Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
File:                     3EviU3WUInayZECX3D1ah1r7ivE.mft (raw, json)
Hash identifier:          9cIYL9drIG2bkwid0K6j85MP7Jr+E/O0et5fMDXYgMs=
Subject key identifier:   94:49:5E:12:D3:A7:E6:B6:F9:3C:80:92:B2:6B:80:B2:A7:82:C0:A9
Authority key identifier: DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1
Certificate issuer:       /CN=dc4be25375942276b2644097dc3d5a875afb8af1
Certificate serial:       01964F6C7366C22319A7F2932D8CFDAF5E6D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
Manifest number:          07AF
Signing time:             Sat 19 Apr 2025 19:00:29 +0000
Manifest this update:     Sat 19 Apr 2025 19:00:29 +0000
Manifest next update:     Sun 20 Apr 2025 19:00:29 +0000
Files and hashes:         1: 3EviU3WUInayZECX3D1ah1r7ivE.crl (hash: Zziw7g8ronizryfIGl6aXQn9gQqh3YKBnHqd4ikZOh0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 20 Apr 2025 19:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:4f:6c:73:66:c2:23:19:a7:f2:93:2d:8c:fd:af:5e:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc4be25375942276b2644097dc3d5a875afb8af1
        Validity
            Not Before: Apr 19 19:00:29 2025 GMT
            Not After : Apr 20 19:00:29 2025 GMT
        Subject: CN=94495e12d3a7e6b6f93c8092b26b80b2a782c0a9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:75:6c:96:de:54:68:a8:d3:ae:25:9c:21:8c:
                    dd:1d:1b:49:f9:54:0d:0e:50:8e:f9:db:b7:ad:e7:
                    a2:ab:aa:24:84:b2:ad:0d:94:cf:83:4d:b3:ed:2d:
                    50:5f:a5:e6:97:02:48:fd:c3:e6:78:bd:10:d4:df:
                    e9:53:56:f0:10:8b:d6:ba:1f:24:41:e5:3e:56:c9:
                    60:b9:29:72:f8:7d:2d:eb:c7:6b:51:a7:8f:6d:7f:
                    a8:ee:08:8b:10:6b:8b:fd:65:ce:42:08:4f:db:e5:
                    b9:fb:28:6e:20:05:ca:dc:bc:c3:a1:d1:0b:7e:3e:
                    b0:1c:3e:bc:c2:ce:6d:a9:27:1a:57:f4:0f:b2:dc:
                    e7:74:eb:1d:ca:e7:09:b2:ab:90:20:da:f5:b8:a7:
                    71:b1:9f:24:94:6c:66:0e:c8:fc:7c:65:6c:3b:9e:
                    78:14:fa:66:75:42:af:3e:2f:99:45:ba:3c:04:90:
                    3c:c0:8f:2f:a8:1a:4d:dc:ef:a9:a1:ed:65:fa:cb:
                    d1:6e:4f:22:ba:8e:df:c9:96:61:06:1f:19:15:5f:
                    3f:70:0b:04:fc:3b:c6:33:3b:20:de:ba:9e:f3:81:
                    db:2c:20:a4:9d:1a:0d:66:56:d3:f8:7b:3a:7e:c1:
                    c2:f1:92:67:6a:9e:1b:b4:9a:aa:06:49:ba:2e:2f:
                    0b:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:49:5E:12:D3:A7:E6:B6:F9:3C:80:92:B2:6B:80:B2:A7:82:C0:A9
            X509v3 Authority Key Identifier:
                keyid:DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:1a:3e:96:73:bf:3c:f3:27:f4:f5:76:62:c5:18:12:9a:62:
         cc:ee:b5:60:f6:ce:43:f1:70:b9:09:c0:15:71:3d:4c:f1:69:
         b7:1c:92:24:a8:d1:9f:9c:cf:8f:5c:fb:51:45:88:03:7c:59:
         54:34:fd:72:25:2a:40:bc:7f:14:ac:37:50:83:86:cd:18:ba:
         a3:50:fb:87:70:0c:37:4e:6a:00:0d:38:aa:05:1b:d4:93:46:
         ae:cd:bd:18:d5:2d:a9:03:5b:c5:7f:a0:b3:bb:a5:6a:2c:fd:
         25:29:fb:a9:e5:89:e2:17:5e:8c:fc:4e:8e:4f:e8:4b:e3:60:
         50:ee:ec:fb:f4:20:eb:46:df:ec:f1:72:30:3b:a7:c8:78:37:
         6c:d8:00:8b:be:7f:ca:16:91:9c:42:2d:d3:fa:a6:f9:4f:d9:
         e9:31:92:d5:a0:41:41:db:8f:d4:d3:d9:12:3b:73:2c:40:c0:
         0b:ee:48:42:0f:02:f0:f1:3a:2b:d6:76:ff:26:00:e2:2d:9b:
         3d:f6:63:39:95:f3:fa:e3:d8:71:86:52:80:4f:e2:c3:0b:bb:
         dd:f1:64:77:f8:f6:0e:3d:05:a9:98:df:4f:7f:f0:c3:69:04:
         4b:46:f8:76:f7:77:29:2d:93:47:a0:34:dc:80:e4:47:9d:fb:
         f9:15:7c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----