Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft
File:                     gY1FuJShqq5kDmhOV8_bUw36umk.mft (raw, json)
Hash identifier:          5VHIHnFjJswc4tYm4o8hw6gVlU6ilEI7yH9gFQwW/Nc=
Subject key identifier:   77:59:41:54:46:2F:6B:48:61:61:ED:99:58:B9:CC:17:19:61:75:C6
Authority key identifier: 81:8D:45:B8:94:A1:AA:AE:64:0E:68:4E:57:CF:DB:53:0D:FA:BA:69
Certificate issuer:       /CN=818d45b894a1aaae640e684e57cfdb530dfaba69
Certificate serial:       01964444C85D50157FFA581D3E650A4164C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft
Manifest number:          0983
Signing time:             Thu 17 Apr 2025 15:01:20 +0000
Manifest this update:     Thu 17 Apr 2025 15:01:20 +0000
Manifest next update:     Fri 18 Apr 2025 15:01:20 +0000
Files and hashes:         1: gY1FuJShqq5kDmhOV8_bUw36umk.crl (hash: iW/zVn6JN5+Mf6lJRDFEsIApeYvWc7oNkzRheBCOW80=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 15:01:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:44:44:c8:5d:50:15:7f:fa:58:1d:3e:65:0a:41:64:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=818d45b894a1aaae640e684e57cfdb530dfaba69
        Validity
            Not Before: Apr 17 15:01:20 2025 GMT
            Not After : Apr 18 15:01:20 2025 GMT
        Subject: CN=77594154462f6b486161ed9958b9cc17196175c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:d8:83:df:bf:be:db:3c:b6:df:4a:14:3e:a5:
                    b1:79:4d:e3:cb:8f:2a:4b:7b:34:c9:f4:28:96:95:
                    44:58:4e:a3:9c:44:58:a3:19:ce:dd:95:e1:be:96:
                    b1:f8:f2:e3:60:58:6b:44:ae:21:87:1b:8a:2a:ca:
                    ad:92:b6:f4:66:27:26:a9:b3:37:0b:33:3a:48:14:
                    ee:8d:98:19:1f:9f:95:3b:73:fe:e3:15:97:80:61:
                    ad:12:e4:0f:15:42:0c:cc:e3:e1:03:5b:34:3b:e3:
                    28:ed:82:e7:f1:33:72:fb:38:25:f7:71:e3:c7:9e:
                    ef:62:b7:71:70:9b:80:c6:69:30:ef:30:a6:74:78:
                    10:01:a4:3d:77:13:54:59:de:11:15:ba:7e:9a:3f:
                    54:c3:aa:44:a4:20:70:48:2d:95:62:44:bc:19:1c:
                    5c:2e:ff:3d:c2:70:60:72:d4:aa:62:6c:bf:39:2e:
                    3f:3a:ba:92:fe:43:74:6b:db:70:68:0b:28:b1:47:
                    5d:a7:41:3c:36:9a:4e:fe:5e:6d:36:46:49:bc:40:
                    b3:af:b1:59:76:fc:93:ec:72:f9:40:6f:37:86:34:
                    bf:48:78:9b:c6:e0:f1:0e:b9:be:08:05:1f:75:60:
                    1e:59:7e:f8:6f:96:22:b7:67:70:80:5e:ff:e6:19:
                    ce:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:59:41:54:46:2F:6B:48:61:61:ED:99:58:B9:CC:17:19:61:75:C6
            X509v3 Authority Key Identifier:
                keyid:81:8D:45:B8:94:A1:AA:AE:64:0E:68:4E:57:CF:DB:53:0D:FA:BA:69

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:39:ab:45:f1:d8:c9:05:db:d4:87:c3:9c:65:02:41:8e:7e:
         82:a4:72:9e:20:0f:a3:2a:c2:96:70:8c:b9:a0:38:29:b4:13:
         ad:77:85:28:1b:68:a0:89:45:68:c5:7c:42:79:53:c7:03:01:
         1c:bf:a8:37:ad:98:df:97:e9:de:7c:29:ea:04:58:a4:54:c2:
         0e:f5:44:3b:e7:ff:ef:91:d9:84:c4:9f:ad:83:cb:00:b4:34:
         6f:d9:0a:b1:e1:eb:e4:15:83:7b:8f:72:50:b4:90:20:ec:dc:
         a1:32:b4:0e:6d:ac:d8:81:05:4e:e3:dc:dd:35:8f:7b:5e:6b:
         cb:1a:25:88:d4:5f:dd:30:3d:c4:66:b9:9d:ca:cf:c3:17:0a:
         c4:8c:d7:d5:52:7e:d0:48:60:ac:46:8f:d8:e7:10:cc:72:99:
         67:1f:cc:21:7f:94:bf:25:e3:67:2a:f0:40:8b:a4:59:fb:86:
         3b:50:69:b5:a5:3c:a6:ae:ce:5f:fb:f0:ef:ec:81:2e:c9:d1:
         bd:d8:29:de:9d:49:68:8e:c6:8e:c0:52:a7:14:5e:6f:58:e3:
         43:0b:ee:87:b4:b5:6f:9f:40:4b:eb:4b:11:28:9d:8d:56:16:
         e8:b2:e0:1e:e0:08:d9:2e:4f:e4:18:7d:9e:75:f5:63:e6:5a:
         5d:73:cd:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----