Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
File:                     uvzQImt58j3kemr95RRLGynii1w.mft (raw, json)
Hash identifier:          jsXGyFJcKU0GyYGpLFY+lQIqYPLcoJZ/UW8OglSUiyc=
Subject key identifier:   16:77:CB:D5:C0:F6:DE:44:6F:A6:65:A1:77:8B:7F:3D:83:45:AB:9D
Authority key identifier: BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C
Certificate issuer:       /CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
Certificate serial:       019653EE3F08FF1AA79F7C5EF758EB829049
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
Manifest number:          06D4
Signing time:             Sun 20 Apr 2025 16:00:44 +0000
Manifest this update:     Sun 20 Apr 2025 16:00:44 +0000
Manifest next update:     Mon 21 Apr 2025 16:00:44 +0000
Files and hashes:         1: uvzQImt58j3kemr95RRLGynii1w.crl (hash: Qt2uba/5pH6i05TU4LUWQ1zUwcYg7FYkAkAHtph00JI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 21 Apr 2025 16:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:53:ee:3f:08:ff:1a:a7:9f:7c:5e:f7:58:eb:82:90:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
        Validity
            Not Before: Apr 20 16:00:44 2025 GMT
            Not After : Apr 21 16:00:44 2025 GMT
        Subject: CN=1677cbd5c0f6de446fa665a1778b7f3d8345ab9d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:d3:0c:ad:b1:af:e4:bc:1e:50:89:ed:60:5e:
                    bc:48:5e:67:32:8c:4a:7c:c5:26:06:0c:00:9f:ce:
                    49:28:af:1a:01:32:f2:5c:5f:9d:e0:bb:07:46:81:
                    db:86:71:c2:0e:8b:05:57:a5:86:c6:a5:b8:d6:f1:
                    40:e0:4d:df:7d:8f:36:c1:20:14:50:b0:39:90:51:
                    d7:8e:25:e9:ed:04:3d:97:4c:1c:a2:4c:b0:e0:28:
                    53:88:08:6a:f4:e0:8c:05:87:66:c6:7e:53:2c:17:
                    6b:2a:ac:43:01:ba:46:47:b0:6c:c7:56:90:31:7a:
                    8a:67:7b:0e:71:d6:11:e9:aa:2a:cf:cc:50:90:63:
                    d4:01:8d:58:97:78:f7:5b:35:24:69:52:d0:b8:66:
                    2b:e9:ad:57:a1:1c:96:fd:1b:f6:42:a2:1f:b2:65:
                    5d:35:1e:dd:6b:ae:78:86:24:da:d6:73:56:ff:f4:
                    00:6d:52:02:97:41:b2:98:bc:13:7c:ab:fc:9e:c8:
                    5a:dc:72:ac:03:88:5b:29:ce:b1:0e:e5:eb:49:26:
                    3a:d0:c0:f9:af:55:b2:7f:63:ed:dc:e1:95:04:40:
                    fd:45:4e:be:ff:f0:7d:64:1b:a6:3c:b2:69:40:eb:
                    7d:ed:b7:73:91:64:04:37:00:8e:62:00:a6:9f:b0:
                    cb:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:77:CB:D5:C0:F6:DE:44:6F:A6:65:A1:77:8B:7F:3D:83:45:AB:9D
            X509v3 Authority Key Identifier:
                keyid:BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:1a:ee:4b:86:bf:fd:cc:7f:95:f1:4a:f6:8e:e0:0c:d4:6d:
         18:34:5c:3e:b8:c0:3e:c4:12:66:54:6e:73:05:03:42:71:4c:
         ac:85:94:1a:99:d9:4d:ed:9d:5f:83:0a:1a:d4:92:24:96:6c:
         81:8b:9c:e7:0f:17:95:53:be:54:f3:73:95:f4:c3:c2:fc:2a:
         71:50:07:87:d2:7a:3d:31:25:0f:2b:0c:87:ed:a6:34:33:a6:
         87:a5:c4:ba:ec:bd:74:2f:a4:43:f5:1e:41:5c:ff:c0:26:f2:
         37:3e:8a:f5:34:a2:af:2d:98:d7:4d:7d:99:c2:bb:27:5e:9a:
         f8:b0:68:b4:6f:85:96:99:46:c1:2f:bf:7f:b5:6b:81:13:6b:
         0e:7a:65:b4:96:84:6a:85:99:25:e3:22:27:89:8d:0f:d6:c6:
         29:d1:cb:09:80:0c:cc:b7:05:98:45:86:3b:a3:86:c9:9b:54:
         73:5c:c3:ed:e4:73:35:04:70:29:58:a3:2b:40:74:19:68:fe:
         6c:06:cd:ed:96:1d:04:e6:0c:6d:c1:1a:cf:94:42:0a:75:02:
         ea:96:bf:42:8c:3a:d0:1d:80:2e:6c:8c:5e:71:b3:c2:6c:6d:
         ed:b5:65:9c:1f:f5:c2:4e:cb:32:c2:bb:4f:a8:ee:35:9d:6c:
         e8:d4:a3:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----