Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
File:                     04G3AXBRkLnOnRsYRTU4TnHKMWU.mft (raw, json)
Hash identifier:          /K5L7tx7GHLduBbtLVdcHoXx08SPB+nr9tJgnbFBZZw=
Subject key identifier:   13:D3:F5:8E:C7:14:8A:9D:DF:61:FF:47:F1:CA:7B:CB:CB:35:23:62
Authority key identifier: D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65
Certificate issuer:       /CN=d381b701705190b9ce9d1b184535384e71ca3165
Certificate serial:       019510C7DE3E455F8601A13BD92E10B47943
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
Manifest number:          1454
Signing time:             Sun 16 Feb 2025 22:01:28 +0000
Manifest this update:     Sun 16 Feb 2025 22:01:28 +0000
Manifest next update:     Mon 17 Feb 2025 22:01:28 +0000
Files and hashes:         1: 04G3AXBRkLnOnRsYRTU4TnHKMWU.crl (hash: dh8dq6nuD4Y4XAw4aJRkVE3i635CdJOsaY6H3CCIkGo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:01:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c7:de:3e:45:5f:86:01:a1:3b:d9:2e:10:b4:79:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d381b701705190b9ce9d1b184535384e71ca3165
        Validity
            Not Before: Feb 16 22:01:28 2025 GMT
            Not After : Feb 17 22:01:28 2025 GMT
        Subject: CN=13d3f58ec7148a9ddf61ff47f1ca7bcbcb352362
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:c1:53:76:73:ad:62:f0:43:9a:19:56:80:16:
                    da:31:29:1b:15:db:8d:78:9a:7b:d8:87:fc:9b:52:
                    c4:3b:ef:c1:bb:6d:f4:db:15:b1:91:bd:7e:8e:8d:
                    2a:71:98:d0:e8:0e:06:42:f8:48:d8:11:7b:2d:e9:
                    f7:8c:e4:96:0a:af:19:90:33:1a:8f:5e:e3:05:eb:
                    8e:51:65:40:0c:c7:9c:f7:9e:3a:4c:5b:4d:ec:24:
                    c3:3f:9a:aa:6d:17:08:d4:00:9d:21:9c:ae:65:28:
                    b1:9f:8f:4c:0a:89:97:e1:b6:e6:84:4f:bf:32:69:
                    4b:5c:9c:04:9d:01:a3:bb:8f:13:4a:ad:29:95:29:
                    57:c8:46:de:fc:53:d9:59:ea:fe:dc:63:a1:be:f6:
                    78:13:8f:22:f7:eb:14:c9:fe:10:d6:77:a3:46:dc:
                    32:e1:bf:6a:6b:08:ef:e1:3f:29:ec:93:06:0a:32:
                    37:34:31:9e:4d:ec:0a:61:51:b4:bb:04:51:ed:22:
                    01:de:48:2c:0c:2e:fd:68:e3:b6:46:80:a6:32:21:
                    82:28:bc:0b:55:0d:75:26:01:e4:fa:d8:90:aa:d6:
                    3f:4c:b1:79:ad:a3:e7:c6:81:cb:0a:1e:4b:70:33:
                    24:3b:68:6e:ba:e4:b1:e3:0a:46:89:31:62:a7:98:
                    83:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:D3:F5:8E:C7:14:8A:9D:DF:61:FF:47:F1:CA:7B:CB:CB:35:23:62
            X509v3 Authority Key Identifier:
                keyid:D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ab:b1:57:0a:5a:3c:bc:cc:c4:87:fb:f0:6e:62:ba:35:1c:e0:
         d7:fa:9b:9e:af:3d:d3:06:b2:0b:d8:e9:65:a6:b6:93:d1:ae:
         e7:86:36:f8:44:61:4d:49:21:04:1b:39:79:e1:df:e7:ba:32:
         29:18:cc:7e:26:68:13:a9:45:9d:d2:b3:15:b8:e5:fe:fc:b7:
         ff:0e:e8:77:16:17:75:55:59:0f:f0:d6:c2:e1:80:8c:00:52:
         9a:35:66:a3:50:fa:ed:44:54:68:5f:d1:15:10:cb:db:19:d6:
         64:57:30:79:a7:a8:94:b8:e0:58:77:4c:90:66:44:81:5b:19:
         e0:71:c0:b8:52:0d:3e:7f:83:90:bf:64:81:de:26:4d:12:e3:
         24:09:54:44:6b:ea:d9:ed:73:39:59:1b:47:5a:8e:2d:f9:42:
         08:a1:b8:7b:3b:25:a0:d5:62:f6:a1:de:ab:f3:89:05:74:f4:
         1f:1b:a8:4a:b6:3d:85:5e:56:2a:74:70:bc:b9:3f:f5:3d:e8:
         85:74:da:a1:8c:d7:c7:f6:e0:9c:ad:60:96:a8:91:b4:8f:a0:
         7d:3b:ed:c9:bb:a4:db:ee:e7:8e:10:6d:ef:d2:a9:77:aa:fd:
         b7:67:42:92:49:e5:33:d9:2e:97:63:4a:2b:24:65:c9:35:fc:
         2c:94:50:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----