Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
File:                     pU3VdP7HLUOUwlU2uoUyydOPQLo.mft (raw, json)
Hash identifier:          ur1xwjmZcxrzaye36gig9tbr33dampCQHBUTQteytAc=
Subject key identifier:   CB:99:E1:BA:ED:96:CC:EF:5C:33:88:9D:01:00:7E:00:BD:DA:78:CB
Authority key identifier: A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA
Certificate issuer:       /CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
Certificate serial:       0195903D9D28FCF3AD0E85EC51422A9FAB16
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
Manifest number:          07AD
Signing time:             Thu 13 Mar 2025 16:01:51 +0000
Manifest this update:     Thu 13 Mar 2025 16:01:51 +0000
Manifest next update:     Fri 14 Mar 2025 16:01:51 +0000
Files and hashes:         1: pU3VdP7HLUOUwlU2uoUyydOPQLo.crl (hash: SVaoKmReGk4nKFDTbUxIOPB22ClEdm106mj7/nqBZlw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 14 Mar 2025 09:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:90:3d:9d:28:fc:f3:ad:0e:85:ec:51:42:2a:9f:ab:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
        Validity
            Not Before: Mar 13 16:01:51 2025 GMT
            Not After : Mar 14 16:01:51 2025 GMT
        Subject: CN=cb99e1baed96ccef5c33889d01007e00bdda78cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:49:80:74:1c:e7:0b:ef:12:6c:bc:27:2a:1b:
                    ce:72:1c:e4:c6:8d:2d:ff:6a:dc:48:a4:bb:54:8d:
                    e2:27:9e:cf:e6:cf:bf:1e:bd:75:24:9d:80:f1:9a:
                    d0:05:69:64:06:18:6a:4a:e5:fa:08:d7:be:b6:8a:
                    cc:4a:c8:34:03:db:57:af:10:9c:16:1c:74:54:f2:
                    ae:0f:83:d3:82:db:b1:78:33:ea:ed:01:64:34:31:
                    ed:3b:80:c7:e6:79:89:08:52:db:5d:cb:47:b2:e3:
                    e9:23:ca:f6:01:37:56:fb:cb:bf:8a:96:65:a0:c9:
                    73:6d:5f:84:37:10:a7:90:90:f0:43:27:a2:b1:94:
                    94:e2:7f:89:ae:b7:18:fc:d3:a3:98:78:e0:12:46:
                    c4:3c:7e:30:14:03:eb:7e:56:d1:1b:1e:51:28:10:
                    41:f4:bf:8c:b1:af:41:cb:00:a2:ef:b3:34:df:3c:
                    fd:14:42:94:4e:8a:c0:e6:0f:cd:a3:c1:23:2c:fd:
                    58:34:86:d6:9a:90:3c:c2:46:2d:6b:d7:24:65:07:
                    07:9d:b0:49:3c:bc:88:97:bb:31:b2:0c:f9:60:0c:
                    65:64:39:99:e5:16:61:36:94:ae:f3:16:69:1b:e8:
                    71:66:b3:99:11:47:f2:0c:e8:61:3e:4a:b2:89:e3:
                    a8:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:99:E1:BA:ED:96:CC:EF:5C:33:88:9D:01:00:7E:00:BD:DA:78:CB
            X509v3 Authority Key Identifier:
                keyid:A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:50:ed:67:fd:6f:49:51:e1:87:70:92:2e:53:32:d3:d9:35:
         ef:a7:10:8e:f3:30:63:64:b4:6c:f8:5b:37:68:a3:0b:fb:2e:
         ce:5d:8c:38:16:f4:eb:5c:fe:63:b2:dd:a5:51:32:cc:fb:4e:
         ab:58:6b:6f:3d:bc:91:0a:88:c3:84:4b:74:30:b8:38:1d:dd:
         8e:00:44:ef:ff:7c:a7:06:42:a5:46:bb:09:d5:ac:86:d6:6b:
         2a:42:06:bc:c9:bb:62:49:7c:59:b1:6d:f1:7f:ed:0c:22:dd:
         b5:2c:33:28:e1:1f:86:53:19:fd:89:28:a6:73:3b:61:04:40:
         ac:b1:d7:21:55:5d:ea:c5:20:e6:2c:3a:79:be:10:51:cb:1a:
         d6:87:0b:89:f2:39:45:2a:f8:ac:3a:79:20:bb:c4:95:58:91:
         da:d2:1b:a7:0d:33:15:18:b3:0c:7e:9e:f3:48:e2:98:53:52:
         25:8e:a9:f5:cc:40:34:7b:ec:e7:de:bb:1e:f6:08:44:9d:4a:
         1a:a5:37:59:af:6f:bb:ee:fc:c9:d4:a8:86:44:ab:01:f8:d2:
         06:3d:c5:68:3c:2e:e3:3c:bc:ad:a0:7e:a9:71:94:1f:40:55:
         b6:2b:65:2b:39:86:17:fa:b2:d3:a0:06:64:76:ae:f0:fe:66:
         7b:b8:b7:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----