Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft
File:                     f35evW-kacXjcL_BBsTUqtHh25Q.mft (raw, json)
Hash identifier:          eX5xkNvhX85JDIBbEw0Y48rQ6AZGmMNNNC4Zb1jTJfM=
Subject key identifier:   06:76:BB:E9:98:01:D0:AD:F8:CF:D9:9F:AE:47:EF:22:FF:3A:57:57
Authority key identifier: 7F:7E:5E:BD:6F:A4:69:C5:E3:70:BF:C1:06:C4:D4:AA:D1:E1:DB:94
Certificate issuer:       /CN=7f7e5ebd6fa469c5e370bfc106c4d4aad1e1db94
Certificate serial:       019644444129044AD69D9C5AE99C48B90D2A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/f35evW-kacXjcL_BBsTUqtHh25Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft
Manifest number:          0D5D
Signing time:             Thu 17 Apr 2025 15:00:45 +0000
Manifest this update:     Thu 17 Apr 2025 15:00:45 +0000
Manifest next update:     Fri 18 Apr 2025 15:00:45 +0000
Files and hashes:         1: f35evW-kacXjcL_BBsTUqtHh25Q.crl (hash: pOKE5nK7Sw1JO4qZs8Zq4QV9Q2ppINdJJ3ChI0veBT0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/f35evW-kacXjcL_BBsTUqtHh25Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 15:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:44:44:41:29:04:4a:d6:9d:9c:5a:e9:9c:48:b9:0d:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7f7e5ebd6fa469c5e370bfc106c4d4aad1e1db94
        Validity
            Not Before: Apr 17 15:00:45 2025 GMT
            Not After : Apr 18 15:00:45 2025 GMT
        Subject: CN=0676bbe99801d0adf8cfd99fae47ef22ff3a5757
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:7a:1d:24:d1:75:10:9b:a5:82:2d:1c:59:fe:
                    df:c7:e8:d5:c7:46:c1:d0:27:2c:ce:2a:8a:f0:97:
                    d5:43:a9:a8:8c:0a:26:fe:cb:8d:db:ac:7f:a6:de:
                    98:8f:d7:ea:ab:8c:75:34:4c:f2:46:25:3e:cb:47:
                    ed:5a:4c:28:c2:3d:e4:a2:cf:52:f7:83:b8:bc:19:
                    29:c5:89:4b:ed:26:d6:58:97:60:9e:80:40:5f:23:
                    0c:68:25:d9:f3:c0:ee:3d:f1:89:b6:82:08:08:2d:
                    ed:8a:4c:68:56:db:b9:23:3b:c8:39:36:26:7d:18:
                    4d:8a:07:5e:5a:d8:22:70:f7:fc:b6:b0:c0:0f:4e:
                    96:19:9b:49:d5:7e:b5:22:05:80:09:6a:43:b4:a3:
                    b5:73:e6:21:05:f2:77:95:b4:7e:33:cf:69:a1:e3:
                    a4:98:01:29:dc:21:88:08:fd:98:81:45:c2:30:cb:
                    91:eb:2a:40:67:7c:f8:48:14:c0:a2:39:4d:38:e3:
                    fa:b2:cd:48:a5:f5:6c:85:f3:a3:f0:b4:fe:a0:24:
                    d7:99:5d:bc:62:f2:2c:a0:4b:0b:38:3c:18:88:7b:
                    d8:f3:25:5d:6e:a6:49:ce:04:9f:90:ee:09:69:3a:
                    33:ab:87:d4:86:b9:e7:57:e0:65:14:be:26:73:1e:
                    6e:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:76:BB:E9:98:01:D0:AD:F8:CF:D9:9F:AE:47:EF:22:FF:3A:57:57
            X509v3 Authority Key Identifier:
                keyid:7F:7E:5E:BD:6F:A4:69:C5:E3:70:BF:C1:06:C4:D4:AA:D1:E1:DB:94

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f35evW-kacXjcL_BBsTUqtHh25Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:4a:6f:44:cd:0d:d9:3e:74:e7:0a:08:94:14:2b:eb:13:8a:
         2b:df:8e:d3:d4:f7:e8:4b:c7:8f:7c:fa:89:23:74:7e:3a:1d:
         55:65:36:ac:e6:f5:16:1d:57:6a:2b:ce:32:67:dd:4c:40:d0:
         a8:99:09:b1:1e:10:4d:15:ce:bb:ba:a5:26:97:8c:54:c0:33:
         ca:e2:f0:ae:68:60:80:5f:a0:72:50:5d:13:52:ca:49:48:bc:
         e7:25:41:ef:75:a6:b8:2d:e0:5f:fa:d5:7f:c9:01:de:19:6f:
         64:ff:c6:db:f4:d2:58:9e:db:84:d9:c7:74:68:5f:77:93:5b:
         06:ab:61:66:d3:30:16:a9:65:ba:a6:30:04:a8:37:96:c3:1c:
         95:96:2d:de:40:42:ff:f8:44:5f:6c:f8:bf:bb:9f:17:71:66:
         b3:11:98:c1:39:ca:2c:66:d5:b2:a7:c4:71:13:96:11:a7:f1:
         de:25:22:4f:60:86:d0:4f:01:62:1e:65:17:40:24:b7:e2:37:
         30:ce:68:f4:6b:07:53:27:59:19:f0:44:c6:8b:6f:83:42:df:
         c6:de:c4:9d:d0:7b:6a:e6:d0:f2:c9:7d:5d:2f:2f:9e:b9:ee:
         dd:ec:2a:a1:ea:37:cb:68:cb:db:af:7c:68:de:e7:33:9f:a2:
         c3:1e:2f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----