Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
File:                     AOezY1s9V4VgNwpYMDz81c2SkQU.mft (raw, json)
Hash identifier:          vJgvoyTiDoUyf5Cmzgsgjb0h4vcbbGTFIqmPur7QNl0=
Subject key identifier:   97:76:FC:17:65:45:7B:A3:52:A2:8B:EF:D1:ED:3F:E3:41:D9:A7:16
Authority key identifier: 00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05
Certificate issuer:       /CN=00e7b3635b3d578560370a58303cfcd5cd929105
Certificate serial:       01965537D56AF0EFD815704835F27AFB2F53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
Manifest number:          0C10
Signing time:             Sun 20 Apr 2025 22:00:44 +0000
Manifest this update:     Sun 20 Apr 2025 22:00:44 +0000
Manifest next update:     Mon 21 Apr 2025 22:00:44 +0000
Files and hashes:         1: AOezY1s9V4VgNwpYMDz81c2SkQU.crl (hash: FJs/W3kOtCvfAgg6e1FHiJseOdU+Q0eAER9CWOlojro=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 21 Apr 2025 22:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:55:37:d5:6a:f0:ef:d8:15:70:48:35:f2:7a:fb:2f:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00e7b3635b3d578560370a58303cfcd5cd929105
        Validity
            Not Before: Apr 20 22:00:44 2025 GMT
            Not After : Apr 21 22:00:44 2025 GMT
        Subject: CN=9776fc1765457ba352a28befd1ed3fe341d9a716
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:90:7f:cc:6b:b1:f8:f4:af:5a:3c:a2:9a:6a:
                    20:79:5f:4d:cb:fd:6e:91:b5:f2:02:6c:7d:94:2b:
                    d1:35:83:ae:20:b5:a9:37:9e:1e:19:ac:14:8a:a1:
                    dc:2d:4d:f3:8d:5c:a7:1c:c2:11:d8:db:24:3c:cb:
                    a0:5f:31:03:55:7f:3c:d9:dc:a9:3d:4f:d9:5d:07:
                    42:fa:6a:f3:62:a7:eb:58:52:b8:90:dd:43:0b:f2:
                    d8:79:5a:e4:ad:f4:1a:8b:5e:b4:a8:74:5d:8c:53:
                    1b:88:37:49:19:4f:e1:db:a5:84:0a:b4:21:fd:e7:
                    c1:de:f1:36:0e:1e:7f:43:1e:50:bc:d3:32:fa:90:
                    1e:82:d8:3c:b5:59:c8:f5:ac:6d:53:16:97:2d:83:
                    2b:a5:c1:5f:c6:c4:3b:06:42:d0:1e:b7:56:ee:ec:
                    0e:6c:22:59:85:1d:57:f8:ab:3d:e3:6d:ef:7a:c1:
                    b5:1c:87:35:72:11:99:2c:1f:ee:c3:56:63:17:43:
                    bc:6f:bf:6c:54:b9:53:74:87:e4:bb:fd:18:f9:54:
                    65:e6:38:30:44:a0:38:4b:14:2e:83:d0:0d:a2:4b:
                    c8:e1:ba:d1:62:06:b6:18:76:8d:0f:14:d2:0a:d8:
                    09:d9:a1:56:e7:fe:23:9e:38:41:ef:38:ba:37:72:
                    14:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:76:FC:17:65:45:7B:A3:52:A2:8B:EF:D1:ED:3F:E3:41:D9:A7:16
            X509v3 Authority Key Identifier:
                keyid:00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:6b:2d:02:09:2b:e3:e2:be:40:33:33:b7:e6:51:15:30:c9:
         12:73:b6:b4:bd:f4:45:61:33:e3:df:be:25:e2:80:42:fd:56:
         3c:1f:dd:61:9a:f4:1b:c8:6b:5d:9b:48:27:44:55:b3:18:c1:
         3d:f2:55:79:44:98:a1:60:ff:fd:f9:44:ef:d5:be:e0:f3:c0:
         99:8c:92:ec:21:49:64:2b:c3:54:75:6f:23:74:ae:b9:71:22:
         21:8e:e6:c7:d1:3a:83:de:2d:de:d1:9c:f9:f5:51:e1:e1:88:
         4b:e6:42:f8:3e:69:8a:24:c9:8e:6d:86:cd:12:2f:99:75:5b:
         0b:e3:44:9d:ec:6f:1b:f3:92:19:80:b5:98:ee:90:29:15:eb:
         6c:1e:4f:0d:78:cf:e6:c0:52:8b:27:1a:68:25:ab:86:da:f6:
         80:57:14:cd:55:45:cd:bf:4b:b6:71:81:4b:06:73:5f:6f:28:
         94:8f:24:b9:5a:6c:9e:f9:52:5c:86:2e:d4:4b:5c:22:01:4c:
         02:a2:1f:1a:6e:38:6c:42:9b:39:dc:d7:4d:19:1e:01:da:c3:
         44:fb:80:ef:a1:87:5a:35:23:d4:e6:96:ac:b7:2b:dc:0d:7f:
         b0:fe:93:fe:91:ac:da:de:e7:43:6f:4a:66:26:25:7d:46:ea:
         f8:83:a9:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----