Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
File:                     cegLwpz58rQKwwJOD3I126LVelQ.mft (raw, json)
Hash identifier:          d2+uRgyuvzK2jd3Jxm2F5mpTpocArJ9RketaLFzct80=
Subject key identifier:   18:1C:C2:FE:47:19:7B:18:B7:AB:3A:5B:81:3C:EE:A6:92:41:33:CB
Authority key identifier: 71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54
Certificate issuer:       /CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54
Certificate serial:       019579B476B091E19E318CBCEA8145FE6A2E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
Manifest number:          03DB
Signing time:             Sun 09 Mar 2025 07:00:24 +0000
Manifest this update:     Sun 09 Mar 2025 07:00:24 +0000
Manifest next update:     Mon 10 Mar 2025 07:00:24 +0000
Files and hashes:         1: cegLwpz58rQKwwJOD3I126LVelQ.crl (hash: zIDRoP1suHLz+l1xs6C7A8u5mHG3C6kccXRSOVVaFKU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 10 Mar 2025 06:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:79:b4:76:b0:91:e1:9e:31:8c:bc:ea:81:45:fe:6a:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54
        Validity
            Not Before: Mar  9 07:00:24 2025 GMT
            Not After : Mar 10 07:00:24 2025 GMT
        Subject: CN=181cc2fe47197b18b7ab3a5b813ceea6924133cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:10:f1:24:0f:8a:cd:2e:29:d2:58:7c:8c:a6:
                    d6:ef:de:ca:d9:93:49:f9:4b:16:38:ad:b5:d1:2c:
                    1c:29:0f:de:23:12:71:bb:4f:90:cd:6a:1f:9c:2d:
                    43:76:10:b0:14:3e:50:a8:b0:1e:97:aa:41:c7:8b:
                    b5:32:72:03:2b:fc:ac:6d:7c:af:62:e7:e0:81:73:
                    3b:ae:3c:2c:1b:72:48:58:77:f2:fc:09:fe:d3:8b:
                    fe:48:59:f3:02:42:64:b3:ba:6e:cc:04:68:e6:17:
                    d1:f2:68:ba:02:51:38:77:7b:66:a7:38:f5:90:76:
                    68:17:22:3e:c3:5d:5d:94:d5:a7:1f:4e:6c:1f:1d:
                    af:44:a3:00:f5:0e:a8:49:19:4a:f9:04:5a:dd:01:
                    6a:09:45:25:e5:43:30:c6:12:da:17:3c:5b:27:57:
                    5a:31:2b:c9:ee:1a:61:34:3f:46:0e:f8:d9:d8:f6:
                    0a:e0:59:61:b1:67:04:e6:be:f3:e6:f1:9e:ab:57:
                    77:4c:ed:32:8b:ae:b5:e9:9f:0c:17:4e:b8:9c:cb:
                    fa:02:39:79:1a:55:a7:7b:32:b2:4d:60:4c:7d:6b:
                    65:09:80:b9:0d:51:3b:ca:c4:cc:22:7e:8f:cd:99:
                    ea:62:72:ae:8c:0f:d5:ba:8b:cf:b5:20:a2:db:fd:
                    17:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:1C:C2:FE:47:19:7B:18:B7:AB:3A:5B:81:3C:EE:A6:92:41:33:CB
            X509v3 Authority Key Identifier:
                keyid:71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:f0:96:2d:64:c4:d2:a2:74:78:9a:a1:10:7a:27:52:cd:b5:
         e5:3e:5a:97:85:b9:99:11:64:c8:01:87:8f:3e:30:7b:62:f5:
         36:d7:bb:fc:c4:c2:9a:65:3a:57:eb:a9:19:a1:44:57:da:2c:
         c5:b7:34:95:f3:0d:75:87:2a:ad:ce:49:22:fd:e4:04:c9:2f:
         41:57:f9:3a:17:fe:f1:91:dc:d4:6c:d3:f0:d2:8a:11:22:4a:
         cd:5b:eb:92:00:fe:a1:6e:fe:ab:ef:69:82:90:48:33:1f:01:
         da:73:c8:14:51:05:25:af:82:f7:6f:96:b4:cd:41:df:62:74:
         43:05:77:fa:5e:82:ec:55:58:28:a3:d1:2d:0e:72:5c:39:d3:
         e8:9a:99:da:10:df:fd:3c:a4:d8:03:00:57:4c:1f:bd:17:20:
         4a:f3:55:ec:af:ca:0a:98:86:b0:f2:9a:d3:0e:7b:b6:16:6d:
         af:99:18:ef:c5:94:ae:47:f0:c0:ba:6a:65:4b:65:df:c5:36:
         31:1d:ea:ac:fb:b3:36:8d:6b:1e:e1:50:72:26:27:7a:a8:15:
         92:b7:b9:f2:4e:78:8a:57:51:8c:b3:07:1a:b5:c2:bb:4c:03:
         5e:b4:c8:6c:41:58:6f:cd:f1:22:d1:46:2c:25:8c:dd:12:a4:
         ee:2b:7d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----