Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft
File:                     iGueLpgWv6rZz8yAbo39KCT1A0Q.mft (raw, json)
Hash identifier:          ZlXoSDtjz04RoJDrdi2hZL7ECN3kMtBrTc+mYSoFHgA=
Subject key identifier:   DB:49:A3:F7:FC:06:94:6F:8F:39:47:E2:EF:4B:37:29:5E:FD:1C:0C
Authority key identifier: 88:6B:9E:2E:98:16:BF:AA:D9:CF:CC:80:6E:8D:FD:28:24:F5:03:44
Certificate issuer:       /CN=886b9e2e9816bfaad9cfcc806e8dfd2824f50344
Certificate serial:       01958CCEA9F7260C67E7A646376195EAD358
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iGueLpgWv6rZz8yAbo39KCT1A0Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft
Manifest number:          0BF3
Signing time:             Thu 13 Mar 2025 00:01:48 +0000
Manifest this update:     Thu 13 Mar 2025 00:01:48 +0000
Manifest next update:     Fri 14 Mar 2025 00:01:48 +0000
Files and hashes:         1: iGueLpgWv6rZz8yAbo39KCT1A0Q.crl (hash: bUyKrwjREuejkyN4M1VZcbB1LmmEFn15Hx+Quy5YmQM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iGueLpgWv6rZz8yAbo39KCT1A0Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 13 Mar 2025 19:14:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8c:ce:a9:f7:26:0c:67:e7:a6:46:37:61:95:ea:d3:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=886b9e2e9816bfaad9cfcc806e8dfd2824f50344
        Validity
            Not Before: Mar 13 00:01:48 2025 GMT
            Not After : Mar 14 00:01:48 2025 GMT
        Subject: CN=db49a3f7fc06946f8f3947e2ef4b37295efd1c0c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:68:44:d4:40:cc:a3:8d:e3:ac:57:a0:e3:d2:
                    db:13:a0:b2:2e:f9:48:3b:0a:05:0d:d8:54:91:06:
                    05:c6:7e:61:5c:cb:61:b4:30:85:26:1a:17:5b:5f:
                    d0:7d:3b:2c:d8:e3:bb:a1:fd:10:9f:de:5b:42:63:
                    53:4d:00:49:b2:3b:f1:65:ab:14:cf:85:9d:8c:66:
                    fd:cd:5f:17:99:93:ce:ec:a9:30:93:83:9b:07:88:
                    ec:41:82:5a:ac:be:f2:31:36:38:75:0c:0b:4f:1c:
                    82:c4:86:e0:92:48:9d:73:3e:5a:eb:1a:5d:5c:24:
                    9a:03:76:f9:76:cc:0c:a0:80:6f:06:9c:87:3d:44:
                    1f:09:eb:d5:ff:e1:b7:06:f6:3f:e0:34:7a:1b:ec:
                    9d:ab:95:1e:59:e0:3b:2f:31:32:c8:3e:65:a5:e4:
                    50:e2:69:ec:10:56:56:82:df:f7:5e:db:60:f1:7a:
                    02:be:45:9f:34:c7:d5:04:73:36:d8:e3:5a:c9:8b:
                    7a:94:b0:c8:e3:ee:93:6e:d8:ab:1a:83:ef:dc:42:
                    20:f9:3c:84:c1:59:86:12:90:ae:68:fd:d5:87:44:
                    ea:02:0c:5f:63:c0:1a:b8:36:12:89:0a:82:ae:e5:
                    86:fa:1e:c0:ae:b2:ff:09:1a:f0:86:0c:3f:80:60:
                    2a:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:49:A3:F7:FC:06:94:6F:8F:39:47:E2:EF:4B:37:29:5E:FD:1C:0C
            X509v3 Authority Key Identifier:
                keyid:88:6B:9E:2E:98:16:BF:AA:D9:CF:CC:80:6E:8D:FD:28:24:F5:03:44

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGueLpgWv6rZz8yAbo39KCT1A0Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7900fd-84e2-4a7c-8d8e-e5afbb936c3a/1/iGueLpgWv6rZz8yAbo39KCT1A0Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:62:72:fd:b9:4c:b4:8c:f2:3f:e3:a1:44:76:17:74:a3:45:
         86:b9:91:e0:ba:5c:2b:3c:b4:63:a0:3e:79:e5:d6:70:bb:e9:
         b0:64:ee:b5:69:af:cb:7d:61:6f:7a:bd:7c:0c:6d:e3:d4:38:
         0c:90:7f:11:ed:88:87:aa:57:ed:72:27:bc:41:d3:88:3c:b9:
         e4:f7:42:c5:62:7c:e9:bf:58:b3:17:34:f3:39:86:1a:95:92:
         ae:3a:16:af:52:23:e4:f9:0a:ce:4e:56:cb:30:2b:f4:65:db:
         26:43:5e:ba:24:37:c6:7a:4e:c8:ec:72:40:3a:fb:a3:98:99:
         69:b8:5f:af:67:cb:4b:c9:ab:02:83:fa:46:0c:86:ce:d3:5a:
         b2:1d:d2:1b:f3:cf:1b:65:57:b4:e2:4b:74:ba:5b:d9:e1:76:
         9d:61:2d:78:88:56:f7:34:87:b2:b9:12:a4:56:5d:db:84:87:
         3a:7a:73:37:27:9c:4e:ea:1b:d2:f0:cf:8c:17:34:11:b5:54:
         81:09:95:b5:81:f8:27:32:4d:59:10:89:87:c5:30:50:c1:e0:
         a4:c5:69:57:ee:61:a4:97:d9:77:8f:0e:9d:21:0d:d9:f9:3d:
         8a:69:bb:0e:45:94:82:aa:9c:de:30:65:d7:74:e4:56:7e:65:
         f6:47:cc:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----