Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
File:                     Da7a5Z2cmvUe9UivsMlkOM73IRw.mft (raw, json)
Hash identifier:          YIddL/vGBNebcWO3pbc1oGjxkMinXebts51qLtDnCzk=
Subject key identifier:   92:4F:F6:4A:2C:2E:48:3A:90:32:0C:E0:6D:40:A0:6B:22:C3:50:F0
Authority key identifier: 0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C
Certificate issuer:       /CN=0daedae59d9c9af51ef548afb0c96438cef7211c
Certificate serial:       01958EF333C67720E46735920CA9009C3F1A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
Manifest number:          1494
Signing time:             Thu 13 Mar 2025 10:00:57 +0000
Manifest this update:     Thu 13 Mar 2025 10:00:57 +0000
Manifest next update:     Fri 14 Mar 2025 10:00:57 +0000
Files and hashes:         1: Da7a5Z2cmvUe9UivsMlkOM73IRw.crl (hash: 1cbBnwZPqFUbL49rRgSjFFGkz4+kZdqK6NQ+zMwFji0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 14 Mar 2025 09:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8e:f3:33:c6:77:20:e4:67:35:92:0c:a9:00:9c:3f:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0daedae59d9c9af51ef548afb0c96438cef7211c
        Validity
            Not Before: Mar 13 10:00:57 2025 GMT
            Not After : Mar 14 10:00:57 2025 GMT
        Subject: CN=924ff64a2c2e483a90320ce06d40a06b22c350f0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:0f:ca:2e:58:99:2c:c3:66:25:00:b5:e9:39:
                    3e:17:a6:ac:dd:61:d2:6f:58:c6:86:13:d7:1f:62:
                    d8:24:e4:c4:ec:8a:1f:5b:c7:21:fa:0c:89:f7:f8:
                    14:91:f9:a1:81:af:27:6e:62:1e:77:bc:42:ab:52:
                    bd:46:80:0d:eb:a3:04:cd:dd:36:88:ac:64:a5:ce:
                    b5:8f:77:5e:f0:16:e9:9a:c0:e2:fb:d5:23:a6:a6:
                    6b:11:26:84:ee:6c:cb:fc:f8:12:27:13:60:5f:f9:
                    3b:0a:23:b2:26:ec:21:7d:4a:44:ee:56:86:f4:eb:
                    6a:24:1e:e4:e7:f9:44:6f:e6:41:bb:91:eb:5d:31:
                    71:63:fa:ce:f8:3a:65:49:4e:a0:b6:a0:7d:4a:d7:
                    84:24:59:1f:f4:ae:60:b4:79:fd:b7:a0:23:d6:38:
                    db:2e:f9:df:cf:ea:59:50:a6:af:8b:70:9a:7b:58:
                    9b:93:11:8e:7b:4f:ea:14:da:47:6f:d3:39:7c:7c:
                    53:84:06:66:57:4d:63:7e:72:82:04:c8:bb:87:05:
                    c4:5a:6b:d7:5e:ce:d3:4e:17:f3:ba:18:bd:34:af:
                    79:51:6b:cc:86:f7:2f:dc:89:f8:3a:9c:f4:56:cd:
                    a9:5f:dd:94:a1:ce:76:40:87:b0:1e:99:2b:12:4e:
                    92:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:4F:F6:4A:2C:2E:48:3A:90:32:0C:E0:6D:40:A0:6B:22:C3:50:F0
            X509v3 Authority Key Identifier:
                keyid:0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:a9:90:a8:7c:e0:80:a9:e0:b7:03:97:a7:77:5c:03:97:32:
         d7:04:83:3c:5f:7e:08:43:64:9f:66:25:d3:74:ff:82:f0:5b:
         57:97:78:83:de:de:64:61:f2:f8:77:82:a5:f1:2b:d7:b4:90:
         81:9f:34:9a:e5:f4:86:aa:8e:4e:8b:22:2d:bf:c2:2e:f3:ee:
         40:d1:c1:58:a9:38:9b:67:43:0e:db:bc:3d:e8:37:33:c7:90:
         37:ac:81:72:b9:80:f6:67:56:2d:b1:2a:17:bd:64:3a:c0:5c:
         b8:e3:2b:04:6f:fb:9f:a4:ee:d3:04:f1:30:dd:6a:c2:ce:8f:
         31:ef:52:60:f0:ca:dd:13:63:49:69:75:f4:67:2f:7b:00:d5:
         83:8b:64:78:c8:e1:49:2f:62:4f:27:95:8d:34:30:1d:e7:03:
         c0:8f:24:96:b9:4f:ae:82:b3:55:b0:9d:45:8a:de:7f:12:66:
         57:fb:a6:3f:a9:ad:cd:97:e0:8b:ae:21:99:c9:96:c1:51:9b:
         ea:e5:41:a0:4b:17:ca:ae:eb:8b:6b:da:3b:77:e5:34:dc:93:
         c3:ca:d8:d9:cc:47:d0:a5:36:2d:0e:e2:9b:0b:a4:0a:ee:cd:
         0d:8e:7c:3a:b6:2b:80:cc:35:02:0f:67:b3:4c:ae:f7:4d:5a:
         43:12:85:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----