Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
File:                     pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json)
Hash identifier:          9reEbl5IXqixqXVZyFSYAFOW+VKgn2rOsJQZHuSg/vI=
Subject key identifier:   8E:9A:D0:A1:95:4F:F7:AD:90:13:5E:B8:0F:C8:26:12:96:64:09:98
Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92
Certificate issuer:       /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
Certificate serial:       01964F6C3F4BF19A3AAB0681905826C0DA10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
Manifest number:          0FF8
Signing time:             Sat 19 Apr 2025 19:00:16 +0000
Manifest this update:     Sat 19 Apr 2025 19:00:16 +0000
Manifest next update:     Sun 20 Apr 2025 19:00:16 +0000
Files and hashes:         1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: 4MCnY4cxC8gqjBBI8Ei1QiGgFaWqB299nkOl7cC8skc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 20 Apr 2025 19:00:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:4f:6c:3f:4b:f1:9a:3a:ab:06:81:90:58:26:c0:da:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
        Validity
            Not Before: Apr 19 19:00:16 2025 GMT
            Not After : Apr 20 19:00:16 2025 GMT
        Subject: CN=8e9ad0a1954ff7ad90135eb80fc8261296640998
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:67:d8:3b:c1:29:a0:4f:ba:cc:de:8c:8d:05:
                    1c:57:25:ed:86:8d:82:6f:25:4d:cf:24:4c:71:74:
                    bd:74:7a:10:18:ea:31:36:86:c6:d7:3e:dd:d4:8c:
                    cf:fe:43:d4:d3:25:79:ff:17:f7:9a:5e:9b:e5:95:
                    84:81:bb:32:77:f7:12:cc:69:03:f9:f1:9e:53:68:
                    e0:18:3d:14:85:47:10:34:e5:59:d0:c4:db:ed:fc:
                    22:41:5d:0f:2f:c7:a5:26:89:a1:a5:54:f7:7c:d4:
                    98:8b:45:4c:0e:72:be:f5:5f:0d:91:a8:9b:e0:cf:
                    bb:a1:a3:d3:19:b9:cd:35:fc:59:db:ba:24:da:25:
                    f0:0e:16:80:0b:b0:15:ef:5b:b1:29:65:c2:e5:d2:
                    03:ff:0c:ce:83:c6:bd:15:54:91:b0:ba:88:1b:cb:
                    97:34:44:92:0a:a8:51:9c:5a:3f:bf:12:bc:2d:de:
                    63:1a:6c:6c:2f:15:2f:1d:e2:20:4f:2e:95:3d:40:
                    07:69:52:28:ed:45:3e:a9:0b:0d:de:7b:59:c2:ba:
                    ba:a6:ab:84:c7:6b:d6:a3:76:49:b8:21:e0:df:67:
                    36:b1:3b:31:fc:17:46:75:2d:9f:41:ad:70:e8:32:
                    26:19:e6:8e:1a:81:7b:50:b7:60:70:f3:7d:15:df:
                    25:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:9A:D0:A1:95:4F:F7:AD:90:13:5E:B8:0F:C8:26:12:96:64:09:98
            X509v3 Authority Key Identifier:
                keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:46:55:e1:66:95:03:85:3d:31:8f:22:22:a6:ab:36:a1:97:
         ec:a1:e1:b1:0c:2f:e1:d5:6c:8b:f2:b8:e7:10:53:c3:ca:a6:
         94:8f:62:dd:fb:1f:6d:f1:c6:73:92:7f:ae:83:eb:0b:35:56:
         ad:b1:7a:c2:4b:3e:ad:5f:b8:7c:f4:d6:08:d0:1b:d8:45:cb:
         a1:eb:4f:96:30:10:4a:7d:94:2a:56:a4:97:f4:46:fe:be:2a:
         8c:7c:f8:27:73:12:8e:b8:ee:7c:2f:75:ab:48:97:68:23:a4:
         66:3a:d3:aa:5e:d2:c5:8f:c9:e7:63:c4:46:23:f3:b8:c8:ac:
         e6:d7:6c:a6:6b:e8:cb:a1:fd:f3:2d:21:fe:bc:f7:61:3e:a8:
         25:19:1c:64:94:35:91:8b:1f:73:67:b7:bb:2d:83:a1:f3:86:
         a5:59:48:9e:1b:d4:ac:c7:7a:b1:10:ea:62:f5:62:65:f8:99:
         aa:e0:88:e6:ea:dc:62:b0:fc:27:b3:01:fa:92:3a:fa:b4:75:
         fe:b4:ed:66:87:ac:bf:e1:a3:6b:c6:b6:32:34:ef:2f:8d:cf:
         b3:d6:6e:1c:e8:04:bd:46:6a:f1:80:cf:10:1c:5a:1c:e2:9e:
         b5:55:be:6a:2a:e1:e9:6d:2d:ad:10:0f:6e:cc:08:d0:35:cb:
         8b:41:85:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----