Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft
File:                     3Rc4MRWBIorSh1OUS-i88hafq6k.mft (raw, json)
Hash identifier:          kkFENhiYpjP6zi4VQfOkdCue5B7ycVxCcbU4j0Yb+yg=
Subject key identifier:   E5:17:C9:59:89:55:01:F6:9D:E9:70:D0:51:F6:64:D9:E7:50:AA:A3
Authority key identifier: DD:17:38:31:15:81:22:8A:D2:87:53:94:4B:E8:BC:F2:16:9F:AB:A9
Certificate issuer:       /CN=dd1738311581228ad28753944be8bcf2169faba9
Certificate serial:       019643D7444ABEF92F921C2DC3E85746CFFB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3Rc4MRWBIorSh1OUS-i88hafq6k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft
Manifest number:          0C96
Signing time:             Thu 17 Apr 2025 13:01:43 +0000
Manifest this update:     Thu 17 Apr 2025 13:01:43 +0000
Manifest next update:     Fri 18 Apr 2025 13:01:43 +0000
Files and hashes:         1: 3Rc4MRWBIorSh1OUS-i88hafq6k.crl (hash: W9/VoH+aATNe2QXeUi6r5Qwt3tGiJRObcWHH8AoJoLE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3Rc4MRWBIorSh1OUS-i88hafq6k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 13:01:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:43:d7:44:4a:be:f9:2f:92:1c:2d:c3:e8:57:46:cf:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dd1738311581228ad28753944be8bcf2169faba9
        Validity
            Not Before: Apr 17 13:01:43 2025 GMT
            Not After : Apr 18 13:01:43 2025 GMT
        Subject: CN=e517c959895501f69de970d051f664d9e750aaa3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:94:a0:f3:59:ef:e5:af:56:df:7c:2e:73:c8:
                    51:1d:87:20:16:53:46:24:e1:9f:31:fc:bc:6e:a1:
                    90:57:5b:bd:8d:2f:2b:6c:e0:01:5c:6d:fb:2e:80:
                    73:b2:da:4c:ff:1a:7a:8f:c4:84:27:91:c7:0b:a9:
                    d6:9c:cf:0e:f1:ab:fa:fe:5c:68:b1:f8:b2:fc:3b:
                    d8:ca:e1:12:26:db:fc:85:35:29:8d:0f:85:9e:c4:
                    5c:36:4b:ed:a9:5a:35:3d:c0:08:b4:6a:7b:2e:14:
                    8e:2d:54:d6:fb:04:04:90:28:51:47:8f:3b:13:5f:
                    69:ff:5d:c4:21:69:55:8c:c0:13:a3:94:0d:89:b4:
                    f3:08:d9:71:16:f5:5e:d7:5b:ae:b3:d1:b4:05:57:
                    6f:0a:ab:ed:34:45:0b:c2:8b:c5:ec:46:99:35:3c:
                    c0:a6:e6:5b:f6:fe:f5:08:fc:72:04:17:11:39:ae:
                    d4:cc:4f:f9:d1:b8:a5:3e:cf:9c:62:54:4c:80:01:
                    11:3d:a4:27:16:ae:ef:8f:2e:d8:f5:be:28:08:a5:
                    f5:e1:b8:23:36:a4:a8:85:1e:23:da:bd:4a:da:49:
                    cf:a0:f7:2b:9b:05:45:2d:d6:08:e4:2b:07:38:78:
                    b6:c3:d1:be:8a:5b:68:c8:1d:95:3a:19:34:05:0e:
                    9f:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:17:C9:59:89:55:01:F6:9D:E9:70:D0:51:F6:64:D9:E7:50:AA:A3
            X509v3 Authority Key Identifier:
                keyid:DD:17:38:31:15:81:22:8A:D2:87:53:94:4B:E8:BC:F2:16:9F:AB:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Rc4MRWBIorSh1OUS-i88hafq6k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/bc41f1-ca7e-4205-b81b-bebfa2fca46f/1/3Rc4MRWBIorSh1OUS-i88hafq6k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:79:dc:cd:f0:0c:1e:0a:05:4c:28:d2:e8:46:a1:ca:22:1f:
         8b:8f:4d:f3:ff:71:c9:b4:86:d0:90:f6:de:2d:87:6a:98:ae:
         a3:8b:99:8b:59:17:33:c9:46:a2:4c:d4:0d:50:3c:a8:00:0e:
         cc:93:9d:67:1c:9b:31:3c:6d:66:45:4b:e6:c4:92:b9:dd:14:
         cb:c8:f3:35:09:72:38:20:cc:11:16:b0:d4:fd:60:ae:01:ad:
         17:6b:9a:a9:2d:37:b5:06:d4:40:87:62:5e:c1:0a:74:02:25:
         25:c9:4b:99:09:5d:e8:83:c4:e9:89:e6:43:e0:04:fe:b0:9d:
         8d:dd:d7:5f:11:ac:b0:21:f8:43:9c:5e:04:c4:97:d4:ee:8b:
         17:2f:e5:03:54:ae:c6:9b:aa:39:e4:e8:92:b8:d1:13:e9:36:
         0b:01:8b:cd:fd:70:80:9f:fb:2f:ec:eb:25:66:a2:27:c3:a5:
         38:35:3f:7f:c7:ae:65:8b:e6:ac:88:b6:17:a7:79:52:03:07:
         29:7c:ec:2f:7a:4a:fc:b8:9e:8b:86:f5:e3:9c:16:a9:75:b6:
         3e:f9:7b:7e:2e:ba:bd:da:35:ff:c3:23:6a:c8:54:03:9e:1f:
         7b:55:3f:c4:15:35:cf:18:24:9a:18:2e:0d:7f:72:f6:06:6e:
         3b:3e:84:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----