Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
File:                     b27JJY79ACkhePqBwjzXfAKhoRA.mft (raw, json)
Hash identifier:          XlFfrU0qe+T82NuvtU7whQe90+ol0WVkOFeJQdrquKA=
Subject key identifier:   EF:81:B1:E6:BC:BF:C0:54:D1:36:1A:29:3C:82:75:12:D5:3E:D3:32
Authority key identifier: 6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10
Certificate issuer:       /CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
Certificate serial:       01965F4DCFB6A98AC776343C50B186C2EEC8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
Manifest number:          0B82
Signing time:             Tue 22 Apr 2025 21:00:56 +0000
Manifest this update:     Tue 22 Apr 2025 21:00:56 +0000
Manifest next update:     Wed 23 Apr 2025 21:00:56 +0000
Files and hashes:         1: b27JJY79ACkhePqBwjzXfAKhoRA.crl (hash: 5HJRnQdlGSkWHxhm54NSfbQkKuQYm6/CiaX+mQ4HYuc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 23 Apr 2025 14:46:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:5f:4d:cf:b6:a9:8a:c7:76:34:3c:50:b1:86:c2:ee:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
        Validity
            Not Before: Apr 22 21:00:56 2025 GMT
            Not After : Apr 23 21:00:56 2025 GMT
        Subject: CN=ef81b1e6bcbfc054d1361a293c827512d53ed332
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:a9:3f:b4:c4:6c:37:94:7c:fb:2d:0e:bc:c2:
                    bc:f6:be:f0:12:bc:5e:c3:e0:56:f0:ea:36:70:9d:
                    d5:87:89:5f:c6:e2:f9:0b:ca:50:38:da:da:6a:a8:
                    e5:34:fc:c5:ae:5c:51:c9:f7:46:b9:d8:1b:d7:e4:
                    af:de:e6:06:29:38:a3:f2:a8:d2:56:c7:92:5f:f3:
                    d3:b1:c1:d8:42:18:25:11:4d:e2:df:ef:ec:87:c4:
                    80:c3:97:0e:91:b6:63:14:40:b2:95:0a:a7:ee:0b:
                    69:80:be:ab:d2:a3:c2:e3:a4:7c:41:9f:3a:b2:a1:
                    ea:6f:fe:93:06:8f:28:1d:6c:fb:9c:1a:d5:2c:76:
                    4a:20:68:d1:5a:7c:de:0b:7b:6f:69:c7:05:3e:25:
                    4d:c2:6a:fb:26:92:22:1d:39:66:be:23:bc:39:61:
                    9a:08:08:0b:c8:b2:80:c5:78:e9:58:03:42:b3:c4:
                    04:63:46:a6:47:d3:d2:f2:de:bc:61:fd:e2:4d:f0:
                    a1:87:ec:4e:e8:a6:09:ba:11:68:7d:c8:40:8c:3f:
                    52:4a:aa:2a:86:e9:37:3b:b6:7f:be:12:4a:95:4b:
                    14:74:2f:c3:2a:0d:ae:ed:80:b2:c1:66:47:c0:be:
                    f0:27:a7:09:57:5d:0a:a5:b1:6f:81:9a:03:1f:15:
                    52:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:81:B1:E6:BC:BF:C0:54:D1:36:1A:29:3C:82:75:12:D5:3E:D3:32
            X509v3 Authority Key Identifier:
                keyid:6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:a3:2f:3d:4f:44:53:d7:1a:58:f2:58:7b:29:55:86:01:26:
         cd:b7:62:e7:9b:5b:ba:d9:d9:f6:06:f4:2e:5a:21:88:67:40:
         c0:f6:a3:69:55:ca:2b:eb:30:82:ac:d1:4b:45:c6:e6:51:6c:
         f0:e5:81:1f:84:1c:56:a7:cb:4c:7c:e9:53:ab:21:81:2a:51:
         57:f4:2e:19:61:c4:a7:04:32:15:1e:b0:b7:8d:16:91:96:80:
         cc:58:f6:ad:fc:d0:6c:04:77:bc:1b:77:c5:97:6f:04:31:38:
         a2:25:ad:46:e7:62:f6:f7:ba:f2:78:31:74:4c:09:df:15:f0:
         fc:73:de:fc:d8:d3:f5:b1:2f:d6:41:4b:39:8d:92:a2:18:a7:
         7a:06:02:7e:cf:bb:14:a5:2f:87:97:af:ff:53:51:ad:1a:75:
         ac:fd:90:99:66:33:48:2a:77:f3:23:b1:72:7b:ea:b1:d8:ef:
         34:13:5c:c4:a4:d3:3c:7b:5a:e1:60:88:0b:19:44:a3:47:48:
         68:9f:ce:c3:45:fb:03:56:74:5a:c5:ab:f9:46:50:c5:dd:c2:
         0c:61:ef:e8:e1:e5:3c:81:8a:0a:16:34:f7:c3:31:dc:1a:58:
         ee:e1:48:b0:72:41:bd:03:23:72:e0:4a:e3:a9:e6:56:f5:e4:
         e7:2a:e2:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----