Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
File:                     orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json)
Hash identifier:          7JbBrFGxPPYpeJdIOwCPdutdpBP639bdzvXIn4l+RFA=
Subject key identifier:   F8:FB:A5:A8:17:D4:DD:15:C6:CD:5D:A9:54:64:FA:7D:CE:B0:D5:39
Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62
Certificate issuer:       /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
Certificate serial:       019510C6BB47840D4B4AE3CC2312EE2587BF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
Manifest number:          01F6
Signing time:             Sun 16 Feb 2025 22:00:14 +0000
Manifest this update:     Sun 16 Feb 2025 22:00:14 +0000
Manifest next update:     Mon 17 Feb 2025 22:00:14 +0000
Files and hashes:         1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: k5GAxjUjmlNipIMW5Txho3PHGK7Y2x8v2/qUtvPGEEQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:00:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c6:bb:47:84:0d:4b:4a:e3:cc:23:12:ee:25:87:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
        Validity
            Not Before: Feb 16 22:00:14 2025 GMT
            Not After : Feb 17 22:00:14 2025 GMT
        Subject: CN=f8fba5a817d4dd15c6cd5da95464fa7dceb0d539
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:f2:4f:a0:71:99:a9:f4:9d:83:7e:89:12:14:
                    b4:58:46:c9:46:1e:b8:97:93:f2:94:b5:75:e4:9c:
                    df:01:c5:fb:71:c6:e4:e0:95:18:c5:f4:66:b1:c2:
                    63:5b:22:8b:81:40:e0:56:2a:8f:4a:96:13:e4:43:
                    6f:de:f4:e5:76:d4:de:f4:e7:9a:a5:73:1a:ba:80:
                    58:9f:4f:1d:04:3b:8c:01:1a:a3:26:4b:09:5a:b3:
                    1e:1a:f3:1e:0c:98:f9:fa:12:a5:4b:04:5d:94:0a:
                    ec:3d:17:11:84:0e:e6:e8:5e:e6:ce:5c:fa:69:6a:
                    5b:ad:05:76:92:9f:24:18:6c:fd:b2:c9:52:e0:d5:
                    fd:6b:a9:8f:4d:c6:38:e9:79:84:6b:c5:d3:8e:45:
                    47:47:26:99:49:2a:c7:4b:4c:17:62:38:92:9b:46:
                    46:52:aa:a1:4f:0d:56:71:68:ab:8a:c6:58:c9:02:
                    fb:05:62:57:69:ec:f6:82:f3:f3:93:8a:29:d1:53:
                    28:0b:75:81:86:02:8e:2a:bd:f1:57:6a:79:17:20:
                    9c:30:24:37:b3:75:b4:2b:a6:75:97:fb:72:97:cb:
                    32:1e:5d:f3:c2:c8:5d:62:ba:e3:df:e6:e2:eb:85:
                    3c:ec:7d:32:d3:4b:83:dc:48:1b:27:de:00:96:d7:
                    2e:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:FB:A5:A8:17:D4:DD:15:C6:CD:5D:A9:54:64:FA:7D:CE:B0:D5:39
            X509v3 Authority Key Identifier:
                keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:d7:84:69:49:cf:72:53:7e:73:0c:1e:7f:dd:0b:0f:d1:d1:
         4f:7c:bd:c5:07:4e:61:7c:bf:7b:34:ee:87:47:cb:be:fb:05:
         fb:ed:d2:62:8e:58:6b:e0:dd:21:ff:82:f2:d6:8b:fd:74:52:
         30:1b:d5:fc:7d:a4:27:74:ac:98:d7:a6:34:b1:3c:4f:51:ca:
         df:db:8d:c9:7a:0a:58:89:01:8f:56:35:e4:d1:b2:84:58:d5:
         86:42:10:b5:c3:1a:05:62:02:a3:d2:43:b5:df:54:fb:c9:bb:
         dd:df:2a:a8:a0:47:e3:47:d9:bd:df:5a:18:40:45:6d:41:1f:
         ca:b6:1d:c8:7d:f2:0f:dd:6a:45:a0:0b:97:59:b6:e6:cc:38:
         1d:a6:80:eb:28:df:a9:8b:2f:7e:2b:86:c8:97:36:77:68:3d:
         a7:61:17:4f:57:07:93:e9:0c:16:b7:8e:d1:d3:3b:c2:6d:32:
         dd:5f:10:08:64:f6:3c:39:63:26:78:73:ac:6a:07:15:04:5b:
         c7:d5:f6:7a:03:bf:27:22:95:8a:82:5a:d7:84:84:c2:52:c8:
         aa:a9:c2:39:60:89:0a:68:5d:c4:28:62:63:d5:41:d1:e3:02:
         dd:3f:a5:69:03:24:c5:d1:5e:c7:ea:fa:36:6d:b3:fc:5f:1e:
         83:09:37:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----