Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
File:                     l5SL1vKtFY5iT9jonp718b2x05o.mft (raw, json)
Hash identifier:          ffHv+kUO8z7ImX+IL0anR48Utv7NYAWqCybLzc6KeLE=
Subject key identifier:   DC:5A:EE:D6:95:66:AE:42:80:76:51:F5:72:04:AB:A7:52:34:79:7F
Authority key identifier: 97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A
Certificate issuer:       /CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a
Certificate serial:       0196496AB4213556A1CE54C53FBFCF694688
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
Manifest number:          0227
Signing time:             Fri 18 Apr 2025 15:00:51 +0000
Manifest this update:     Fri 18 Apr 2025 15:00:51 +0000
Manifest next update:     Sat 19 Apr 2025 15:00:51 +0000
Files and hashes:         1: l5SL1vKtFY5iT9jonp718b2x05o.crl (hash: o/fBYTrCNkcz18n30OKh0eWRIwDPc4xWJwvZ410NQlI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 19 Apr 2025 14:20:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:49:6a:b4:21:35:56:a1:ce:54:c5:3f:bf:cf:69:46:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a
        Validity
            Not Before: Apr 18 15:00:51 2025 GMT
            Not After : Apr 19 15:00:51 2025 GMT
        Subject: CN=dc5aeed69566ae42807651f57204aba75234797f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:92:ab:5a:06:ef:41:64:65:99:ee:98:48:a7:
                    5b:c3:fe:37:7a:0d:54:c1:0b:c8:1d:6c:df:93:28:
                    4c:19:31:79:33:53:fa:48:20:d7:c0:43:be:89:dd:
                    47:b7:e6:59:4c:94:aa:90:df:2e:05:e7:c1:0f:10:
                    5a:e6:89:ee:f5:10:7e:ba:e9:d4:29:6c:fd:4e:de:
                    ee:e3:7a:75:49:29:bc:cf:81:72:f1:89:48:08:d5:
                    36:78:fb:34:45:46:9f:0c:6b:79:78:21:04:ef:b0:
                    7d:51:9e:c3:e6:2c:1f:fa:05:78:5a:d4:64:c3:c8:
                    eb:6a:fc:28:a2:d2:50:8d:ee:50:7c:71:ed:ef:4d:
                    b8:81:bf:b6:9d:fd:00:64:60:e2:81:a1:5f:ff:ef:
                    30:f3:71:db:fb:74:a2:09:39:fc:c2:a0:37:01:5c:
                    24:5f:94:72:9d:d7:46:d2:f4:e8:74:94:52:94:ab:
                    ca:3b:98:c9:de:f4:f4:13:95:c9:5d:9f:7e:ee:7f:
                    3d:ec:bc:84:e4:89:fe:3b:df:b4:66:de:9a:97:67:
                    c0:00:de:cb:65:14:e8:b1:c9:d2:10:db:be:4c:af:
                    2f:dc:88:d0:2f:f9:55:f1:47:ad:a7:e2:2f:c2:61:
                    9f:97:8a:d6:7e:56:32:f2:cf:2d:ea:54:dc:90:15:
                    41:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:5A:EE:D6:95:66:AE:42:80:76:51:F5:72:04:AB:A7:52:34:79:7F
            X509v3 Authority Key Identifier:
                keyid:97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:ee:46:ca:e3:eb:1f:0e:e4:a9:4d:4e:d7:d2:b3:77:9a:fd:
         05:cf:fd:c5:9c:dc:dc:73:78:03:84:f8:e7:3d:68:e2:91:b2:
         da:6a:d5:58:80:f6:7c:b5:94:b3:d9:f2:bd:d7:5e:89:5d:4b:
         70:20:fe:b7:0f:72:45:55:e7:6f:17:92:0d:92:9c:28:a9:91:
         db:85:59:2a:a4:5d:b2:fe:c6:92:3b:10:d3:14:1c:a3:cd:57:
         c1:10:2b:be:f8:5f:d8:e7:76:c1:0a:29:71:39:51:09:0e:1b:
         fd:c8:af:e9:9e:3f:ec:08:42:82:5c:23:27:c5:72:2e:81:57:
         9f:87:25:aa:b5:99:d7:39:16:71:31:b0:af:a3:d8:41:17:50:
         ad:65:38:2c:5d:3f:69:60:0e:b5:36:b3:d5:0b:81:95:c2:53:
         5a:99:0a:ed:59:c7:ec:f3:4e:52:c7:8b:56:cf:7f:be:3c:21:
         1d:14:9d:67:37:bf:b5:04:33:0a:7e:10:5e:e0:3e:06:9f:a9:
         8a:bc:a2:0d:25:71:18:3a:85:a5:03:8f:af:5b:f6:2d:0d:66:
         51:00:8b:79:ea:d3:f0:14:2d:d8:25:0e:e0:53:54:92:6a:2e:
         21:18:96:c7:fd:93:08:94:57:4a:37:82:9a:e5:26:0e:ef:74:
         57:63:ec:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----