Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
File:                     Mya5UKRaLGusFQX80E2UDMCWj5Y.mft (raw, json)
Hash identifier:          3wAl+oC7LutB2d/05MewwOO0XdqynCzVjdRba43gyYw=
Subject key identifier:   EC:AD:B4:9A:E0:F5:24:66:56:8F:3A:56:F9:E9:04:ED:C5:D8:7A:D4
Authority key identifier: 33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96
Certificate issuer:       /CN=3326b950a45a2c6bac1505fcd04d940cc0968f96
Certificate serial:       01951134FD0D6256C93147CEA6C646D6ED6B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
Manifest number:          033F
Signing time:             Mon 17 Feb 2025 00:00:40 +0000
Manifest this update:     Mon 17 Feb 2025 00:00:40 +0000
Manifest next update:     Tue 18 Feb 2025 00:00:40 +0000
Files and hashes:         1: Mya5UKRaLGusFQX80E2UDMCWj5Y.crl (hash: zlIagtjNHKqVWre8AgYf9ExUD16q2ltdTvETtWbr1Zk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:34:fd:0d:62:56:c9:31:47:ce:a6:c6:46:d6:ed:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3326b950a45a2c6bac1505fcd04d940cc0968f96
        Validity
            Not Before: Feb 17 00:00:40 2025 GMT
            Not After : Feb 18 00:00:40 2025 GMT
        Subject: CN=ecadb49ae0f52466568f3a56f9e904edc5d87ad4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:99:c9:9d:77:c9:9e:f1:cb:88:bb:e9:3d:4b:
                    37:93:6b:3c:e0:45:b7:41:5c:6b:49:f0:97:14:75:
                    5e:76:c6:da:75:e7:75:7e:1f:99:24:91:b9:5e:61:
                    d2:a3:8b:cb:b0:c9:5b:17:d3:c3:c1:d5:e5:95:96:
                    d3:42:4f:ed:23:6a:b3:ac:53:60:23:d5:e5:dd:27:
                    e8:25:d6:16:82:1b:32:98:8a:e1:4e:1d:dd:b7:d1:
                    e7:1a:34:06:06:c1:03:75:40:02:65:2c:96:7b:53:
                    1f:98:85:b8:60:f7:55:ed:34:42:2a:5e:75:be:ee:
                    02:71:4c:d5:fb:e5:78:0a:fc:e4:5d:23:fa:4b:ef:
                    f4:b6:ac:e3:b7:ec:14:79:55:8c:e6:38:64:69:66:
                    45:84:20:08:a7:bd:e7:9a:f6:b8:8d:22:9d:e3:45:
                    35:5c:6d:36:07:41:e1:20:43:f2:43:51:15:4e:c2:
                    2b:f6:0b:8e:7b:dc:3a:a6:48:1b:63:3f:10:7f:46:
                    5a:0d:61:5f:7f:34:ba:a2:f5:45:c9:6f:5f:43:dc:
                    37:42:13:f4:d4:06:55:b8:4f:2d:99:f0:66:56:00:
                    ec:d5:54:af:59:d1:aa:47:70:ab:c9:48:ff:fd:5c:
                    c6:97:87:ac:a7:09:f3:3d:1f:3c:41:e1:74:2b:c3:
                    48:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:AD:B4:9A:E0:F5:24:66:56:8F:3A:56:F9:E9:04:ED:C5:D8:7A:D4
            X509v3 Authority Key Identifier:
                keyid:33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:11:6b:d6:44:e7:cb:76:a9:b7:60:8d:93:e1:f2:e1:51:15:
         59:43:64:2d:19:47:09:4d:d4:5e:ce:26:16:89:49:98:2b:15:
         84:b2:e7:40:5c:d7:6e:f3:d5:df:25:ad:b2:7c:ad:e4:f7:b4:
         1e:6c:ae:6b:12:bd:b4:a5:f7:2f:c2:72:32:09:cf:82:56:6b:
         90:90:6b:11:ca:59:8b:ad:e3:26:5f:44:72:d0:58:44:79:5f:
         11:40:57:1b:17:9c:d5:39:01:7e:24:4f:74:f3:36:e7:1f:fe:
         71:62:37:d2:49:48:49:64:4b:ce:5a:7b:bc:5a:0b:75:fd:16:
         b5:9b:8e:25:50:31:11:14:b7:09:40:52:72:9e:3a:5d:95:84:
         28:3f:be:0f:47:a3:52:22:f8:7f:0a:f5:71:9f:7f:f7:81:a2:
         1d:a6:31:6d:4c:e5:e8:74:17:fb:44:de:52:05:8e:58:43:18:
         b7:ee:f4:a5:b0:58:50:5f:60:f2:82:83:f0:3a:b9:0c:9f:eb:
         60:e5:b5:b8:aa:64:f6:46:d3:66:91:cb:a6:b5:a9:73:15:0a:
         74:f1:70:af:e0:06:51:fc:2e:0b:17:8f:e2:fd:6f:0a:25:00:
         d4:b7:a7:89:ef:b3:d5:be:5e:25:2f:0f:a4:2c:57:ba:b1:3e:
         12:fd:b2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----