dd:c5:ef:83:
         63:20:29:2a:3d:a0:6e:d0:62:28:5a:98:3b:72:42:d0:ed:ef:
         a7:5c:34:7e:1c:80:7f:67:32:06:ba:7f:e3:eb:e6:f9:17:78:
         d2:4a:03:c1:d2:3f:61:4a:d6:9b:f1:1e:3e:c9:33:4c:72:9a:
         ec:01:ee:39:58:09:ee:83:e9:7c:d8:54:0a:cd:fb:fd:c5:33:
         01:26:aa:47:cd:1a:35:5b:7b:46:65:fc:7e:0f:09:5a:ae:60:
         be:4f:23:4f:7e:ab:3f:d5:0f:82:c0:97:50:41:2f:3f:e7:f1:
         2e:24:4f:9b:86:31:0c:fa:88:d2:58:1a:05:11:9e:fa:5d:82:
         36:64:a8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----