Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft
File:                     xnp-TG1V61E8VFdgqP9lba3wuNc.mft (raw, json)
Hash identifier:          LjlCPkPPfiqf/5Zg/PBCmmfqvbJL2vsIsWcwkVmgcQs=
Subject key identifier:   A4:6E:6B:78:1B:AE:5E:3B:79:0F:53:14:AD:B2:79:8C:D2:21:44:11
Authority key identifier: C6:7A:7E:4C:6D:55:EB:51:3C:54:57:60:A8:FF:65:6D:AD:F0:B8:D7
Certificate issuer:       /CN=c67a7e4c6d55eb513c545760a8ff656dadf0b8d7
Certificate serial:       01965793F6AF62393C1062D9FA21E33FBD6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xnp-TG1V61E8VFdgqP9lba3wuNc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft
Manifest number:          C9
Signing time:             Mon 21 Apr 2025 09:00:36 +0000
Manifest this update:     Mon 21 Apr 2025 09:00:36 +0000
Manifest next update:     Tue 22 Apr 2025 09:00:36 +0000
Files and hashes:         1: xnp-TG1V61E8VFdgqP9lba3wuNc.crl (hash: byTxQzzn4RUJY1NdmMJ6Vr7dGaz1d/Zs7rsIDzrHeP0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xnp-TG1V61E8VFdgqP9lba3wuNc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 22 Apr 2025 01:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:57:93:f6:af:62:39:3c:10:62:d9:fa:21:e3:3f:bd:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c67a7e4c6d55eb513c545760a8ff656dadf0b8d7
        Validity
            Not Before: Apr 21 09:00:36 2025 GMT
            Not After : Apr 22 09:00:36 2025 GMT
        Subject: CN=a46e6b781bae5e3b790f5314adb2798cd2214411
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:6b:5c:d7:57:fa:db:ad:fb:63:b6:fd:2d:d2:
                    dd:33:61:65:b3:66:c8:b0:ae:51:2c:c2:96:c4:91:
                    7b:35:c8:8f:93:86:31:58:08:a6:5a:f4:ed:d5:43:
                    b2:ec:ce:92:7c:ad:d5:b7:3d:d5:29:15:f9:26:cd:
                    cf:02:09:01:21:2c:6c:28:9f:fb:cf:c6:7c:6f:56:
                    d4:01:43:2d:66:e7:79:8b:b5:b8:8b:d9:02:2b:cd:
                    b0:0f:ba:fd:15:43:d3:4c:51:b6:35:83:6f:d8:00:
                    d2:e1:c7:b4:40:e3:8c:c8:b3:97:d8:e3:b4:13:a2:
                    8c:b2:e8:03:0d:ec:0d:56:bc:c1:68:2c:47:0c:b0:
                    25:19:56:a7:d3:8d:0d:bc:12:9f:63:57:07:df:e0:
                    1d:b8:3c:16:1d:62:f4:e7:72:1f:32:89:ec:05:a1:
                    7e:1e:7e:3c:ff:ae:a4:5b:a3:0b:db:15:7b:99:88:
                    06:53:05:98:5d:2f:3c:56:8c:33:f8:7d:bd:f4:27:
                    5d:91:14:82:ce:d3:39:2d:07:1c:5b:8f:75:ca:d6:
                    1c:50:b3:f2:17:5a:29:00:1c:4b:2b:44:9f:a8:b5:
                    db:4e:d5:40:77:48:3e:cc:21:0c:c1:96:75:f4:17:
                    88:a4:ca:17:02:72:bd:0d:9e:d2:94:c8:f0:b0:26:
                    d3:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:6E:6B:78:1B:AE:5E:3B:79:0F:53:14:AD:B2:79:8C:D2:21:44:11
            X509v3 Authority Key Identifier:
                keyid:C6:7A:7E:4C:6D:55:EB:51:3C:54:57:60:A8:FF:65:6D:AD:F0:B8:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xnp-TG1V61E8VFdgqP9lba3wuNc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/76/08cdb7-416e-43a6-a276-a0389602472f/1/xnp-TG1V61E8VFdgqP9lba3wuNc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:35:ee:d1:8b:9c:8e:3e:f2:4b:8e:c7:38:02:b0:87:93:14:
         04:6d:79:b1:c0:24:22:8d:56:93:fb:2e:32:0a:8f:42:f6:c8:
         39:60:2d:0c:2b:fd:3b:95:53:d3:f6:b8:95:eb:bc:6a:cc:a7:
         2c:a9:11:1f:80:d1:d7:f1:3b:1d:a2:6e:e7:bd:07:f0:8d:8f:
         fd:91:d2:21:cb:eb:fb:54:95:74:4e:01:9c:dd:96:45:52:b3:
         11:0e:09:32:40:ef:f1:85:ac:33:61:f1:77:70:90:d2:77:64:
         ad:94:42:a3:ef:11:9b:4a:4f:82:f6:d3:1e:19:f6:de:d4:e9:
         dc:db:97:a0:68:19:c6:c3:47:d4:b5:d3:2a:07:ff:fc:e9:e5:
         84:52:49:91:c0:49:74:e6:32:c6:92:bf:fb:17:d4:b2:07:8d:
         c3:70:e0:6d:3c:76:a8:4b:a4:b6:72:19:2c:32:28:dd:67:38:
         7f:16:4a:93:07:1c:cd:fa:c3:e2:d3:9d:6d:ee:82:c9:09:6b:
         16:89:71:3b:25:b9:85:cf:27:9d:07:a7:e1:34:b8:4f:dd:e1:
         eb:3e:27:91:d6:c5:9b:5f:2c:e4:1f:59:eb:6d:c1:e6:cb:8a:
         cc:5d:27:1b:62:75:17:1f:18:a5:e3:74:4c:e8:f5:a5:61:0a:
         a6:3b:2e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----