Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File:                     sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier:          1uALBgF/udY2eoKALsJdYsb+tsMOcTOI8lcq9xII2uQ=
Subject key identifier:   35:D3:51:1C:26:26:06:38:26:9B:14:2F:F1:DC:13:3B:4E:B3:06:0F
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer:       /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial:       019641E8EA50DD85E2AA5A9E636A606D596D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number:          14EF
Signing time:             Thu 17 Apr 2025 04:01:45 +0000
Manifest this update:     Thu 17 Apr 2025 04:01:45 +0000
Manifest next update:     Fri 18 Apr 2025 04:01:45 +0000
Files and hashes:         1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: nF5SUXA3jAgc/neKDfW4fjV7vI/3twd5UTsFzgAcVT8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 17 Apr 2025 22:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:41:e8:ea:50:dd:85:e2:aa:5a:9e:63:6a:60:6d:59:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
        Validity
            Not Before: Apr 17 04:01:45 2025 GMT
            Not After : Apr 18 04:01:45 2025 GMT
        Subject: CN=35d3511c26260638269b142ff1dc133b4eb3060f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:11:bc:86:71:b4:af:c7:a7:64:1d:65:43:f7:
                    80:17:99:05:18:a2:10:fd:43:39:01:49:ef:f1:6c:
                    92:c3:7b:85:db:3a:1d:24:3c:1c:1f:3b:e2:44:f6:
                    83:08:c9:e1:d7:d4:24:7e:d9:c9:55:b3:04:a4:a2:
                    83:7e:f0:71:a4:17:ab:b3:55:51:70:4b:59:10:30:
                    01:6b:5d:95:ec:0c:f2:26:9b:6d:a0:67:1e:f2:5a:
                    69:e9:ea:e9:78:ba:43:6f:82:f1:93:64:14:e0:57:
                    21:7a:31:fb:2a:dc:9a:9e:19:34:34:71:0f:58:68:
                    40:9a:0b:f0:ed:51:98:3f:cf:8a:b0:1e:ad:0f:f6:
                    10:01:24:d6:56:8d:9c:3a:f4:56:1b:bf:1e:1f:1a:
                    c9:95:f6:a0:e9:17:a0:f1:a0:a7:83:0c:48:1a:2e:
                    21:5c:84:bb:1f:d5:0e:de:1b:c8:f6:75:44:e2:c4:
                    48:f5:9a:02:f5:6d:bb:ab:75:6a:be:ae:84:11:73:
                    8d:6d:e0:7a:68:f7:63:60:81:a6:f7:5a:ff:48:d3:
                    71:f4:ee:7f:c3:88:43:dd:11:df:82:c1:a0:0d:d8:
                    fb:97:85:a6:94:13:e8:4f:bf:1a:07:c0:86:f0:32:
                    23:e2:59:58:46:ed:d5:f9:f7:e7:d5:cf:05:5c:f4:
                    05:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:D3:51:1C:26:26:06:38:26:9B:14:2F:F1:DC:13:3B:4E:B3:06:0F
            X509v3 Authority Key Identifier:
                keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:4e:59:5d:03:69:ac:6e:70:b7:59:4b:0f:9a:fb:74:aa:d4:
         04:91:b1:30:94:17:d8:9a:6e:f2:bd:c4:d6:6e:8b:6f:fe:a9:
         3d:3a:aa:aa:20:b4:95:2d:d4:29:d4:b2:66:73:ac:95:1c:35:
         1b:e7:73:d3:ba:3d:82:a1:8d:90:90:7f:ee:35:fb:36:2b:68:
         9c:f3:6d:6a:5e:13:8c:fe:26:f6:da:18:e5:ab:99:cb:44:9d:
         9d:03:a2:84:41:1c:1f:5f:1e:2c:c1:9c:8b:61:1b:d4:97:cd:
         ae:3b:c2:03:a0:c9:2d:e2:33:02:70:06:49:08:3e:9f:0b:f4:
         5c:cf:1e:25:eb:7d:3a:52:f8:7f:92:5f:8e:94:21:63:4f:19:
         6f:5a:04:13:78:7a:51:47:17:12:94:a4:f5:1f:32:5e:26:eb:
         df:3a:61:c6:2b:ab:95:17:64:06:90:77:c0:92:91:47:fc:03:
         9b:f1:68:b8:4f:15:fa:a2:76:02:1a:5f:ef:7f:68:18:4b:06:
         59:5f:3d:c9:72:df:6c:f9:c7:05:ba:8b:da:e1:88:18:22:ad:
         01:8a:d9:34:b7:a6:7e:69:0c:8f:c7:52:a0:7c:e2:68:2b:da:
         2e:f8:82:ff:60:87:3c:d8:c3:3a:9e:5c:12:a3:ff:aa:47:d7:
         ee:b2:53:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----