Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
File:                     FLklHG89i7aaegPOrN0q58LIzjc.mft (raw, json)
Hash identifier:          numQ6/cgF7PnjoGmfr/u81E1AoEVAdVWEIzp0Qz5BRk=
Subject key identifier:   2E:61:02:FE:48:5D:2E:37:72:4F:04:FC:14:17:B6:31:3A:3F:27:A1
Authority key identifier: 14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37
Certificate issuer:       /CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
Certificate serial:       0196458DB373138DC0ABC778FFD9CD4E0EA9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
Manifest number:          60
Signing time:             Thu 17 Apr 2025 21:00:36 +0000
Manifest this update:     Thu 17 Apr 2025 21:00:36 +0000
Manifest next update:     Fri 18 Apr 2025 21:00:36 +0000
Files and hashes:         1: FLklHG89i7aaegPOrN0q58LIzjc.crl (hash: JfJPUybY/Z3Gv3Lo5W9T9/aKGhpFtEWLHi/RJZDHd1k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 16:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:45:8d:b3:73:13:8d:c0:ab:c7:78:ff:d9:cd:4e:0e:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
        Validity
            Not Before: Apr 17 21:00:36 2025 GMT
            Not After : Apr 18 21:00:36 2025 GMT
        Subject: CN=2e6102fe485d2e37724f04fc1417b6313a3f27a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:5a:16:41:d9:3d:ac:84:fe:90:1d:16:1a:31:
                    b1:53:5f:0f:07:26:57:c0:84:1a:25:7d:c6:70:30:
                    a1:6d:9f:76:d0:9f:be:f2:ce:00:4e:6e:3d:79:b7:
                    49:fe:35:fa:5c:1e:2c:01:a4:ca:50:d6:83:fc:5a:
                    97:c8:db:a1:f9:6a:de:48:43:bf:aa:f1:2b:0a:91:
                    80:78:ef:85:56:94:c0:b3:3f:2b:64:30:7a:b2:ee:
                    ac:1c:5b:74:07:17:ae:ca:79:c6:74:d2:d8:9a:66:
                    cf:f6:7f:25:90:65:ce:1e:34:4b:ea:52:5b:be:9a:
                    8b:ee:c8:f7:58:2c:7f:fc:42:0b:fd:a8:ec:0a:75:
                    07:48:e5:74:b0:db:e6:85:ba:6a:d2:c4:72:08:7d:
                    73:c2:94:1e:c7:3a:37:40:54:9e:ec:a1:e6:36:1b:
                    b5:f0:c6:a2:7f:e0:e0:32:3e:85:58:ca:15:2a:37:
                    06:ab:a0:7d:17:ee:fc:48:0e:4b:7a:cc:76:f2:16:
                    3a:fe:3a:5c:ec:3a:c2:a7:51:b0:5e:c2:ee:70:c8:
                    f1:63:8b:2b:b6:48:51:6f:5a:55:f6:c7:86:5b:26:
                    a9:74:e8:7f:d4:85:72:a2:7f:a3:68:ea:bd:23:1c:
                    aa:c0:dd:03:18:90:2f:16:e3:42:e6:0d:21:c7:92:
                    e7:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:61:02:FE:48:5D:2E:37:72:4F:04:FC:14:17:B6:31:3A:3F:27:A1
            X509v3 Authority Key Identifier:
                keyid:14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:22:c8:90:30:0e:0b:6d:b7:f6:c3:7e:e2:95:c4:47:70:13:
         d7:45:c6:be:9b:57:a1:24:70:6c:08:67:41:58:8b:50:76:85:
         e4:5b:22:31:c6:71:e0:1b:55:46:95:ce:f4:9b:34:d2:39:29:
         10:10:94:05:14:79:90:f9:ab:22:7d:3e:bc:11:29:0d:44:08:
         dc:54:4d:91:5d:6d:7c:f8:66:87:d4:04:e0:ea:4c:cb:d2:fc:
         5f:10:c8:ce:41:3a:7c:15:d8:43:4f:93:e9:57:51:1e:87:4a:
         72:4f:66:6e:02:29:4e:91:fc:56:0a:1d:51:5f:a8:4c:b0:79:
         02:c5:d0:fa:b3:50:18:a7:69:6d:2e:95:3c:ce:90:ad:41:18:
         4a:5a:15:3b:ae:ed:71:25:fa:39:3d:b7:a2:0a:9c:d2:bc:95:
         bb:fc:15:ed:2d:4d:46:51:03:17:9b:b9:34:8d:35:a1:55:20:
         e9:9e:61:d3:9e:ff:be:85:06:44:6e:76:ee:48:e1:5d:a6:46:
         25:af:3f:19:db:b7:85:5c:52:17:f2:9e:8b:77:64:7e:3e:fb:
         7f:b2:58:de:2c:cb:83:a1:ca:c5:2f:7e:50:ac:1b:73:49:92:
         0c:ed:7c:34:e7:69:46:f1:5e:8a:6d:33:86:7d:77:86:42:5e:
         86:b5:e4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----