Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
File:                     ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft (raw, json)
Hash identifier:          cJ01W4twsG/UD0U8FQQS0yFicOJE+WZKVFt78AyhMNE=
Subject key identifier:   DA:EC:26:F3:14:58:B1:40:71:43:61:F1:9F:0F:20:B0:12:AE:EC:C5
Authority key identifier: 66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
Certificate issuer:       /CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Certificate serial:       01964BFDCA47C8D859574D8FED5CC79B4060
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
Manifest number:          0B46
Signing time:             Sat 19 Apr 2025 03:00:45 +0000
Manifest this update:     Sat 19 Apr 2025 03:00:45 +0000
Manifest next update:     Sun 20 Apr 2025 03:00:45 +0000
Files and hashes:         1: ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl (hash: K5QhYHXBxeZQ4pmc8UWuLDJ/pDmDJs9eyEghwCwi1Yg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 20 Apr 2025 03:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:4b:fd:ca:47:c8:d8:59:57:4d:8f:ed:5c:c7:9b:40:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
        Validity
            Not Before: Apr 19 03:00:45 2025 GMT
            Not After : Apr 20 03:00:45 2025 GMT
        Subject: CN=daec26f31458b140714361f19f0f20b012aeecc5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:a9:34:09:c4:7e:26:eb:b2:a6:8f:e3:62:e3:
                    4e:a9:fb:35:7f:96:11:c6:fe:4a:ff:6e:e1:b0:e0:
                    c8:54:9e:bb:5a:9d:22:16:18:8c:37:75:a5:cc:98:
                    67:e6:cc:5c:fd:df:84:ee:30:2a:d2:ed:77:ca:82:
                    9e:43:45:a3:d2:62:62:f8:c3:9d:6f:f0:df:3d:60:
                    16:0d:d6:d1:6c:fc:f7:ca:f1:da:cb:59:10:8d:3e:
                    5e:2f:b9:aa:68:42:fa:4d:6e:42:b7:22:3b:b5:0c:
                    4b:77:a0:f8:92:86:0b:ec:3c:6c:ca:22:db:41:01:
                    42:0d:83:97:ca:5a:49:85:79:4e:c7:6c:f4:4a:20:
                    2c:91:82:ae:23:d4:65:02:13:40:d2:13:bf:84:6d:
                    98:51:8c:b0:eb:9b:91:e3:37:68:13:3f:7f:cc:78:
                    f1:95:50:c0:3c:0c:de:5b:ef:a3:22:be:95:ef:ef:
                    f6:b6:70:c6:1d:c0:d8:d1:03:6d:91:8f:2a:91:24:
                    ec:7e:a5:1f:38:00:5f:1b:35:1e:51:dc:87:5a:81:
                    65:25:03:df:f8:dd:fe:01:d6:e2:06:3f:d3:f7:f3:
                    28:a9:77:a7:cf:96:12:00:9b:ef:03:f1:14:e1:10:
                    c4:a6:8b:46:35:f5:98:02:e0:26:a9:73:90:97:8f:
                    36:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:EC:26:F3:14:58:B1:40:71:43:61:F1:9F:0F:20:B0:12:AE:EC:C5
            X509v3 Authority Key Identifier:
                keyid:66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:87:f5:75:d9:bd:c3:fa:2f:97:fa:b3:fd:b9:92:ef:a5:48:
         ed:a7:2f:c8:62:3b:a7:1a:74:9e:79:1d:cc:b0:31:62:fd:4d:
         fa:af:e3:78:e4:98:93:28:c8:ae:18:89:64:9d:50:fc:36:7c:
         97:7e:60:3c:5f:31:fa:12:a7:fa:72:1e:32:71:14:bb:45:f6:
         1b:d6:0b:77:47:31:67:f2:8b:e1:2c:67:7a:96:ba:6a:e5:0b:
         d2:33:0f:75:4f:ab:20:07:74:91:3e:0a:7e:b2:40:ad:ff:70:
         47:63:3b:af:63:c7:79:66:66:bd:27:4e:12:8c:b4:55:bf:d2:
         b1:b0:5b:ef:7a:98:c7:81:f9:5e:39:ff:14:46:67:f2:d7:40:
         6f:51:03:a4:50:91:fa:1f:ed:31:4e:06:f5:d8:a7:fa:51:fd:
         e9:87:ab:bb:d5:f0:87:a8:d2:04:ce:ef:1a:fa:ba:ce:db:73:
         0a:a2:b3:f5:6d:a8:3c:bf:35:bf:7d:bd:2b:95:98:00:48:cd:
         a4:0b:d3:e6:07:4e:fb:d0:fa:28:5b:01:72:57:05:e5:9f:c1:
         73:42:da:04:3d:e7:62:39:7f:59:8a:e7:92:95:54:e4:31:b5:
         49:98:3d:6e:04:95:c5:6c:35:7e:74:c6:fe:e8:60:28:01:07:
         48:ad:6b:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----