Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
File:                     b27JJY79ACkhePqBwjzXfAKhoRA.mft (raw, json)
Hash identifier:          pqNiMxkCzM8qN8L05bM7eBJmef83TWH3/ANxhdaP2VQ=
Subject key identifier:   11:F1:F6:76:9A:B7:68:19:2B:CC:87:6F:52:DC:93:80:F3:9F:19:DE
Authority key identifier: 6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10
Certificate issuer:       /CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
Certificate serial:       01951135132456368061BA61EB8EC7825C0C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
Manifest number:          0AD5
Signing time:             Mon 17 Feb 2025 00:00:45 +0000
Manifest this update:     Mon 17 Feb 2025 00:00:45 +0000
Manifest next update:     Tue 18 Feb 2025 00:00:45 +0000
Files and hashes:         1: b27JJY79ACkhePqBwjzXfAKhoRA.crl (hash: bLcN+2EOTl5m4mSniU4g/mRKh2ymPPj3wM/IWHtX3rs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:35:13:24:56:36:80:61:ba:61:eb:8e:c7:82:5c:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
        Validity
            Not Before: Feb 17 00:00:45 2025 GMT
            Not After : Feb 18 00:00:45 2025 GMT
        Subject: CN=11f1f6769ab768192bcc876f52dc9380f39f19de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:1d:ee:fa:43:7f:ac:8d:46:4b:54:ad:b3:ed:
                    41:a6:24:11:8c:ba:81:6f:3c:61:fc:15:12:8c:39:
                    1f:02:8f:1c:a4:34:7b:3a:b3:42:02:3f:d2:0a:8a:
                    4d:79:51:1e:2f:0b:5e:9c:83:b6:12:4a:89:0b:68:
                    af:21:e8:d5:4a:2c:4e:89:c2:c1:8f:37:f0:2f:66:
                    3e:82:a9:95:41:26:4f:91:24:6f:79:9e:51:b5:89:
                    79:48:24:f5:de:73:74:51:5c:cd:8c:19:09:6c:83:
                    88:49:04:c3:60:d9:84:66:04:dd:8b:47:22:3a:0c:
                    82:d6:cf:46:01:f9:a0:11:ee:75:65:04:f8:8a:40:
                    04:65:3b:f8:4d:ee:58:91:3b:78:71:a5:06:af:8a:
                    93:b6:ef:52:4b:a9:8d:d6:20:b7:df:35:28:ec:2b:
                    96:05:65:b3:7d:da:41:b1:cc:f2:6b:1e:dc:fd:99:
                    f9:74:4a:c7:cf:db:03:fe:d1:fd:46:00:11:14:d1:
                    d5:3b:2a:bb:f9:08:be:ba:7a:bd:e0:0a:f3:49:61:
                    0e:11:7a:9c:77:b1:54:a3:d6:4e:1c:df:c0:12:36:
                    08:39:12:aa:58:02:ea:cc:7d:c9:24:e3:4f:2d:92:
                    fc:d5:f7:94:09:e6:fe:f4:da:76:b2:4a:a0:86:94:
                    b1:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:F1:F6:76:9A:B7:68:19:2B:CC:87:6F:52:DC:93:80:F3:9F:19:DE
            X509v3 Authority Key Identifier:
                keyid:6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:a4:63:45:3c:5c:41:07:2b:b9:72:55:fd:b6:a1:3e:7f:c9:
         19:85:25:71:e9:d1:77:9b:01:e2:d1:b0:9d:80:3d:b6:b8:73:
         a3:38:99:fc:89:f0:1d:53:4e:e0:03:ae:8f:32:a6:79:1e:63:
         a7:cf:9b:4e:6f:1e:96:78:d0:7b:12:b0:f6:cd:ad:ad:54:98:
         20:ac:15:a2:f9:66:f6:7f:06:58:4d:24:1f:2b:1a:26:9c:94:
         bf:c7:e8:ed:e1:a5:ec:fe:f6:f6:de:89:19:6d:54:c2:ec:e4:
         78:76:f8:de:78:b7:53:48:55:89:c2:16:2a:79:d8:ee:58:a8:
         06:07:b7:40:e3:12:d6:26:38:1a:2e:fc:7c:f0:b1:72:7f:a2:
         7e:2a:57:41:47:2b:48:31:50:4e:23:cd:97:f0:ec:41:81:b6:
         20:b2:64:9b:4f:2c:08:0e:d5:bf:63:c9:13:79:63:fb:78:1e:
         4a:b6:74:7a:13:3e:44:27:de:d1:46:e9:67:c3:ac:f4:7e:c5:
         fb:72:ed:9b:55:6d:99:42:7f:d4:05:5f:f9:47:43:07:23:a8:
         1f:5e:4f:4f:83:f6:3b:57:de:d5:a6:50:c1:bf:11:c3:e0:f0:
         e9:ec:16:8f:24:7f:d7:87:cd:2f:92:6b:4b:33:37:c9:81:3e:
         6f:9b:86:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----