Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
File:                     5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft (raw, json)
Hash identifier:          ef+N3WCnsBvqYCCj9F6c0Ez4UMlKFVZyDqA5nYjc728=
Subject key identifier:   23:BE:49:3B:73:64:F0:F7:68:D9:4A:0E:F9:CA:D3:D9:7B:31:41:46
Authority key identifier: E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04
Certificate issuer:       /CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
Certificate serial:       019511A2CC9409DF37DF429BF8675C97FB55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
Manifest number:          1453
Signing time:             Mon 17 Feb 2025 02:00:36 +0000
Manifest this update:     Mon 17 Feb 2025 02:00:36 +0000
Manifest next update:     Tue 18 Feb 2025 02:00:36 +0000
Files and hashes:         1: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl (hash: wetmeAARVmxA0Y9vzFuctijwTJYyykKVZxlknwFN2wQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:a2:cc:94:09:df:37:df:42:9b:f8:67:5c:97:fb:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
        Validity
            Not Before: Feb 17 02:00:36 2025 GMT
            Not After : Feb 18 02:00:36 2025 GMT
        Subject: CN=23be493b7364f0f768d94a0ef9cad3d97b314146
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:9d:dd:95:76:c8:ec:ab:65:2d:93:58:6f:77:
                    5f:90:c3:42:b8:01:ff:d1:b4:1a:fb:2d:d2:fd:7c:
                    aa:5a:a3:30:60:79:e8:a4:65:0f:f8:21:a3:b2:d5:
                    ae:47:23:a5:26:f1:31:74:33:b0:51:d6:71:4d:50:
                    ab:6c:da:72:3a:70:aa:48:59:58:ed:98:38:8c:c9:
                    8d:54:b3:f5:ec:fe:e7:ea:fd:5d:1f:e3:0f:3a:f8:
                    79:bf:19:9b:0e:c0:ec:85:52:1c:45:aa:92:8e:0d:
                    08:e1:f9:da:1a:f5:3c:ab:f4:1c:0d:46:8f:5b:fa:
                    60:93:d6:05:53:fd:d3:3f:85:44:20:82:ef:37:0a:
                    0a:78:c4:db:5a:38:a4:9f:10:05:29:4e:40:ab:ee:
                    53:bd:27:ed:68:62:49:31:7a:62:b9:bb:0e:05:2d:
                    32:4d:fd:d8:00:b9:94:5f:85:a5:74:5a:b9:c3:ab:
                    27:5b:52:3e:ad:ea:fc:56:a6:de:7e:36:99:75:9d:
                    72:ed:22:18:b3:39:22:95:69:af:a1:6b:d3:65:c5:
                    5e:23:51:b3:72:a7:79:c3:65:76:0a:c6:83:25:33:
                    13:d4:ec:5e:75:7a:b9:0e:87:a6:00:1a:bf:e8:b9:
                    f8:65:ce:13:d7:38:d3:20:13:2b:ed:df:42:59:89:
                    36:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:BE:49:3B:73:64:F0:F7:68:D9:4A:0E:F9:CA:D3:D9:7B:31:41:46
            X509v3 Authority Key Identifier:
                keyid:E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:84:b8:86:9b:65:ed:50:88:98:20:3b:7e:7a:2f:ad:d4:3f:
         7d:2d:3f:84:ce:04:49:d8:a4:4d:e1:30:43:6c:5e:17:01:65:
         68:aa:e8:76:e6:7c:6e:ae:44:ec:9d:d9:e0:89:83:01:d2:bb:
         bf:51:c2:62:c1:ab:ea:b5:4e:66:8f:d3:0b:b6:6c:9b:7e:71:
         63:5e:6c:04:ad:12:c7:e0:6e:63:36:1c:47:c0:15:b0:ad:5c:
         3b:e3:2b:d1:79:bc:6f:9c:ee:05:9d:de:1b:e9:bb:e0:b9:3c:
         73:ee:5f:5e:db:6c:00:d6:17:d5:c0:4c:07:d1:53:f7:96:db:
         10:a5:c7:61:48:64:82:d7:4b:59:9f:a8:14:84:15:96:58:50:
         54:6d:10:c8:76:f3:a3:7c:e0:d4:63:11:82:8f:2c:b9:d9:26:
         86:23:95:57:16:35:87:bb:64:05:e2:b6:ab:6d:d9:53:f9:f8:
         e7:9d:fd:9b:32:48:3b:17:f5:68:3c:9c:00:0a:3d:6a:cb:e9:
         8f:76:e2:2f:45:9d:63:45:b3:c0:2d:40:ec:c6:f6:ea:04:95:
         12:6a:21:56:27:c2:ae:57:71:80:99:42:cc:96:51:f5:ee:e3:
         55:da:2a:2d:14:a1:86:af:cf:76:63:d2:c2:85:ee:f3:1e:c2:
         4d:a1:19:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----