Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
File:                     FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft (raw, json)
Hash identifier:          ZZwmyJD6pvgQoDYabwAT6udQNHHkNmZwB+Kw0TzrFZg=
Subject key identifier:   9C:93:C7:55:CD:A9:B4:B2:05:1B:0F:8A:4F:D6:44:B8:36:C4:C6:A0
Authority key identifier: 16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08
Certificate issuer:       /CN=16536fc756a5864aaa2c1e77bb764248dabe2608
Certificate serial:       019630F4AE3153C41CC174C0135E245449EE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
Manifest number:          053D
Signing time:             Sun 13 Apr 2025 21:01:03 +0000
Manifest this update:     Sun 13 Apr 2025 21:01:03 +0000
Manifest next update:     Mon 14 Apr 2025 21:01:03 +0000
Files and hashes:         1: FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl (hash: A3S7j8sjy/LDr2Qm2yXQQSXjNSlGI3Ml/YaUMU+7mSg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 14 Apr 2025 21:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:30:f4:ae:31:53:c4:1c:c1:74:c0:13:5e:24:54:49:ee
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=16536fc756a5864aaa2c1e77bb764248dabe2608
        Validity
            Not Before: Apr 13 21:01:03 2025 GMT
            Not After : Apr 14 21:01:03 2025 GMT
        Subject: CN=9c93c755cda9b4b2051b0f8a4fd644b836c4c6a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:bd:1d:77:8c:15:d6:fc:88:c7:ae:4e:ae:16:
                    14:9c:5b:a5:7d:fc:62:bc:9b:ee:36:31:ce:a9:93:
                    3a:4f:6b:aa:ff:26:50:cf:6f:d9:c7:8d:4c:d0:1c:
                    0d:95:cf:95:ee:01:54:d4:ec:85:9a:5a:ff:7f:26:
                    49:5d:37:e7:77:17:dd:22:bf:9f:82:45:a4:98:8f:
                    4d:5d:50:0e:da:5e:f7:d7:39:45:c9:ab:2d:91:1d:
                    b5:59:c5:bf:03:d2:51:fa:a7:ae:d1:05:68:9f:f6:
                    71:d4:a3:ea:83:e6:66:92:71:4a:b1:4d:51:a4:13:
                    16:71:b7:29:f8:c4:3b:1d:72:4a:d9:25:60:ca:7a:
                    4d:fb:b2:b4:8e:69:22:23:21:14:ee:58:33:bc:92:
                    a9:36:23:d0:de:7c:d8:a7:76:27:ee:8c:58:c6:36:
                    d3:be:9f:70:7f:8c:ea:48:a4:91:ce:41:74:cf:39:
                    e4:c9:92:75:36:ea:b7:80:01:85:50:02:3f:27:ea:
                    d5:f9:97:ed:2b:36:ce:bc:64:5d:33:25:a8:0b:78:
                    5f:94:e9:18:fc:5a:71:41:e4:4d:4f:dd:8c:d6:47:
                    32:ac:25:d3:c1:38:2d:1c:e3:b7:e7:09:94:d9:75:
                    73:9f:3a:bb:84:39:88:3a:86:ec:fe:2d:eb:03:93:
                    ee:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:93:C7:55:CD:A9:B4:B2:05:1B:0F:8A:4F:D6:44:B8:36:C4:C6:A0
            X509v3 Authority Key Identifier:
                keyid:16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:18:5b:06:7a:47:ab:9e:04:c5:14:69:51:ca:88:2f:b7:1a:
         f9:fe:11:7e:26:b4:19:ee:d1:08:96:a6:17:b3:19:ff:c2:21:
         9b:43:bd:fd:0f:ad:1d:03:5d:32:48:b3:01:4a:6e:e0:56:d7:
         44:8b:a8:ae:6f:2b:a5:f9:7b:f7:11:98:01:eb:75:45:79:09:
         1e:f6:c8:70:e6:4d:e6:84:c9:d7:98:82:d8:91:a7:5f:f8:23:
         4e:aa:5c:34:1c:1e:ea:67:0d:1a:d2:3e:a2:76:21:35:e4:b8:
         eb:f5:1d:2c:ca:38:e2:09:18:45:e5:bb:2b:81:91:9f:5d:c0:
         71:7a:77:9f:eb:8f:69:64:04:05:ef:30:a2:1c:02:5a:3d:87:
         83:50:db:1a:87:00:a6:e8:0d:eb:33:67:70:a1:07:4a:6d:c3:
         c9:ac:c7:66:ff:f2:f5:04:8d:3e:20:9e:36:95:7c:dd:d3:9c:
         0d:90:ea:00:3e:e9:c8:d9:99:cb:4e:da:ae:21:9f:68:4c:6f:
         2c:32:c8:0c:6c:bd:0a:79:eb:95:a3:3b:0c:cd:11:ed:9f:72:
         ce:b2:91:74:1d:b0:a0:1c:e2:6a:67:15:de:a5:f1:05:07:ef:
         d3:3f:74:a0:51:39:fb:59:d0:66:e9:67:77:f0:6c:1f:56:5d:
         dc:96:4f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----