Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft
File:                     MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft (raw, json)
Hash identifier:          41SUPHVQIZyGomncG0SwOb1KUlp8cWobSw7CtgQgVXI=
Subject key identifier:   2F:8F:D7:CB:BD:47:ED:22:AF:3B:6A:8C:DD:E8:F3:6E:17:09:79:C3
Authority key identifier: 31:3D:A1:93:57:CB:C6:7D:A7:D5:5F:A3:5A:AB:36:95:BC:04:D0:4F
Certificate issuer:       /CN=313da19357cbc67da7d55fa35aab3695bc04d04f
Certificate serial:       0194C388AD0ABF7F4B7888F293686521AABB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MT2hk1fLxn2n1V-jWqs2lbwE0E8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft
Manifest number:          079D
Signing time:             Sat 01 Feb 2025 22:01:41 +0000
Manifest this update:     Sat 01 Feb 2025 22:01:41 +0000
Manifest next update:     Sun 02 Feb 2025 22:01:41 +0000
Files and hashes:         1: MT2hk1fLxn2n1V-jWqs2lbwE0E8.crl (hash: rlAaC3T23ttd4EoFYsBKnK3sUgxvDhaKIn5Gz0Z+9Nc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MT2hk1fLxn2n1V-jWqs2lbwE0E8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 02 Feb 2025 22:01:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:c3:88:ad:0a:bf:7f:4b:78:88:f2:93:68:65:21:aa:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=313da19357cbc67da7d55fa35aab3695bc04d04f
        Validity
            Not Before: Feb  1 22:01:41 2025 GMT
            Not After : Feb  2 22:01:41 2025 GMT
        Subject: CN=2f8fd7cbbd47ed22af3b6a8cdde8f36e170979c3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:7e:9a:b3:d0:3e:c1:79:b9:29:c2:51:0a:41:
                    45:e6:a3:19:34:24:23:1d:c9:53:be:48:ed:63:92:
                    29:03:1a:3f:0d:97:fa:f1:58:14:d8:e8:7b:5d:70:
                    7c:e0:5c:42:06:e1:bf:f3:63:8f:f9:08:05:88:cb:
                    1f:ff:5c:61:fe:84:62:eb:60:77:94:39:09:b8:f7:
                    ab:8d:e9:39:a5:93:de:dc:ab:d0:c5:87:b5:12:cd:
                    6b:c4:de:f0:b7:e7:ba:8e:05:b9:47:3b:60:2a:35:
                    36:c0:9c:fb:30:54:71:cf:7e:70:65:fc:d0:34:95:
                    57:4e:bc:ad:60:95:14:08:5f:83:4e:45:97:f7:25:
                    4a:f8:33:c3:3f:db:fd:36:63:c2:56:17:f8:fc:fc:
                    2a:ff:4f:f8:a5:7c:2c:ab:dc:cc:39:9d:39:e4:df:
                    f8:a7:b4:75:0d:7d:dd:21:4f:c6:66:6e:9a:93:37:
                    0a:99:0a:10:41:95:d3:43:24:9c:97:2c:59:53:4b:
                    e3:5d:1e:3b:92:e8:36:5f:01:53:90:1f:4f:8c:75:
                    2e:23:b7:b7:f9:27:61:ca:e7:ca:20:b5:fe:d7:bf:
                    5d:b9:8e:8b:b9:a3:1f:68:a9:6d:2b:48:ae:ac:6e:
                    01:db:f7:33:cb:5d:11:0f:74:1f:9b:db:97:58:86:
                    5f:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:8F:D7:CB:BD:47:ED:22:AF:3B:6A:8C:DD:E8:F3:6E:17:09:79:C3
            X509v3 Authority Key Identifier:
                keyid:31:3D:A1:93:57:CB:C6:7D:A7:D5:5F:A3:5A:AB:36:95:BC:04:D0:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MT2hk1fLxn2n1V-jWqs2lbwE0E8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:c7:a8:df:c7:7b:f2:9a:21:87:e8:b4:aa:b3:06:e6:3c:45:
         58:3c:81:ff:a7:a8:7e:d6:3e:30:fc:f8:69:5d:c1:0d:f6:c1:
         fb:93:65:15:53:36:24:f9:55:a5:cc:81:06:88:1e:87:04:5e:
         fc:39:5e:fe:bc:55:d8:51:71:cf:70:32:af:d3:4f:72:93:06:
         b9:d2:78:c0:4e:cd:58:0c:87:1a:b8:30:2e:5e:1c:e1:ff:ce:
         46:f5:e2:1f:0c:03:4f:64:e5:dc:82:99:f2:b5:0f:d2:b5:4a:
         09:73:14:81:51:4c:8d:80:6f:3f:07:0f:21:75:aa:0a:d5:4c:
         7e:30:0c:35:cb:b9:7c:52:37:ac:48:46:db:86:b6:f3:d2:cb:
         3c:ae:9e:0a:f9:1d:28:ca:71:79:6f:27:b3:c3:8a:43:71:80:
         b3:76:2e:b6:f9:3a:14:89:4a:73:dc:01:5a:7c:e9:2c:b5:86:
         1d:cd:ea:62:b3:b1:fb:d3:7b:22:5e:e0:e0:72:19:a3:fc:ae:
         05:d1:44:6b:9f:10:b7:8a:df:c0:bd:c0:14:08:c9:c3:5d:af:
         a9:eb:65:e6:e8:32:4e:64:48:ba:f8:5c:ae:ee:ce:f4:a3:de:
         fc:81:fd:85:23:ff:b1:85:26:c3:98:5b:ce:ed:b0:ad:2d:69:
         e3:37:a3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----