Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
File:                     a-5EwhI0JTYYsNeza5Djy1xA3tE.mft (raw, json)
Hash identifier:          XmrPAEMh57tCI6nE43Jtt5yjIG9jJ+8/n6wPosNnqLc=
Subject key identifier:   57:42:F2:59:E3:8C:14:F6:9C:1F:7A:22:63:17:E9:1B:59:23:57:B3
Authority key identifier: 6B:EE:44:C2:12:34:25:36:18:B0:D7:B3:6B:90:E3:CB:5C:40:DE:D1
Certificate issuer:       /CN=6bee44c21234253618b0d7b36b90e3cb5c40ded1
Certificate serial:       019510FDEB6E1446D76ED93AFE0F5D7694FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
Manifest number:          1453
Signing time:             Sun 16 Feb 2025 23:00:31 +0000
Manifest this update:     Sun 16 Feb 2025 23:00:31 +0000
Manifest next update:     Mon 17 Feb 2025 23:00:31 +0000
Files and hashes:         1: a-5EwhI0JTYYsNeza5Djy1xA3tE.crl (hash: KyfeXRBGgjgI4RtyXRsFfGqy+zNSiAjmHujSTOdZ2p8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:fd:eb:6e:14:46:d7:6e:d9:3a:fe:0f:5d:76:94:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6bee44c21234253618b0d7b36b90e3cb5c40ded1
        Validity
            Not Before: Feb 16 23:00:31 2025 GMT
            Not After : Feb 17 23:00:31 2025 GMT
        Subject: CN=5742f259e38c14f69c1f7a226317e91b592357b3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:51:b8:d4:49:5b:dd:fa:98:fd:be:9f:75:1c:
                    d0:eb:0d:78:bb:ff:a0:59:5b:ce:6f:1c:67:1c:82:
                    9c:92:a6:94:50:fb:4b:76:b1:50:29:27:8f:4d:c8:
                    ca:4e:3e:f4:47:c9:7e:b4:ce:0c:8b:9d:1b:29:40:
                    5e:53:5a:37:27:3e:b5:80:a8:b3:e2:73:19:fe:1b:
                    e5:f2:7d:23:a5:33:7a:e4:6d:4b:61:29:bc:60:d9:
                    0e:9a:6f:5b:c6:27:ef:26:bf:af:32:6f:25:79:7f:
                    ab:c0:a9:da:2f:4f:ac:22:03:53:86:73:14:38:75:
                    a2:6b:3f:67:ee:02:45:04:f9:4a:75:82:b1:79:86:
                    38:76:35:36:31:91:c0:22:4b:73:ce:2c:6e:96:aa:
                    15:3f:47:62:8b:1d:53:b8:90:7c:22:c0:41:c0:55:
                    0f:9b:3b:7a:ad:7b:55:e4:56:91:84:a1:a9:9c:3c:
                    7c:e0:81:d3:e3:72:ec:aa:ac:d4:dd:9d:10:e3:ba:
                    5f:7b:dd:9d:fc:69:c0:78:74:06:c9:4d:a0:d9:47:
                    15:a0:fa:92:c0:46:03:c0:05:85:b3:74:15:43:e1:
                    bd:e4:98:88:6b:a2:6e:37:5e:49:bf:cf:ad:2d:24:
                    ca:00:23:27:61:61:44:e8:a0:46:9b:ac:01:66:30:
                    89:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:42:F2:59:E3:8C:14:F6:9C:1F:7A:22:63:17:E9:1B:59:23:57:B3
            X509v3 Authority Key Identifier:
                keyid:6B:EE:44:C2:12:34:25:36:18:B0:D7:B3:6B:90:E3:CB:5C:40:DE:D1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:ce:97:0b:86:c6:fd:27:ab:c8:94:6e:af:36:77:27:04:88:
         88:73:97:0f:fa:4e:a0:95:ee:9f:81:ce:0e:55:0e:5f:43:c2:
         85:47:7b:47:98:bc:c3:54:81:70:c5:45:f9:1f:5b:33:7a:76:
         4e:7c:58:04:54:dc:79:02:37:8e:e0:33:27:af:6b:62:4e:c4:
         7b:72:7e:b9:af:5c:92:7d:d0:74:ac:45:53:aa:1f:24:52:ef:
         4d:09:a9:8f:77:e7:ce:5d:f0:96:0a:f2:02:b0:ef:1c:f8:cd:
         89:5c:81:d9:9c:a9:08:be:92:fb:e2:f8:a0:a9:dd:8f:e4:01:
         19:96:e7:31:f2:89:d3:39:48:7b:9f:a3:9f:f4:24:33:39:bb:
         75:ba:2c:52:3b:35:44:77:21:b6:82:4c:3d:18:20:1d:16:b0:
         95:1f:60:27:bc:c5:97:c0:72:93:83:27:f0:9a:37:01:53:9d:
         68:6b:d4:64:90:c3:91:82:9a:fd:36:d0:0e:97:89:c7:b8:29:
         8b:06:eb:3a:e2:e3:2e:7a:8f:14:3d:76:8a:98:16:93:85:21:
         91:df:88:d9:79:44:22:d6:8f:71:db:ea:74:30:cd:93:96:eb:
         8f:6d:9b:3d:65:26:05:aa:eb:fd:ac:e2:51:da:0c:51:3f:2f:
         a0:41:2c:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----