Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File:                     _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier:          rpsXG1iLhLmn8gdvZTnYs8vp1B2MtzIoh0xSNDRzd/Y=
Subject key identifier:   0B:F5:A9:AF:EA:AC:AC:EE:8A:12:79:25:68:98:4A:CD:D3:11:01:5F
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer:       /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial:       01951134C90605BAFDB71BC80D55889E967B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number:          0BC6
Signing time:             Mon 17 Feb 2025 00:00:26 +0000
Manifest this update:     Mon 17 Feb 2025 00:00:26 +0000
Manifest next update:     Tue 18 Feb 2025 00:00:26 +0000
Files and hashes:         1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: C0iHBbeWSpx6fE3hAg/x0Tg/TUToWReYG5D+iZFM60A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:34:c9:06:05:ba:fd:b7:1b:c8:0d:55:88:9e:96:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
        Validity
            Not Before: Feb 17 00:00:26 2025 GMT
            Not After : Feb 18 00:00:26 2025 GMT
        Subject: CN=0bf5a9afeaacacee8a12792568984acdd311015f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:16:94:c9:12:97:17:67:2f:29:bd:b1:e2:89:
                    47:e5:4f:81:d6:dd:c5:79:59:da:07:52:10:34:0e:
                    71:68:18:d4:21:31:4d:2a:74:57:97:e0:51:68:7b:
                    11:05:33:20:23:72:2d:f4:41:7e:75:79:dc:e0:0b:
                    ad:4d:5c:7d:6c:ec:79:89:69:a3:0d:af:f5:55:a3:
                    13:1f:82:e6:02:46:fb:26:c9:ee:f8:cb:47:a0:66:
                    69:8a:75:e2:1b:2a:f4:2e:fc:2b:74:e7:cd:fe:6b:
                    11:1b:dc:db:ba:2a:29:4a:e5:af:1e:bc:b6:fe:b0:
                    db:29:9d:8d:94:64:c3:ec:73:2e:16:07:0b:6f:59:
                    34:21:f9:a4:3e:7a:ca:8f:dc:36:36:bf:8a:df:b9:
                    73:38:f2:5f:47:48:4b:ec:bc:52:00:da:54:ae:ff:
                    71:e1:60:22:7b:5d:7c:87:87:7a:2c:cb:d4:d4:b8:
                    4f:83:da:6d:a8:07:b5:0e:59:26:56:93:98:53:04:
                    59:16:a2:b1:88:98:d7:d6:6f:ab:fe:1f:bc:88:97:
                    4f:d9:8b:c7:27:16:f5:b8:4a:29:d8:79:0e:a1:29:
                    0e:89:56:ed:ee:7c:93:e4:a2:69:3e:bd:2e:b4:72:
                    87:5a:fd:94:f0:d8:7e:a2:7c:2a:10:44:92:11:b8:
                    83:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:F5:A9:AF:EA:AC:AC:EE:8A:12:79:25:68:98:4A:CD:D3:11:01:5F
            X509v3 Authority Key Identifier:
                keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:8f:c8:93:78:23:be:2e:15:c3:06:0b:85:dd:b2:ac:87:a6:
         0d:f6:fe:40:9d:e2:eb:41:06:19:35:a1:7e:fe:5f:a3:0d:3b:
         8c:bd:d9:dc:bd:d7:da:fb:72:2f:3c:62:3e:62:24:1f:84:22:
         9b:59:de:eb:d4:d0:d1:42:1e:2a:20:f1:db:2e:88:aa:50:8e:
         4d:23:d8:81:5b:e6:03:c4:b4:89:c1:40:83:39:58:2e:e2:a8:
         b3:95:82:6b:ae:2b:ec:20:28:89:22:93:7e:16:18:1b:8e:07:
         bb:9b:af:6d:ed:0d:c0:26:62:32:4b:15:3c:c1:d8:0d:5d:f2:
         63:0b:9b:a7:fb:ee:8a:bf:fa:33:93:bb:51:d4:e7:fb:37:f2:
         31:28:24:46:38:eb:77:e8:f6:85:0a:c2:85:8b:9d:10:c8:bb:
         b0:d6:c1:bc:ed:43:2c:eb:b1:3e:c9:a1:ab:f0:e8:48:72:89:
         7e:2c:55:40:2c:84:a2:67:fb:3f:0e:7b:51:5f:93:8f:23:2f:
         ad:a3:b9:c9:0b:5f:f3:6a:ab:43:3a:ee:bd:c0:64:fe:bf:a4:
         33:41:f7:2e:be:9e:50:1d:8e:1a:0f:f5:42:00:fd:b3:78:88:
         62:9d:31:f5:e1:a4:2d:2d:ac:e8:9f:10:25:b6:49:72:5a:71:
         83:2b:2e:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----