Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
File:                     jR3ulkqib4m9ECJ21GVjP7guqig.mft (raw, json)
Hash identifier:          MuMJVBUg3MgnvIqw9iMsuZKvDcZR26AQ6YVJNDvoe8k=
Subject key identifier:   B6:EE:39:FB:04:03:CC:F8:7E:60:06:E9:3C:7A:20:CE:DD:1A:A1:D5
Authority key identifier: 8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28
Certificate issuer:       /CN=8d1dee964aa26f89bd102276d465633fb82eaa28
Certificate serial:       01961245A322887B419FBF47E6A270389FE5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
Manifest number:          093B
Signing time:             Mon 07 Apr 2025 22:01:15 +0000
Manifest this update:     Mon 07 Apr 2025 22:01:15 +0000
Manifest next update:     Tue 08 Apr 2025 22:01:15 +0000
Files and hashes:         1: jR3ulkqib4m9ECJ21GVjP7guqig.crl (hash: 1ZoVCqr5rv8GTK8+00nd/3Osoms/mUmJhn2WpogCZmI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 08 Apr 2025 22:01:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:12:45:a3:22:88:7b:41:9f:bf:47:e6:a2:70:38:9f:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8d1dee964aa26f89bd102276d465633fb82eaa28
        Validity
            Not Before: Apr  7 22:01:15 2025 GMT
            Not After : Apr  8 22:01:15 2025 GMT
        Subject: CN=b6ee39fb0403ccf87e6006e93c7a20cedd1aa1d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:47:1c:7b:b1:05:c5:d6:f3:f8:3c:50:e3:47:
                    3b:78:d8:8c:05:d1:b8:4b:f1:0c:12:da:6f:29:d2:
                    9c:7d:fe:82:00:7a:b3:8b:93:95:62:38:fd:2c:f7:
                    71:b8:0b:94:ec:e1:71:3a:3c:16:9c:0b:ca:03:cc:
                    ae:75:dd:7e:17:16:eb:79:c0:d0:16:76:69:b5:27:
                    c7:53:01:54:1a:05:e8:fd:11:8c:91:4b:7b:d8:f5:
                    10:7d:60:fd:6e:73:83:10:14:99:94:da:d7:8f:73:
                    a7:c7:90:e4:89:a0:34:dd:21:b5:49:8b:14:75:e3:
                    d0:5e:85:01:fc:4f:ca:de:23:8c:00:8e:de:d3:d8:
                    15:ed:60:58:45:b8:cd:3e:56:7c:c5:29:11:96:a4:
                    d4:63:83:13:8e:7b:e4:38:a9:3f:4e:e2:31:81:08:
                    d4:42:06:ee:3f:2e:37:b6:c0:5c:80:a3:ed:99:76:
                    dd:e1:0d:c7:2f:3d:0e:1b:cb:68:51:97:45:c8:b9:
                    73:e3:cc:e5:f7:c1:38:24:96:0f:b7:ed:f4:e0:3d:
                    9c:c2:b6:18:3d:22:7c:ff:f0:5d:6b:aa:86:2c:d9:
                    c3:4e:bd:ae:a5:10:16:2b:d4:8e:4b:11:1a:b6:b8:
                    47:e0:7a:df:74:06:05:a4:21:57:66:3a:bf:fc:9d:
                    d9:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:EE:39:FB:04:03:CC:F8:7E:60:06:E9:3C:7A:20:CE:DD:1A:A1:D5
            X509v3 Authority Key Identifier:
                keyid:8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:b5:26:db:dd:75:f7:ab:fc:35:df:ec:c2:4c:58:e7:7c:89:
         38:2f:fa:a0:f8:d4:c7:8f:87:8e:10:36:bb:a4:cf:5b:14:53:
         6f:cc:8e:f7:ca:d7:1f:24:e5:31:62:47:5b:e0:82:90:c9:f9:
         b3:ed:05:34:8b:17:29:71:52:2e:dd:0f:5b:25:44:25:b3:35:
         72:92:ed:b0:31:c2:e6:45:08:8d:e9:c6:13:38:85:91:58:97:
         5d:ce:e0:f1:84:15:bb:4e:d0:63:33:31:09:67:2a:57:ad:16:
         00:ad:3b:7d:a6:c7:a4:d4:d0:55:95:7a:de:cf:17:f9:24:dd:
         9c:2d:f2:fb:a4:c3:b6:c3:20:d4:27:7f:3f:7e:57:cc:04:c8:
         f3:02:23:dc:0f:c3:de:2e:55:05:61:eb:dc:f6:94:82:ee:bf:
         11:84:43:51:89:45:db:97:0b:b2:b9:dd:0a:85:17:b4:8e:f9:
         52:d1:48:a2:8b:a3:43:cd:a5:07:b2:0f:40:a0:77:0d:d0:ef:
         47:b4:bc:e4:a1:f4:46:b7:93:44:eb:ad:3f:b0:20:a7:7c:32:
         63:03:0b:85:8b:9e:77:f8:d0:52:37:c9:52:fb:7e:a0:91:ef:
         c6:03:dc:02:9d:9c:5d:e9:c9:7c:e2:6c:de:9e:b9:72:74:22:
         21:71:d2:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----