Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
File:                     DUlCfYpEd823aAhhqexQ3HMhaYI.mft (raw, json)
Hash identifier:          FzVa3ivaaUo9Ju44Ku6l02+Fp6JjgW7cNGRaP6dfhxE=
Subject key identifier:   B1:B0:E4:F2:BE:D8:BB:0A:04:30:CC:DE:49:70:52:41:1B:03:38:8B
Authority key identifier: 0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82
Certificate issuer:       /CN=0d49427d8a4477cdb7680861a9ec50dc73216982
Certificate serial:       019510C7F7D02DEA4567E4843E755E0D2671
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
Manifest number:          04E2
Signing time:             Sun 16 Feb 2025 22:01:35 +0000
Manifest this update:     Sun 16 Feb 2025 22:01:35 +0000
Manifest next update:     Mon 17 Feb 2025 22:01:35 +0000
Files and hashes:         1: DUlCfYpEd823aAhhqexQ3HMhaYI.crl (hash: h6vFwIgvkZJ0NWYS/MtO5CvmiU8RNEMI+ys4hmQ5Ehw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c7:f7:d0:2d:ea:45:67:e4:84:3e:75:5e:0d:26:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d49427d8a4477cdb7680861a9ec50dc73216982
        Validity
            Not Before: Feb 16 22:01:35 2025 GMT
            Not After : Feb 17 22:01:35 2025 GMT
        Subject: CN=b1b0e4f2bed8bb0a0430ccde497052411b03388b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:24:b3:d7:cc:4e:33:3c:76:75:15:03:0f:2b:
                    49:aa:8a:2d:44:bb:fd:59:ad:6e:ee:f3:8c:db:77:
                    7e:b6:6b:4a:1c:fd:6b:f0:68:c1:07:c6:9a:a0:73:
                    61:ce:fe:e0:08:7a:4b:f2:23:09:4d:cb:a5:4c:7f:
                    7e:ae:6c:f5:4c:f7:d4:54:f5:42:86:98:fa:8d:a4:
                    4a:0e:66:71:a4:8b:63:1a:27:64:5e:66:7b:e1:da:
                    2c:7c:95:64:9e:5a:21:f2:2a:9c:35:86:59:3f:ce:
                    48:5a:41:7d:4a:5b:f3:9d:9f:91:f0:9e:33:4c:6b:
                    b3:22:ff:af:9c:24:aa:5b:77:4f:88:17:1c:76:9c:
                    b2:20:9b:52:66:84:58:17:9a:27:a2:75:b5:53:14:
                    94:b2:a3:5b:89:50:41:b6:98:da:75:b7:3d:84:28:
                    94:24:44:68:11:c8:25:c8:03:5d:20:cd:72:06:d1:
                    8c:fc:09:18:7b:d6:3f:45:83:60:88:f4:b3:c5:3a:
                    a6:7c:df:4b:37:d2:b8:d0:83:83:a4:e3:3a:2d:e7:
                    39:1f:ee:54:31:05:1e:a2:51:91:96:90:e3:fd:b9:
                    75:65:6c:f8:22:40:1f:b8:85:40:1c:6c:44:a2:ba:
                    2b:f2:04:2c:27:c0:57:b2:d7:c7:99:da:08:df:a9:
                    ca:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:B0:E4:F2:BE:D8:BB:0A:04:30:CC:DE:49:70:52:41:1B:03:38:8B
            X509v3 Authority Key Identifier:
                keyid:0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:94:d9:c1:14:bf:73:84:46:ce:3c:31:c5:17:92:b1:6f:23:
         66:75:58:7d:09:50:d7:3a:79:b8:bd:de:3f:be:fc:cd:6a:6f:
         fe:bb:12:be:c5:c8:06:de:31:d7:43:88:13:86:53:5e:0d:ac:
         da:bd:84:44:c4:5b:b6:14:2c:e3:e2:e4:f8:48:d1:b9:c6:e5:
         99:c5:1a:88:3b:57:4f:2e:8c:e1:8a:2e:a8:2c:bb:92:d7:04:
         b9:62:fb:d9:7f:b1:78:41:ed:d5:c8:2e:84:14:41:55:2f:6a:
         4d:ea:07:fd:06:f5:4f:49:b2:e3:58:b6:82:ae:5e:7c:fd:e1:
         1e:de:33:db:d4:db:92:74:3c:8b:ea:45:6f:90:cc:46:f4:f9:
         0a:a8:51:c6:9f:8f:28:cb:a7:2c:89:f2:28:12:1e:76:06:a6:
         c3:76:64:eb:d0:4c:69:ae:d5:98:bd:ec:44:46:2d:56:b1:1f:
         3d:77:c9:a9:83:4d:a5:34:2e:05:83:83:3e:bd:69:ed:da:95:
         97:29:36:49:ff:cd:f6:e6:0a:88:51:ab:29:6d:ff:01:af:61:
         93:88:0a:5b:2f:64:6e:2b:04:08:5e:47:e1:e0:40:8f:5c:ae:
         e2:a3:2a:dc:81:c4:cd:ac:45:56:58:58:c9:b6:54:41:ad:d1:
         20:18:e5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----