Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
File:                     xmCFijitXhG3sYk5KIO8g-trNh0.mft (raw, json)
Hash identifier:          LvsrEUZ5BRJsoaMbOQkUPfobL/TYJeH9cWzoGVkiSSk=
Subject key identifier:   C1:68:55:DD:18:EB:28:1E:B3:1B:AE:09:E4:C4:6D:6D:19:94:87:BE
Authority key identifier: C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
Certificate issuer:       /CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Certificate serial:       019510C71E1F3B4D288D8D808D3DB6F3EFF6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
Manifest number:          1454
Signing time:             Sun 16 Feb 2025 22:00:39 +0000
Manifest this update:     Sun 16 Feb 2025 22:00:39 +0000
Manifest next update:     Mon 17 Feb 2025 22:00:39 +0000
Files and hashes:         1: xmCFijitXhG3sYk5KIO8g-trNh0.crl (hash: x6gPTPa8L/JVYP+7Pwnc3fJOkijoxhAloD+Lefkh1tI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c7:1e:1f:3b:4d:28:8d:8d:80:8d:3d:b6:f3:ef:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c660858a38ad5e11b7b189392883bc83eb6b361d
        Validity
            Not Before: Feb 16 22:00:39 2025 GMT
            Not After : Feb 17 22:00:39 2025 GMT
        Subject: CN=c16855dd18eb281eb31bae09e4c46d6d199487be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:42:52:b2:d3:65:35:5c:f1:74:6c:39:d2:6b:
                    44:7b:34:82:33:c0:5e:25:15:48:b2:9b:84:ae:7e:
                    6b:72:3f:0f:33:c0:a8:e2:5b:a7:11:18:a5:5f:95:
                    92:5b:05:79:21:ad:ce:49:5f:de:1e:30:2f:a1:d7:
                    46:3f:e6:78:a8:69:98:29:5b:a9:26:cb:68:5f:80:
                    c0:e0:13:55:18:11:ca:cf:d6:d0:5d:ac:a1:c6:2d:
                    eb:3f:c8:17:46:3d:6a:15:b8:34:5d:91:f0:84:94:
                    db:47:21:b8:97:38:23:d6:da:bb:68:c4:7d:9e:89:
                    9c:39:a8:f6:91:de:a6:71:f5:a1:1d:22:76:65:24:
                    fa:ae:b2:14:45:75:67:0c:56:dc:38:e5:c8:cc:cb:
                    dd:41:8b:8a:0e:a5:f7:9a:9a:9e:68:81:c2:58:0e:
                    1c:2a:e5:a5:d2:3c:6e:50:11:33:43:cf:a8:86:71:
                    28:df:ab:fe:2b:93:6f:97:1f:9c:de:9e:69:9a:c5:
                    44:77:53:52:89:83:02:f4:00:50:2f:fd:f6:66:82:
                    e5:5a:85:ab:76:3c:5f:2f:c6:3c:5d:37:8a:45:86:
                    da:99:62:01:33:9d:d8:42:a2:31:fc:c1:86:56:77:
                    ca:e9:79:85:7f:38:dc:95:fd:d5:20:30:8d:57:85:
                    0f:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:68:55:DD:18:EB:28:1E:B3:1B:AE:09:E4:C4:6D:6D:19:94:87:BE
            X509v3 Authority Key Identifier:
                keyid:C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:98:6a:c2:54:a3:d7:73:49:92:14:da:5e:1d:00:69:d9:60:
         33:cf:d5:be:c2:50:ed:9b:e9:62:3e:73:93:e0:87:d3:41:23:
         c0:0e:c4:fa:d4:cd:d1:f8:4e:50:f1:56:cd:e5:53:08:33:99:
         65:41:63:c5:67:cd:7f:de:26:3a:f2:b0:04:2d:4c:dd:ee:4c:
         f0:79:fa:88:b1:46:d6:a8:3f:bc:2b:64:94:27:3f:a6:f0:55:
         23:1b:d3:2f:b0:76:8e:58:31:53:e3:70:7f:91:1c:2c:ef:7e:
         86:12:2a:59:d7:f7:89:34:6b:4c:d1:75:87:1c:57:47:80:25:
         e5:84:6b:15:a6:05:a8:02:54:ea:fd:be:db:1e:7e:f5:5a:67:
         22:27:ae:c1:40:7f:e5:8e:f3:2f:92:a0:58:4a:aa:05:18:2e:
         4b:69:d7:27:c8:f9:f6:f2:9c:f4:99:40:c6:41:aa:9b:0d:21:
         5b:b3:c6:97:b2:9f:2d:f9:7a:3f:e1:99:69:54:2f:f0:be:3d:
         8c:b7:9b:5d:d5:4a:05:90:0b:27:93:e4:5d:66:78:d2:f6:a9:
         55:07:be:1b:f0:02:42:b7:00:49:8e:41:4a:3e:3c:98:f5:97:
         2a:c6:05:ac:0e:5c:4b:02:f2:93:5e:fb:d8:de:70:fb:0e:4a:
         41:21:59:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----