Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft
File:                     iFeQ87X0pUUjTzIwv4lmOFbge8c.mft (raw, json)
Hash identifier:          EN6HUuqGJKuVJJdFkh7eKYgcbRgm9Zjtg03AyuAlFLg=
Subject key identifier:   04:19:FC:51:DA:53:7A:F2:47:03:B4:1A:F7:AC:16:AD:B9:CC:1D:E8
Authority key identifier: 88:57:90:F3:B5:F4:A5:45:23:4F:32:30:BF:89:66:38:56:E0:7B:C7
Certificate issuer:       /CN=885790f3b5f4a545234f3230bf89663856e07bc7
Certificate serial:       019643D7031F2A57383ED826098E5D7EF399
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iFeQ87X0pUUjTzIwv4lmOFbge8c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft
Manifest number:          14F1
Signing time:             Thu 17 Apr 2025 13:01:26 +0000
Manifest this update:     Thu 17 Apr 2025 13:01:26 +0000
Manifest next update:     Fri 18 Apr 2025 13:01:26 +0000
Files and hashes:         1: iFeQ87X0pUUjTzIwv4lmOFbge8c.crl (hash: HdjpDc0uLhjjHfmw3Jh6HkkU+aNN3ytSPrBR0zAHMic=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iFeQ87X0pUUjTzIwv4lmOFbge8c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 13:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:43:d7:03:1f:2a:57:38:3e:d8:26:09:8e:5d:7e:f3:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=885790f3b5f4a545234f3230bf89663856e07bc7
        Validity
            Not Before: Apr 17 13:01:26 2025 GMT
            Not After : Apr 18 13:01:26 2025 GMT
        Subject: CN=0419fc51da537af24703b41af7ac16adb9cc1de8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:da:67:27:b7:36:c5:f6:73:7e:3f:50:75:a0:
                    8f:b8:ad:f7:44:5d:67:39:48:b8:d5:7b:89:c3:ea:
                    3e:95:c2:44:63:cf:91:74:b0:ce:74:48:fe:0d:a1:
                    a0:09:34:a6:e5:e2:c4:35:a8:f2:5f:b7:c6:e6:2e:
                    7b:46:6f:9a:15:c8:26:b1:26:97:fd:44:db:f4:b3:
                    0b:b6:ee:71:dc:20:b3:94:07:78:1e:4b:b9:47:9a:
                    97:ff:70:82:40:d0:50:d7:00:9e:90:ad:bd:40:1c:
                    72:fe:d0:c0:6c:67:5a:c4:4d:7e:3f:f5:e0:61:c8:
                    36:bf:8d:4d:89:d1:75:95:61:23:63:74:7b:a9:56:
                    db:66:f4:d0:4f:0a:0e:76:05:af:d1:5b:71:fb:6b:
                    6c:ca:62:44:7b:b8:37:e3:c1:a9:7e:2f:f4:5f:d8:
                    54:32:d0:06:44:7e:7a:5a:7a:db:9f:58:d8:b9:c9:
                    ee:65:76:ae:59:f5:54:30:62:c1:e1:fd:bd:a7:71:
                    d0:ba:c9:0d:06:c0:92:63:9f:6b:8f:f2:84:fd:6b:
                    82:6b:1e:18:85:bf:28:ec:48:29:c8:d9:61:1f:4e:
                    93:2b:ef:85:8c:90:73:d1:2c:81:ba:05:f6:4e:e9:
                    6b:29:20:d7:34:2b:58:6f:f6:60:f4:76:08:f0:15:
                    a7:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:19:FC:51:DA:53:7A:F2:47:03:B4:1A:F7:AC:16:AD:B9:CC:1D:E8
            X509v3 Authority Key Identifier:
                keyid:88:57:90:F3:B5:F4:A5:45:23:4F:32:30:BF:89:66:38:56:E0:7B:C7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFeQ87X0pUUjTzIwv4lmOFbge8c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:72:db:7c:66:b1:a4:03:f7:c1:5b:b6:b6:81:1a:7e:f1:20:
         ce:7e:c1:9f:db:27:f1:ec:f1:86:c9:e9:f3:8f:c5:9f:21:63:
         c7:74:65:a5:8a:99:66:8a:0f:2b:65:fd:a2:9f:ed:c4:df:d6:
         9d:be:47:b5:7e:dd:36:8e:a7:48:50:b4:43:20:8e:b6:8f:48:
         ef:23:a2:f6:87:ce:7c:ed:7b:69:05:41:85:78:3d:99:c4:93:
         da:4f:da:8f:6d:70:9d:e0:7c:20:9a:2e:c8:08:1c:b8:83:99:
         8f:fe:6e:7b:35:51:37:b7:ee:a2:20:57:88:2b:3a:fb:82:05:
         72:cb:84:32:2d:a5:6f:f4:0e:c1:5e:12:2e:5d:f0:db:b2:e2:
         5e:2a:d4:04:ec:00:fb:dc:0a:f1:7d:b2:23:ea:4a:c3:46:8a:
         8e:cd:2b:e9:a1:00:1f:65:f0:a8:68:d2:4e:bb:9d:1d:49:a4:
         ac:22:f9:ea:62:be:9f:be:1f:bc:e8:24:89:74:34:0e:83:8e:
         6b:2b:02:ce:2d:77:21:dd:dd:7c:02:20:dd:8c:1b:56:f1:48:
         f6:99:c0:39:74:e9:1b:05:49:b1:85:6d:26:e7:c8:fe:93:8a:
         e7:69:d2:cf:22:f8:30:79:c6:d2:9d:7c:65:7a:f0:90:ff:5e:
         97:32:46:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----