Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
File:                     j7phV8tS0RaPUIRsXlB5IkDt8-A.mft (raw, json)
Hash identifier:          AFmrZ76k4z6sj0UFat7I6+I5Q/Axa925VZcJxliMCCA=
Subject key identifier:   98:59:65:F0:B2:77:4C:C0:E7:38:82:DF:17:AE:EF:22:E5:CC:FF:F4
Authority key identifier: 8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0
Certificate issuer:       /CN=8fba6157cb52d1168f50846c5e50792240edf3e0
Certificate serial:       01958CCE09E1CF6D671A1A7F9F2675D484EB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
Manifest number:          07C6
Signing time:             Thu 13 Mar 2025 00:01:07 +0000
Manifest this update:     Thu 13 Mar 2025 00:01:07 +0000
Manifest next update:     Fri 14 Mar 2025 00:01:07 +0000
Files and hashes:         1: j7phV8tS0RaPUIRsXlB5IkDt8-A.crl (hash: AIzlTUcJGEtFpyqIiC4lqrvunyE83Fzeq0sjUuTY49Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 13 Mar 2025 19:14:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8c:ce:09:e1:cf:6d:67:1a:1a:7f:9f:26:75:d4:84:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8fba6157cb52d1168f50846c5e50792240edf3e0
        Validity
            Not Before: Mar 13 00:01:07 2025 GMT
            Not After : Mar 14 00:01:07 2025 GMT
        Subject: CN=985965f0b2774cc0e73882df17aeef22e5ccfff4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:7b:73:a9:4b:f5:93:2c:1f:8c:65:63:fd:e5:
                    25:42:b4:25:9f:56:05:4c:ff:d1:0a:e2:e5:24:13:
                    52:98:66:a1:b0:e2:b5:e0:97:48:93:23:b7:81:27:
                    c2:f6:0b:3f:7b:45:ef:73:0b:b9:4e:4c:d5:ac:4b:
                    7d:14:27:78:14:25:3d:20:39:e4:f6:84:a4:c2:54:
                    05:11:99:32:99:a8:35:f6:53:38:94:aa:12:04:46:
                    d0:8c:3a:5d:32:e3:bb:65:aa:49:d9:01:3f:7d:12:
                    32:e1:31:54:01:28:57:e0:89:31:60:0a:cc:22:46:
                    59:e6:57:60:6b:8e:8f:c7:cf:25:3d:56:49:4c:30:
                    f7:14:27:f7:02:ad:db:ca:92:10:43:8b:ec:61:ba:
                    9c:83:4b:0b:3e:cc:32:0c:cb:0e:56:04:53:89:56:
                    eb:3b:9b:bb:59:ff:af:63:a3:fc:3f:94:2d:f8:64:
                    be:1f:cc:d9:9d:01:fb:17:ee:e9:6f:91:36:42:fc:
                    0f:57:17:9e:5a:a8:d9:67:17:ef:fe:77:85:46:fd:
                    35:0f:e0:6c:43:b8:66:ef:0e:f8:dc:fa:ed:2c:d5:
                    e6:c6:48:26:c9:6f:71:d1:b4:ea:f4:b6:b7:05:e1:
                    79:7b:b7:ce:b2:49:d2:e0:63:99:87:20:fd:d1:22:
                    2f:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:59:65:F0:B2:77:4C:C0:E7:38:82:DF:17:AE:EF:22:E5:CC:FF:F4
            X509v3 Authority Key Identifier:
                keyid:8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:f5:32:49:ef:31:70:a9:f1:94:17:c8:18:bd:8c:09:75:50:
         55:02:b2:ee:26:91:84:2e:ee:a0:66:d7:b2:44:6a:b4:b4:ff:
         02:85:02:b9:14:4e:53:ef:ca:5d:c8:fc:7b:cb:9c:6c:b8:32:
         e4:e3:03:04:ca:f9:20:8d:12:b0:8e:ab:eb:7e:34:c5:77:b9:
         3a:18:91:19:49:4b:dc:87:91:6a:11:aa:f2:01:76:75:4b:fa:
         be:fd:6f:5b:7e:56:43:3b:bc:2d:3c:ae:7a:ad:74:00:49:84:
         50:84:5a:bf:58:5c:c3:e6:28:3a:5b:32:a4:2d:4f:3b:08:36:
         e8:e4:5a:66:c2:02:74:53:7f:4d:82:fa:0f:0f:9e:a4:69:a4:
         d1:3e:c4:57:3f:b6:5e:48:9c:ad:a3:4b:58:7f:a4:f6:54:2d:
         14:72:4c:4c:0d:eb:d1:eb:07:43:1b:2b:73:59:14:73:ba:8d:
         a1:bd:01:84:3a:62:64:ad:da:82:64:04:b6:27:76:5b:dc:08:
         dd:e7:62:72:48:3d:32:c1:f2:8c:77:6f:e1:3a:1d:fb:d2:f3:
         ca:03:ba:15:07:71:c1:43:a6:8a:81:a0:4a:64:f6:81:25:ab:
         59:12:62:ab:e1:5c:af:7e:ee:a9:f6:d2:12:c2:ba:9b:a6:f0:
         f3:c3:68:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----