Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
File:                     fJ1n8CerKw_yajV1FHOa_ogDesk.mft (raw, json)
Hash identifier:          xVYuv+vacqH+fHEDQOd2I+zBDdqX0lF/PmRWsdZGstY=
Subject key identifier:   15:B8:A5:A3:C3:ED:D1:AD:C4:5C:4E:DE:69:B3:19:4B:06:9F:3E:4A
Authority key identifier: 7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
Certificate issuer:       /CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Certificate serial:       01965237076BB759C30A49367CFAFB9822BD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
Manifest number:          1413
Signing time:             Sun 20 Apr 2025 08:01:00 +0000
Manifest this update:     Sun 20 Apr 2025 08:01:00 +0000
Manifest next update:     Mon 21 Apr 2025 08:01:00 +0000
Files and hashes:         1: fJ1n8CerKw_yajV1FHOa_ogDesk.crl (hash: FaaBkv5lnVE/O+0PqUggZrii7NiIBR+TzkPpzftPWTo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 21 Apr 2025 07:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:52:37:07:6b:b7:59:c3:0a:49:36:7c:fa:fb:98:22:bd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
        Validity
            Not Before: Apr 20 08:01:00 2025 GMT
            Not After : Apr 21 08:01:00 2025 GMT
        Subject: CN=15b8a5a3c3edd1adc45c4ede69b3194b069f3e4a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:70:d9:0f:d1:42:37:88:83:6b:4e:1d:fa:c9:
                    40:b3:cf:98:b0:76:c9:3b:4e:f2:b5:a1:89:1f:40:
                    05:cc:67:ee:31:3f:78:9b:a6:37:9a:18:6d:d2:34:
                    5e:1c:19:b9:0d:d8:18:d8:9b:ff:3b:19:a6:61:c7:
                    14:ce:ca:f3:8e:08:93:9b:83:9b:56:c8:8b:ec:fa:
                    19:ae:19:2d:29:74:2c:34:7d:cd:37:c1:83:59:f4:
                    cc:55:36:fa:f9:4c:7c:09:9c:fb:e3:0f:fb:25:39:
                    ce:43:87:33:db:64:e3:52:3f:d9:e7:29:62:45:b9:
                    ef:f3:d2:90:c5:46:6e:eb:e2:d1:cb:c5:fa:b5:12:
                    a3:4b:95:b0:3d:ba:d2:e8:85:d5:3a:01:c4:bb:e0:
                    d4:7d:b9:f3:f1:dd:21:0e:10:04:10:99:9f:f4:bb:
                    62:f6:4c:ca:b2:43:59:33:5b:84:80:83:37:c3:c4:
                    94:6d:a8:cc:91:d2:ed:79:70:66:81:62:30:2e:09:
                    c6:f8:cd:c5:d4:06:b6:f6:ab:fe:b1:c8:2a:80:52:
                    85:f7:5b:5e:0a:5a:5a:76:15:5b:cb:dd:b3:23:b7:
                    2d:b2:24:06:5d:48:3a:7a:e2:97:27:76:f0:4a:04:
                    87:7d:46:64:68:37:4d:71:45:67:49:bc:7e:3c:08:
                    14:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:B8:A5:A3:C3:ED:D1:AD:C4:5C:4E:DE:69:B3:19:4B:06:9F:3E:4A
            X509v3 Authority Key Identifier:
                keyid:7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:f7:af:60:02:fa:b9:39:e1:7b:0a:1b:33:ac:7f:ad:3e:d2:
         54:de:ef:1b:8f:40:54:f6:1a:49:75:4e:12:d1:fb:55:4a:5d:
         e5:ae:1e:ec:7e:d2:0f:18:04:d2:2d:06:88:9a:ee:7f:ff:76:
         b6:5a:6a:1d:8d:61:64:a7:e3:0c:da:6c:de:83:f7:4a:34:9a:
         66:0e:22:96:bf:7e:28:53:25:cb:98:f8:27:6b:fa:9c:8c:86:
         bc:57:60:fe:96:bc:8e:9f:07:75:21:11:cd:a2:00:2e:c2:df:
         0c:19:45:a8:3a:5b:a9:86:08:2b:a6:f0:ca:d4:67:fb:e6:90:
         ab:74:0d:e2:d9:f0:04:da:aa:52:98:66:56:09:2c:07:3b:20:
         5f:f3:d5:42:d3:65:c3:11:84:07:0e:da:eb:4d:b5:1d:76:2b:
         53:79:9b:88:49:bf:81:fc:f1:d1:c5:d0:50:58:a9:ae:dc:9f:
         8b:e2:fd:92:9f:22:23:d2:44:50:c2:0d:88:96:10:13:2d:be:
         78:0f:db:55:c8:71:c5:21:6f:75:02:bc:55:8b:6d:5c:75:20:
         87:ce:3d:89:08:aa:f5:c1:79:85:e5:28:0b:4e:e7:ce:2c:dd:
         a2:a6:01:50:80:e2:d8:7d:e7:28:32:9e:17:2e:dc:29:89:a9:
         64:83:4a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----