Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
File:                     ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft (raw, json)
Hash identifier:          GoNoHCJ7IHrQvaYSvGyz4NaIvcHcOtJNyO97kcCvSg8=
Subject key identifier:   87:2F:66:71:9E:8E:58:20:E4:96:D3:EC:03:02:AB:D4:69:21:93:84
Authority key identifier: A2:33:A6:AF:5F:68:84:32:87:9C:7E:0C:07:72:CD:DD:8F:17:6D:B5
Certificate issuer:       /CN=a233a6af5f688432879c7e0c0772cddd8f176db5
Certificate serial:       0194C4D100973984224C4BA53FD1FA0471B8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
Manifest number:          142C
Signing time:             Sun 02 Feb 2025 04:00:18 +0000
Manifest this update:     Sun 02 Feb 2025 04:00:18 +0000
Manifest next update:     Mon 03 Feb 2025 04:00:18 +0000
Files and hashes:         1: ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl (hash: Rwmy0r65PPalgxCoKTZGdf+suUx2EXvmgq6yUz027ls=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 03 Feb 2025 00:00:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:c4:d1:00:97:39:84:22:4c:4b:a5:3f:d1:fa:04:71:b8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a233a6af5f688432879c7e0c0772cddd8f176db5
        Validity
            Not Before: Feb  2 04:00:18 2025 GMT
            Not After : Feb  3 04:00:18 2025 GMT
        Subject: CN=872f66719e8e5820e496d3ec0302abd469219384
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:43:8a:ff:99:36:c6:e4:cf:3c:72:fa:06:9b:
                    da:31:55:85:5f:4b:d8:17:b5:19:63:12:67:33:de:
                    a1:9e:0e:2e:08:a6:ac:87:00:b8:c1:60:02:9d:cd:
                    03:75:b3:fc:43:61:2c:06:59:2d:1d:b6:74:a9:01:
                    15:ec:b7:da:30:dc:5d:c5:b7:ac:72:c9:4b:94:6c:
                    98:73:da:6b:f5:76:88:d8:74:1f:66:cb:2a:7e:31:
                    1b:39:14:60:fb:65:7b:6e:c1:9f:56:a8:24:f6:09:
                    65:13:d8:87:db:db:5b:99:21:c9:14:4f:b4:93:91:
                    7f:7a:0b:15:a9:cb:ab:2e:d0:f3:9a:cd:62:0c:23:
                    f4:2a:06:c8:a4:4d:cf:4f:09:93:73:2e:b1:b6:ff:
                    85:84:70:45:e8:4c:65:bd:01:e2:59:1d:2c:72:2e:
                    ce:cf:25:62:9f:b7:e6:f3:35:a7:47:65:e8:c7:c0:
                    64:90:b0:61:c4:32:31:be:58:b0:d2:da:09:51:15:
                    fd:ce:16:31:24:aa:0c:9d:f5:cc:fc:53:c4:87:36:
                    18:b7:25:d6:68:2a:d4:57:a6:69:90:38:7f:30:2c:
                    02:7b:cd:d8:77:14:65:95:ae:5f:2a:ca:9a:8f:8c:
                    81:5b:0e:bc:d0:1e:f5:83:51:f6:cb:34:ff:9e:ba:
                    12:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:2F:66:71:9E:8E:58:20:E4:96:D3:EC:03:02:AB:D4:69:21:93:84
            X509v3 Authority Key Identifier:
                keyid:A2:33:A6:AF:5F:68:84:32:87:9C:7E:0C:07:72:CD:DD:8F:17:6D:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:29:a1:bc:f5:9f:92:2e:7c:92:4b:db:e8:30:11:5b:e6:16:
         86:93:c0:35:9a:c5:d1:07:3e:55:9e:34:15:6d:72:43:75:3e:
         b4:74:fd:19:97:bc:75:59:a2:14:0b:ef:76:02:58:94:45:c0:
         3d:ee:e6:85:a2:b9:d7:81:37:9e:1b:1c:34:cf:e6:b2:23:bd:
         33:34:41:8b:08:0e:e0:cc:7f:61:90:21:11:4c:d6:39:b9:91:
         ff:38:54:67:46:f9:24:6b:e8:5a:ab:80:9b:b3:08:1f:c9:d3:
         35:fd:1e:fb:1c:04:be:2f:8b:5e:81:90:bd:ae:72:93:48:6a:
         09:b5:7c:43:48:0c:2b:15:b0:04:b7:50:c9:47:8b:4b:69:3f:
         b5:c2:a9:9b:08:96:41:d3:54:da:87:ea:1d:55:db:39:ab:ad:
         02:50:60:38:c2:47:0d:7a:d0:3c:5a:1f:9a:72:2c:82:85:b5:
         69:3f:2d:1a:3c:1d:8c:b5:8d:30:08:fc:6b:0b:7a:7b:03:12:
         39:ec:88:4c:98:8e:38:5c:53:33:2a:41:f8:b8:51:07:a3:2f:
         de:96:88:5e:11:bb:77:c8:4c:b5:ee:a4:d7:70:23:b9:50:9d:
         1e:1d:b5:a0:50:a0:9f:d0:0e:e5:39:93:46:cc:6b:d8:a5:a4:
         2f:12:12:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----