Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft
File:                     Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft (raw, json)
Hash identifier:          GMkI5E/3bW3jviSzfBTUfW4UoLYV1BITfanhB0cVyWg=
Subject key identifier:   A9:56:7F:C7:FF:B9:63:DF:A6:F5:86:61:87:96:5D:B6:AE:BB:E4:01
Authority key identifier: 46:7A:38:81:12:E6:8F:4C:7D:4D:80:C3:2D:37:CF:CD:6C:D2:3A:45
Certificate issuer:       /CN=467a388112e68f4c7d4d80c32d37cfcd6cd23a45
Certificate serial:       01958EF3478A07416E8AEADAC1129274C3FB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft
Manifest number:          1154
Signing time:             Thu 13 Mar 2025 10:01:03 +0000
Manifest this update:     Thu 13 Mar 2025 10:01:03 +0000
Manifest next update:     Fri 14 Mar 2025 10:01:03 +0000
Files and hashes:         1: Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl (hash: Tg4BI1AMJXg5Snniilny3tu3JBYwjEeqIvgk9eNimgo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 14 Mar 2025 09:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8e:f3:47:8a:07:41:6e:8a:ea:da:c1:12:92:74:c3:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=467a388112e68f4c7d4d80c32d37cfcd6cd23a45
        Validity
            Not Before: Mar 13 10:01:03 2025 GMT
            Not After : Mar 14 10:01:03 2025 GMT
        Subject: CN=a9567fc7ffb963dfa6f5866187965db6aebbe401
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:6b:a6:3d:3a:49:19:15:d1:8d:a4:4e:7a:c0:
                    51:f5:6d:7e:f4:b3:08:01:f9:bb:95:7c:b9:13:1e:
                    46:9a:62:a4:fd:d3:23:ef:05:bd:e2:40:e3:cc:bd:
                    31:4b:a2:41:b7:07:bc:77:16:e4:89:0e:11:36:88:
                    8e:e3:fa:60:24:d1:57:76:20:c5:83:e4:6b:75:93:
                    dd:2e:b4:2a:38:ae:8f:ec:4a:cb:dc:ae:e2:b9:b7:
                    57:a2:95:59:f3:ab:0f:cb:c2:f6:40:f0:7c:46:99:
                    25:bb:97:81:fe:50:46:0f:46:85:f5:79:19:ad:a8:
                    25:0a:5e:f1:f1:83:16:20:93:49:58:65:03:af:46:
                    31:23:7f:ad:75:6e:88:a0:04:52:ee:c4:dc:13:10:
                    ff:7e:92:29:d2:49:41:f4:11:a0:56:bd:00:fa:f0:
                    80:20:80:b7:cd:18:f4:6b:b1:8a:60:77:56:05:2f:
                    68:51:c0:45:23:0d:27:f7:6f:cc:68:62:3a:3f:24:
                    bf:e1:5a:47:8f:ac:95:91:50:6d:eb:66:3b:31:ff:
                    b1:87:90:2a:4c:23:62:1f:ff:d5:c4:33:a6:a6:9a:
                    24:66:4f:cd:24:e3:89:84:71:31:12:5d:81:16:33:
                    cb:ef:f4:97:79:f1:41:a0:7b:e1:67:30:d3:1d:9b:
                    a8:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:56:7F:C7:FF:B9:63:DF:A6:F5:86:61:87:96:5D:B6:AE:BB:E4:01
            X509v3 Authority Key Identifier:
                keyid:46:7A:38:81:12:E6:8F:4C:7D:4D:80:C3:2D:37:CF:CD:6C:D2:3A:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:1b:8f:f9:f4:e5:ff:bb:a9:3e:64:da:62:2d:66:0e:13:14:
         df:95:45:3b:bc:26:be:45:a7:c3:ef:14:27:e1:40:26:27:2e:
         9f:55:07:2d:0b:f0:f8:ff:fa:15:22:76:43:97:e3:ff:91:17:
         8d:54:20:5e:1e:62:f0:2c:03:e7:42:00:2f:8a:a5:c1:e4:c4:
         a2:91:be:37:47:91:94:bb:3c:33:54:84:5e:79:14:4d:c3:c2:
         8f:bb:a7:14:7e:be:9e:a1:4e:3c:75:3f:78:14:a8:24:a6:ea:
         b9:14:cd:4d:04:9a:e7:5e:84:cf:5e:e2:2d:e7:82:4f:e3:f5:
         94:b4:3a:b6:13:10:18:51:a5:48:ec:ae:c2:c1:94:ca:1c:f8:
         62:a3:23:fe:62:2c:fe:24:0f:87:ba:04:61:28:b5:d5:bd:f4:
         8f:d6:5c:e0:f9:56:2f:eb:93:e0:cb:e4:62:1e:b6:f5:e7:a6:
         74:33:37:9f:d9:3a:b3:57:f9:38:3d:fc:f4:43:d4:83:05:56:
         58:12:17:59:5b:d9:31:ee:36:29:2b:9f:18:cc:17:0c:a2:7d:
         a9:bf:6e:69:b9:27:83:bc:04:89:18:79:7a:ce:e3:d0:0b:bd:
         ed:bd:1b:88:dd:be:8b:a5:3f:80:a4:b1:75:40:13:d3:8e:16:
         36:9a:98:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----