Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
File:                     lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json)
Hash identifier:          cqmFJ6CV213fvAVFuuqF5/+CCgnJG18FLtqEwT1jxfI=
Subject key identifier:   5B:66:B6:47:71:84:61:F4:8E:89:E3:49:0D:59:9C:6F:AD:D2:69:17
Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
Certificate issuer:       /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Certificate serial:       01974A7BA52BB73D3C061F5B4D5F1F9D2328
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
Manifest number:          113D
Signing time:             Sat 07 Jun 2025 13:01:46 +0000
Manifest this update:     Sat 07 Jun 2025 13:01:46 +0000
Manifest next update:     Sun 08 Jun 2025 13:01:46 +0000
Files and hashes:         1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: fo/wiUtGhgy22DnKpgXggYR6v7nMkASX99CLaiELGeY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 13:01:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7b:a5:2b:b7:3d:3c:06:1f:5b:4d:5f:1f:9d:23:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
        Validity
            Not Before: Jun  7 13:01:46 2025 GMT
            Not After : Jun  8 13:01:46 2025 GMT
        Subject: CN=5b66b647718461f48e89e3490d599c6fadd26917
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:6b:08:21:b6:aa:c9:4d:c5:18:e0:c6:27:a0:
                    b9:dc:3f:8d:24:fe:8a:6f:e9:c4:13:e2:b2:4d:8d:
                    69:b8:ee:bb:64:8e:a1:4a:4e:4e:99:49:6a:ef:88:
                    08:12:4c:1e:6a:e4:ce:b1:4c:51:22:96:fa:42:3a:
                    3c:cc:f9:fe:7e:07:46:32:f6:aa:4d:9a:87:08:4d:
                    55:fb:d9:e3:4d:c0:c2:ca:88:5a:62:de:fb:33:20:
                    59:07:cc:cc:35:93:12:a2:54:ee:53:5e:b1:60:24:
                    87:51:35:53:91:13:9f:ba:e5:17:12:20:37:d5:7c:
                    46:16:80:10:83:a6:ee:32:91:d1:07:ee:b2:38:74:
                    82:81:d3:a0:19:7b:69:a7:19:08:f6:2b:1e:a4:ac:
                    4f:78:c3:86:6f:7f:3a:7a:b5:38:f7:6e:94:95:c6:
                    3b:b1:b8:eb:5b:8f:8b:cf:32:17:9a:12:98:ce:db:
                    9d:df:ce:07:f2:0c:b4:e0:94:40:b3:b1:72:1b:50:
                    b1:f8:9c:30:e8:0c:7a:4f:00:b2:a3:f4:48:87:f9:
                    51:6d:0e:94:45:24:66:1c:88:6b:24:6e:d6:ab:12:
                    91:79:45:f2:7e:71:3a:6d:fe:99:d3:d0:9d:8a:8a:
                    05:32:fb:d2:5f:b6:00:3e:3d:63:f9:bc:2c:49:ce:
                    3f:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:66:B6:47:71:84:61:F4:8E:89:E3:49:0D:59:9C:6F:AD:D2:69:17
            X509v3 Authority Key Identifier:
                keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         dc:62:da:18:f2:d3:4f:a9:b3:7e:e9:c3:f6:9d:fd:d3:9b:b8:
         4c:60:f5:a7:94:c9:d7:62:55:10:c0:b0:cf:d2:fd:09:6b:92:
         40:62:2a:1b:fd:d5:b4:ef:c8:b5:c8:4f:bd:11:05:b1:c0:08:
         28:60:42:7f:23:fe:f5:af:2f:ac:c2:34:e2:ea:14:f4:c1:86:
         25:c5:e7:c3:f7:1f:2e:dd:98:0b:d7:00:30:12:02:ec:d0:06:
         93:d3:8d:7c:88:59:cd:e7:b3:3c:48:24:d3:9c:bf:df:09:51:
         76:37:db:22:d5:ed:2b:87:0a:13:bb:1b:f8:05:f8:2a:d3:86:
         28:7d:ca:c9:98:d8:5f:8f:e7:97:09:c9:ba:72:6a:a2:db:c3:
         da:6b:bc:2c:50:d9:aa:64:7e:f8:00:7a:22:53:38:b9:96:20:
         ca:bb:33:f0:91:ae:99:62:02:53:02:83:ad:d9:f2:bd:2f:cf:
         f7:ea:8d:1b:9f:62:7f:9e:33:b4:f4:08:4b:74:39:b6:91:d1:
         7d:85:c8:54:ca:67:3a:94:3b:09:58:9a:93:25:1e:ac:1c:5c:
         fd:6d:98:bf:68:4d:6e:be:7a:d8:ce:84:3a:86:80:37:1f:de:
         38:9b:4a:f2:89:a5:2b:a3:47:84:30:ea:10:ae:40:c5:37:8f:
         3e:6d:d1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----