Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft
File:                     V25aWVM8ptDwtIgH0Md-FWhgTl4.mft (raw, json)
Hash identifier:          jyM1rmdG0kAvnrIz8FPdWcdY9D+y530dZpEq/oAn16k=
Subject key identifier:   78:CC:F5:55:51:84:B2:F2:8B:4F:20:66:21:51:49:90:B1:44:55:67
Authority key identifier: 57:6E:5A:59:53:3C:A6:D0:F0:B4:88:07:D0:C7:7E:15:68:60:4E:5E
Certificate issuer:       /CN=576e5a59533ca6d0f0b48807d0c77e1568604e5e
Certificate serial:       01964443FF9176293B987A405350833EB2C2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/V25aWVM8ptDwtIgH0Md-FWhgTl4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft
Manifest number:          0536
Signing time:             Thu 17 Apr 2025 15:00:28 +0000
Manifest this update:     Thu 17 Apr 2025 15:00:28 +0000
Manifest next update:     Fri 18 Apr 2025 15:00:28 +0000
Files and hashes:         1: V25aWVM8ptDwtIgH0Md-FWhgTl4.crl (hash: FCLGVomTwjf9p6RyH31dkjERNetB4ITdOJS/+dhjb0w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/V25aWVM8ptDwtIgH0Md-FWhgTl4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 15:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:44:43:ff:91:76:29:3b:98:7a:40:53:50:83:3e:b2:c2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=576e5a59533ca6d0f0b48807d0c77e1568604e5e
        Validity
            Not Before: Apr 17 15:00:28 2025 GMT
            Not After : Apr 18 15:00:28 2025 GMT
        Subject: CN=78ccf5555184b2f28b4f206621514990b1445567
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f5:a3:63:a6:04:da:10:6f:fe:aa:1d:74:8c:5c:
                    f1:17:5b:39:28:39:70:15:83:7f:2a:5c:28:7f:0b:
                    d0:05:45:22:be:2c:05:ac:78:71:ae:c9:c9:16:02:
                    44:d9:a3:65:64:3b:43:51:b5:17:69:7c:cc:2f:3a:
                    41:0c:6b:a0:31:b9:7c:93:d6:56:5b:16:4f:ff:05:
                    09:ea:77:88:b8:46:14:4b:84:a0:f3:8e:21:fb:ae:
                    1a:f1:30:4d:b0:9c:13:fb:e4:e3:40:5a:62:fc:1d:
                    2f:c0:16:e7:0e:35:89:76:62:55:30:c8:78:b1:a4:
                    32:c4:87:29:e1:7d:7c:29:4d:27:19:ce:00:f2:c3:
                    44:39:4e:41:6f:82:ab:e3:23:2b:1b:b3:8d:8f:51:
                    66:93:6a:4d:33:04:55:76:59:cb:33:ee:83:04:df:
                    ee:88:cb:df:95:62:9c:72:ff:df:07:bc:8c:36:a4:
                    31:71:3c:e6:09:42:bf:cf:fc:0b:58:20:77:90:e3:
                    d0:88:40:75:50:22:fd:9d:52:9e:ef:2e:8e:ea:cc:
                    a9:6f:a4:1a:8c:4f:37:42:3d:35:3f:b6:5e:41:92:
                    1c:92:cb:0c:ca:ba:b8:ff:db:93:e0:98:bc:32:9a:
                    1f:c8:2a:26:fa:d2:98:f1:83:88:cb:17:dd:da:42:
                    a9:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:CC:F5:55:51:84:B2:F2:8B:4F:20:66:21:51:49:90:B1:44:55:67
            X509v3 Authority Key Identifier:
                keyid:57:6E:5A:59:53:3C:A6:D0:F0:B4:88:07:D0:C7:7E:15:68:60:4E:5E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V25aWVM8ptDwtIgH0Md-FWhgTl4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/8d2113-3ec0-4445-8dfe-7adb40dca7bd/1/V25aWVM8ptDwtIgH0Md-FWhgTl4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:82:8d:5a:bf:0c:9b:f8:fd:f9:71:53:fc:6b:f2:8a:b8:25:
         0b:c5:50:87:11:c5:f8:80:e1:2a:3c:06:f8:41:aa:2b:49:05:
         68:6b:8f:f2:88:ce:4b:0a:4f:d3:29:33:0d:d3:d6:f7:91:df:
         4d:a0:25:fa:8b:1d:e4:f7:c0:a6:ce:a2:02:41:57:38:cd:d0:
         b1:c3:e7:fb:74:95:b8:07:cd:77:2f:86:5e:77:4b:1e:d7:e4:
         8c:f9:f1:5a:95:dd:26:95:56:a6:fd:e8:d7:05:80:67:30:e5:
         c1:5e:49:61:b4:16:da:10:5f:6b:79:d4:fe:2a:9f:4b:4c:02:
         c9:8c:21:1c:f8:66:05:9a:cb:e1:dc:4a:9f:34:a5:b3:74:6e:
         32:82:7f:58:ec:d1:23:7e:2c:37:61:35:83:36:66:1e:78:cc:
         7e:e1:4b:23:19:de:53:d5:e9:12:c0:f2:fb:0d:b0:e9:ee:02:
         67:24:75:3f:bc:27:0f:cd:6a:5f:a3:32:d0:bd:18:5f:e7:92:
         ff:20:57:58:4c:ae:e7:31:36:57:29:33:6c:e8:3a:f2:5a:1f:
         0e:76:89:8d:25:45:af:6c:1b:61:6b:a6:03:71:ce:7d:d1:67:
         f5:10:ba:01:64:5d:07:58:1e:4c:5d:2b:ad:28:d8:cd:b6:24:
         06:b2:72:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----