Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
File:                     7nwowZyp0nBozrxpyBVBZ13BLN8.mft (raw, json)
Hash identifier:          L3J4DSnWxK3wMcVURp1EzHWQjM3bR4avB0H9GuQHE/o=
Subject key identifier:   D8:B7:93:A5:5F:C5:81:02:18:76:E5:0E:38:E9:40:46:BB:CE:D1:7F
Authority key identifier: EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF
Certificate issuer:       /CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
Certificate serial:       01958C613CB19BAE9B8A299DE7349A9546CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
Manifest number:          1494
Signing time:             Wed 12 Mar 2025 22:02:17 +0000
Manifest this update:     Wed 12 Mar 2025 22:02:17 +0000
Manifest next update:     Thu 13 Mar 2025 22:02:17 +0000
Files and hashes:         1: 7nwowZyp0nBozrxpyBVBZ13BLN8.crl (hash: I9a1pyV70tMyD2s0ApLSWsKRcO7jfBNTkHRgEGdHe8g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 13 Mar 2025 19:14:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8c:61:3c:b1:9b:ae:9b:8a:29:9d:e7:34:9a:95:46:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
        Validity
            Not Before: Mar 12 22:02:17 2025 GMT
            Not After : Mar 13 22:02:17 2025 GMT
        Subject: CN=d8b793a55fc581021876e50e38e94046bbced17f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:f3:0b:1c:8b:99:d0:5c:12:65:b4:11:04:3b:
                    fa:be:a2:bd:63:7d:11:79:92:f3:2c:8f:48:5c:2d:
                    74:02:61:c3:fb:9b:25:80:ba:e1:1d:d9:45:bf:63:
                    e4:dc:0b:6a:dc:28:6f:ee:73:9c:17:52:e3:93:c1:
                    30:35:f1:50:b3:77:f0:ca:a3:48:fe:c7:f5:89:e7:
                    a0:2c:0b:11:c5:b8:0c:67:68:a0:f1:05:df:75:e6:
                    2d:20:23:bd:10:a5:2c:da:35:0e:7b:9b:9d:49:eb:
                    4a:e9:ff:bf:6a:23:0b:ab:48:77:9e:f8:25:36:2e:
                    40:51:bc:65:1e:59:42:6d:9e:c1:66:08:1b:ae:59:
                    0c:8c:58:9e:d1:50:bd:01:c7:66:8b:f0:c3:8d:94:
                    c9:99:1f:61:77:60:2e:95:e1:dd:9f:23:05:68:85:
                    42:2f:ad:94:da:de:8c:5e:e9:20:dc:df:a2:38:aa:
                    ba:23:1a:9f:4b:8e:ff:ae:8c:09:f9:cc:73:71:6c:
                    4c:b4:32:bc:d9:55:bd:00:e2:dd:cf:af:4e:81:7c:
                    53:cf:80:5d:a9:1b:4b:52:40:57:d8:f1:ea:be:d4:
                    6c:1f:9c:9d:89:a2:20:31:18:56:59:d5:40:df:ca:
                    f9:7f:3d:15:86:f2:08:31:bd:a0:92:68:01:67:ab:
                    fe:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:B7:93:A5:5F:C5:81:02:18:76:E5:0E:38:E9:40:46:BB:CE:D1:7F
            X509v3 Authority Key Identifier:
                keyid:EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:2d:f8:84:6e:4b:37:43:3f:22:ff:a2:f1:9a:b8:7b:75:12:
         21:fc:70:a4:25:19:e5:14:25:47:6b:89:71:cb:6f:10:73:76:
         1f:aa:21:94:50:4f:08:80:ce:99:76:d0:5e:bf:4b:f0:ce:9e:
         c4:85:2a:a2:d4:6a:4f:94:9e:50:37:92:d7:1b:cc:b5:cc:4e:
         68:17:8e:8d:85:a6:4b:e2:65:cc:85:48:2d:be:5d:75:82:49:
         0f:62:03:3a:70:d5:ca:7b:1c:e2:0c:a3:0e:0e:f5:73:a6:56:
         d6:56:38:0d:3f:a0:3e:5f:73:b8:a1:c4:47:21:fc:a5:c5:26:
         0d:12:4a:33:00:c0:7f:9f:e3:01:82:4c:c0:d7:38:47:4d:18:
         97:01:a9:7a:9d:3c:7d:b0:09:6b:48:fe:b1:bc:24:1e:52:00:
         bc:fb:bf:b3:af:b7:f8:94:ab:d5:13:46:71:8b:9b:d9:df:0a:
         09:24:e5:0c:1c:e8:ac:fe:04:5d:c6:8d:98:36:a6:ac:55:e9:
         b0:4d:52:ef:6b:35:15:ec:f4:7c:02:80:aa:20:12:92:ab:0d:
         d8:9f:2e:9d:70:8e:41:73:28:f8:b0:e5:40:90:5c:4b:26:d6:
         71:9b:cf:24:75:82:36:27:7d:99:dd:27:d8:d7:09:7f:f5:92:
         79:4a:62:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----