Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
File:                     dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft (raw, json)
Hash identifier:          6HdSDhdnXy7L+gcAqz/5kH1a2E9R/wFZKEKhcrMK7Fk=
Subject key identifier:   E3:72:20:D6:11:8E:FD:3E:31:46:99:64:54:1A:42:3C:87:07:8C:92
Authority key identifier: 74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96
Certificate issuer:       /CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
Certificate serial:       01974D0D941E0C8FDFB7D1874B8E6EFD81A2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
Manifest number:          1050
Signing time:             Sun 08 Jun 2025 01:00:24 +0000
Manifest this update:     Sun 08 Jun 2025 01:00:24 +0000
Manifest next update:     Mon 09 Jun 2025 01:00:24 +0000
Files and hashes:         1: dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl (hash: BGhf+ST+E4xweEps9iA0OuSViXm7RuKeUsy7TxBFGjE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:0d:94:1e:0c:8f:df:b7:d1:87:4b:8e:6e:fd:81:a2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
        Validity
            Not Before: Jun  8 01:00:24 2025 GMT
            Not After : Jun  9 01:00:24 2025 GMT
        Subject: CN=e37220d6118efd3e31469964541a423c87078c92
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:2a:26:61:ed:58:3f:14:80:d9:8f:5f:11:b4:
                    60:6d:f4:1a:4c:6a:f7:39:2f:71:12:7d:9a:e8:ac:
                    f5:97:79:9c:5a:c1:f9:86:cd:57:94:44:02:f5:08:
                    9b:07:37:7d:f3:79:a6:e5:e7:d4:ef:c3:22:c4:fe:
                    f7:15:ca:12:27:bb:11:d2:f3:60:aa:26:a9:94:b6:
                    d6:a0:bc:78:b6:3e:ed:74:8c:c1:0e:af:49:06:c1:
                    2d:f0:23:a0:0e:80:e8:4c:4e:79:7d:3a:35:3a:bb:
                    08:4b:71:ab:58:1a:79:9d:c6:13:28:0d:54:36:e0:
                    f3:20:aa:ed:07:e7:da:04:b2:e7:ea:a8:95:fe:f8:
                    28:b1:d3:99:4a:ac:76:cb:8d:82:54:e3:40:6b:0d:
                    49:41:48:9d:47:d3:79:54:85:93:61:f5:db:17:ba:
                    b2:38:9c:ad:e5:e2:56:61:80:99:83:31:18:8e:5b:
                    47:ce:68:0e:a4:09:1a:bd:75:2c:5b:a3:3c:ce:c0:
                    56:f6:2b:7a:b4:da:2a:c7:c4:38:b2:0f:ed:60:18:
                    da:57:3e:24:a0:b3:05:5d:40:00:5b:e2:9e:79:71:
                    a6:43:35:2f:9d:43:bb:0c:37:d8:6a:b1:ce:41:5f:
                    6c:7a:a7:d7:e9:d0:9e:c9:0b:72:cc:73:e2:cb:01:
                    80:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:72:20:D6:11:8E:FD:3E:31:46:99:64:54:1A:42:3C:87:07:8C:92
            X509v3 Authority Key Identifier:
                keyid:74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:ad:74:6a:bf:dd:5f:9d:59:39:60:cd:5c:da:2f:5f:fc:5b:
         35:0f:d1:c4:d9:6c:18:32:c1:32:1e:3c:bd:f3:40:13:1f:90:
         81:0e:db:5b:73:c7:2d:71:61:04:05:65:43:d4:f4:b2:6a:66:
         55:51:5e:57:14:75:ca:4d:6b:94:d0:b1:e1:1d:58:28:fe:ea:
         30:7f:f1:2d:c2:b7:f6:d5:fe:b0:62:d3:49:23:b1:a2:7b:c3:
         7d:1d:8d:bf:1e:3f:17:fb:cc:ba:5b:ab:0a:08:08:cd:2a:c1:
         27:56:a8:12:6a:d6:68:32:94:70:ad:e0:39:5e:c0:57:7c:d7:
         1d:41:2b:fb:da:aa:18:63:5e:b8:aa:54:13:ab:7b:3b:9d:90:
         93:7f:ec:11:26:67:74:8b:e6:c1:45:94:61:0d:02:d6:3d:5b:
         64:4a:5d:09:41:ba:2a:75:72:e7:c3:61:96:4a:62:35:91:d8:
         e1:cc:75:fb:ae:f4:40:b1:ce:8b:dc:ef:37:1a:ca:33:0d:b4:
         89:a5:91:20:f3:6b:3e:07:e3:1f:09:04:cf:0f:57:d9:b3:72:
         4b:a6:c4:22:8f:17:f8:3c:9f:ad:02:fa:c2:df:92:74:b4:ff:
         5b:1f:3d:e4:6c:b5:da:e8:78:4d:c0:33:de:b9:66:5d:b7:ae:
         37:44:7e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----