Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
File:                     cegLwpz58rQKwwJOD3I126LVelQ.mft (raw, json)
Hash identifier:          QA1Kfr7lEbRQ177PRmgeTz1ugg6f9AdXjbSntCQSvrg=
Subject key identifier:   2B:71:3B:2C:22:4A:CC:68:D8:8D:B3:96:54:D9:81:2D:50:84:2F:B7
Authority key identifier: 71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54
Certificate issuer:       /CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54
Certificate serial:       019758A489DA807FC0FFE4B0C521ED9E9527
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
Manifest number:          04D3
Signing time:             Tue 10 Jun 2025 07:01:07 +0000
Manifest this update:     Tue 10 Jun 2025 07:01:07 +0000
Manifest next update:     Wed 11 Jun 2025 07:01:07 +0000
Files and hashes:         1: cegLwpz58rQKwwJOD3I126LVelQ.crl (hash: mEUblJSse7lxeHd7YXFL3PsQe1TZxgYKx3v2C+0vxIg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 07:01:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:a4:89:da:80:7f:c0:ff:e4:b0:c5:21:ed:9e:95:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54
        Validity
            Not Before: Jun 10 07:01:07 2025 GMT
            Not After : Jun 11 07:01:07 2025 GMT
        Subject: CN=2b713b2c224acc68d88db39654d9812d50842fb7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:d2:89:8f:54:fe:f9:ad:d8:1f:cd:8f:cf:82:
                    f9:a6:63:2f:40:42:60:73:be:d8:7f:1a:94:6e:39:
                    2e:89:a0:66:41:47:87:54:77:06:d5:14:e9:82:40:
                    80:29:1d:07:c1:e4:29:7f:1a:3a:27:85:b1:84:41:
                    2a:cb:50:7d:f8:50:19:57:0f:c1:16:b8:24:28:b6:
                    a6:08:70:01:2b:67:66:4c:92:99:cf:48:4f:5f:97:
                    4e:2c:91:7f:92:09:bb:8b:98:63:ab:02:2d:3b:dc:
                    34:da:09:fd:07:92:2b:91:e4:d2:ad:78:b5:5c:fd:
                    f1:8e:9e:62:0a:0b:36:6b:51:08:b7:ee:35:29:7b:
                    c5:51:85:47:8d:7a:f0:e6:84:82:77:9f:80:d1:96:
                    2a:23:ce:a4:42:49:cd:8c:5d:dc:fc:75:23:e6:0f:
                    c4:e6:b2:80:8f:0c:1f:ec:d2:64:a3:d5:3c:2f:06:
                    c1:71:6f:52:ad:0c:c2:a5:6b:37:ba:22:cc:fa:e1:
                    60:38:1f:2f:ed:eb:07:52:24:7e:7d:91:9b:da:fa:
                    c9:8c:2e:45:ea:7a:1a:08:2c:88:ac:25:6c:a6:b9:
                    e9:39:5f:92:c6:05:07:ed:c0:10:ba:1d:f6:9f:e4:
                    19:2a:c7:75:e7:9a:98:35:f3:a0:67:83:e9:a0:80:
                    34:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:71:3B:2C:22:4A:CC:68:D8:8D:B3:96:54:D9:81:2D:50:84:2F:B7
            X509v3 Authority Key Identifier:
                keyid:71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:82:a2:2f:13:a5:f4:9c:ad:c0:8e:35:79:1d:45:d5:82:bc:
         8e:07:6d:d6:62:5e:64:45:96:33:8b:ba:6b:33:81:ed:52:5e:
         c7:dc:51:db:b2:f2:af:d5:da:25:9b:9f:57:f6:a0:5c:ef:2e:
         84:71:ce:d4:9b:5d:62:33:76:30:64:54:6c:c7:02:8b:d1:31:
         8b:85:99:e5:1e:b0:6a:c0:39:96:b3:09:dc:51:6e:01:35:d8:
         a3:30:5a:29:22:5a:b7:31:dd:6d:a6:af:a0:e2:ff:e5:d1:ed:
         e2:54:e8:64:01:1a:db:8f:01:de:41:3f:a4:85:f9:24:47:f0:
         2c:3b:78:f7:9a:2a:d8:87:b4:67:17:73:e8:43:2e:a0:0d:76:
         13:fb:85:f9:e4:1c:08:5a:a7:5a:f5:a2:04:04:5e:aa:f8:07:
         eb:b6:f1:3e:d1:00:02:97:f8:1c:5c:dd:0e:de:7a:dc:9c:5f:
         9a:d8:77:42:b4:e2:e4:69:e8:d0:72:6d:a3:aa:cf:d3:e2:08:
         eb:b7:8b:58:83:1f:32:b6:d4:d7:6b:22:03:6f:97:90:44:2b:
         69:32:b0:44:0a:84:fe:d7:45:1b:7a:24:cb:e0:0d:ef:9a:8b:
         7b:98:9b:e8:f6:e5:ad:14:53:62:0f:be:38:18:cc:b9:63:9f:
         92:4a:3c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----