Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
File:                     _VnTVh_4rdtfGww2o90laLdMpRU.mft (raw, json)
Hash identifier:          KCHVIVQfmPhhLsLla5ujqVTqHrgsffF9gsaG43idneU=
Subject key identifier:   CD:2C:D7:7B:83:E7:9D:3A:55:31:23:43:B6:72:6C:E7:5A:99:FA:72
Authority key identifier: FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15
Certificate issuer:       /CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515
Certificate serial:       01965F8434F802CE391CEDC3F75D14EBFFD9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
Manifest number:          09E6
Signing time:             Tue 22 Apr 2025 22:00:21 +0000
Manifest this update:     Tue 22 Apr 2025 22:00:21 +0000
Manifest next update:     Wed 23 Apr 2025 22:00:21 +0000
Files and hashes:         1: _VnTVh_4rdtfGww2o90laLdMpRU.crl (hash: A5xOOBDbHwCfQmii7pEArIG2roL1QbPv62CclqJ5tYs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 23 Apr 2025 14:46:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:5f:84:34:f8:02:ce:39:1c:ed:c3:f7:5d:14:eb:ff:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515
        Validity
            Not Before: Apr 22 22:00:21 2025 GMT
            Not After : Apr 23 22:00:21 2025 GMT
        Subject: CN=cd2cd77b83e79d3a55312343b6726ce75a99fa72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:af:04:61:68:66:8c:8a:f9:cc:55:fe:45:b0:
                    98:a5:0d:98:ba:1f:c7:46:d8:13:6f:ba:54:87:70:
                    80:23:d2:53:e1:d3:55:93:a6:5c:09:d9:4c:25:36:
                    12:61:5a:dc:94:66:c2:f5:08:8a:70:04:94:a3:f7:
                    37:12:4c:f4:22:05:c1:86:cf:29:a6:a5:29:31:9e:
                    09:37:3b:cb:df:af:0c:5f:96:ff:b1:5f:1d:37:9a:
                    e2:0c:14:7b:dd:8f:4e:39:e1:60:26:74:34:8a:11:
                    52:54:8b:d4:0e:b8:05:f1:2d:d8:2e:e6:16:f8:b7:
                    1f:96:96:70:d4:21:7a:03:67:32:dd:a8:59:a7:96:
                    c1:af:64:51:58:ae:78:4c:8c:0a:80:10:73:9b:eb:
                    56:90:e8:e7:2e:36:ba:4a:ee:4f:60:f9:7b:93:4f:
                    8c:40:c4:00:d9:5c:b9:a4:54:9c:0d:16:cd:e4:4a:
                    11:29:3f:68:49:a0:80:ed:82:c4:9b:a5:62:e3:3b:
                    79:cb:57:39:b3:ce:22:ce:ac:98:21:bf:80:76:ef:
                    65:39:61:21:42:09:db:79:3c:7b:af:55:9c:78:ad:
                    52:6b:ad:ef:ec:e2:02:20:f5:51:52:60:85:cc:cb:
                    9d:93:31:27:72:8f:d1:94:a2:5c:dd:35:77:79:43:
                    50:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:2C:D7:7B:83:E7:9D:3A:55:31:23:43:B6:72:6C:E7:5A:99:FA:72
            X509v3 Authority Key Identifier:
                keyid:FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:63:f7:c3:1e:f3:bc:7b:3e:fe:87:07:e5:64:ef:93:e2:07:
         c7:8e:41:4b:c7:fa:0c:d3:64:e0:aa:36:6e:6c:23:80:3e:de:
         22:b6:95:1f:9f:33:5d:0e:f3:48:28:57:b5:58:93:63:b7:62:
         b2:52:4a:e9:e4:3f:c7:be:9d:8b:5f:45:fd:9b:e4:f1:68:b9:
         b0:d8:52:f6:93:62:b5:31:6c:15:e6:e1:79:95:f3:22:0c:27:
         3f:82:02:19:8f:38:3a:5b:a4:1c:03:ae:c0:47:ca:48:71:0c:
         e0:37:3c:58:be:a0:a8:8c:e9:cb:51:94:10:39:0a:11:8a:83:
         bb:ef:61:34:f5:f8:7d:da:4b:03:6d:f5:9a:ab:1a:c6:30:46:
         7c:6b:4d:08:a5:4b:7b:20:b2:26:1b:bb:76:ff:4a:60:ca:dc:
         d8:fa:cc:5a:21:30:ae:6a:04:12:18:be:0b:d3:ce:a0:c3:ec:
         4d:cb:c6:13:4c:dc:b4:d4:f2:f7:de:6a:0a:f3:b9:92:9c:f7:
         c9:a0:d5:e6:6e:21:ac:32:65:fa:9e:b4:f4:4e:5a:0b:0a:47:
         48:cf:6b:14:cd:48:d3:62:13:b2:9c:4f:50:d2:bd:01:4b:ce:
         69:3c:ff:f9:22:7f:8c:ee:07:3d:e3:db:d1:1a:42:73:1b:e7:
         c4:0b:40:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----