Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
File:                     tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft (raw, json)
Hash identifier:          p+/zYmor4JvHVZlxeiFVpAy+E14jF2atBLF6CC+pqYQ=
Subject key identifier:   2E:11:6B:36:68:74:71:44:AB:AA:45:83:8C:CC:B1:7E:98:B8:65:4A
Authority key identifier: B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
Certificate issuer:       /CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Certificate serial:       0197B96B2AB3195EBFE993EAD5BDA066B9EE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
Manifest number:          01B5
Signing time:             Sun 29 Jun 2025 02:01:37 +0000
Manifest this update:     Sun 29 Jun 2025 02:01:37 +0000
Manifest next update:     Mon 30 Jun 2025 02:01:37 +0000
Files and hashes:         1: tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl (hash: AC3k2Ym2etnX5RGt7PbYZ3CHw2lruEkwp4P5SdQZC18=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 02:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:6b:2a:b3:19:5e:bf:e9:93:ea:d5:bd:a0:66:b9:ee
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b53aca36846d2d3023648eac581c7d9b6317eedc
        Validity
            Not Before: Jun 29 02:01:37 2025 GMT
            Not After : Jun 30 02:01:37 2025 GMT
        Subject: CN=2e116b3668747144abaa45838cccb17e98b8654a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:48:11:ff:fc:52:46:75:44:c7:53:89:cc:e0:
                    a7:66:96:27:9d:8d:23:e0:95:12:d5:32:3b:a0:94:
                    ee:0c:c3:4b:3b:54:54:3c:98:6f:0d:63:13:eb:2c:
                    a3:60:2a:04:1a:75:aa:69:7e:46:5a:73:36:01:61:
                    f7:9c:89:c1:11:5d:df:08:9d:47:19:bb:26:57:41:
                    9e:5a:30:8c:ba:c0:eb:6f:be:c4:eb:7b:c3:48:71:
                    cf:af:17:1a:11:db:2d:b9:5d:40:8b:4d:79:2b:72:
                    d6:ea:b9:70:ff:30:1b:d9:c2:77:75:a0:14:fb:e0:
                    2a:f8:31:73:bf:cc:6b:1e:bc:2f:5c:5c:33:db:1f:
                    63:27:20:89:ed:32:a6:fd:04:0b:81:ae:4d:11:b7:
                    18:2e:40:7d:4f:27:f4:16:31:52:5b:6d:6e:e8:1d:
                    55:aa:aa:5f:d4:18:ca:bc:ca:3d:2f:b1:73:97:00:
                    8a:39:28:7d:ad:ee:c1:0b:42:e4:ad:2a:b4:91:31:
                    e3:b9:6a:00:fc:fc:6a:c8:c3:32:36:31:92:6c:2b:
                    c8:bb:93:a6:11:f2:98:c7:53:25:36:a4:fd:02:46:
                    9e:e7:d4:24:95:94:db:f2:cd:2b:34:51:8a:70:b1:
                    e9:e5:15:21:5b:4a:a7:9a:42:44:87:32:6b:36:cb:
                    93:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:11:6B:36:68:74:71:44:AB:AA:45:83:8C:CC:B1:7E:98:B8:65:4A
            X509v3 Authority Key Identifier:
                keyid:B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:0c:90:89:57:ac:e0:a7:d4:fb:0b:a3:14:e4:1c:e8:6f:49:
         c1:8a:5e:bb:e4:63:f9:59:a2:27:0d:c7:05:e0:c5:81:4c:79:
         07:aa:63:bf:ec:db:0f:ff:c6:8c:f6:33:51:c7:18:f3:d3:e1:
         68:f6:49:bd:1b:03:ec:4d:45:1f:93:06:7a:1e:7c:66:13:fd:
         d6:9b:95:51:42:75:fa:62:0f:66:ab:3e:d7:d2:c0:38:ca:4d:
         eb:b5:15:7f:44:0f:f6:c9:7f:58:fd:f7:fb:ef:1b:76:a8:fc:
         85:b6:b2:ba:62:d9:98:42:e1:b6:41:19:bc:17:4d:c5:ec:49:
         ba:22:20:33:1f:c6:9d:38:3e:42:f7:3b:94:f9:7e:9c:7b:27:
         16:fc:63:99:19:7d:1a:b5:78:1e:53:f1:e5:06:c3:4e:92:71:
         e4:00:b5:dd:d3:d5:5a:51:f8:0c:c0:bb:10:f8:f8:4c:0e:62:
         be:03:cd:96:e8:fa:c0:c1:67:a1:1f:e7:f1:47:c7:f4:1b:f9:
         42:dc:8c:45:f4:b3:cf:47:59:ca:01:c5:89:ad:40:37:a9:52:
         e3:d3:ea:ca:3c:1f:d6:14:50:b0:0a:5d:10:27:45:49:ba:92:
         e5:a4:5a:49:9d:37:cf:c4:cf:1d:59:e8:b1:43:6b:e4:c4:3a:
         40:81:29:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----