Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d17665-68b4-496b-9d9a-c5e1722a0c68/1/j31CCyNDzZHsI_UImoNC6J1tkWU.mft
File:                     j31CCyNDzZHsI_UImoNC6J1tkWU.mft (raw, json)
Hash identifier:          m1ym4mz2dy0ecBiekoGoVXBjIleSISAyvUafX0bJiFQ=
Subject key identifier:   7E:40:BA:A9:73:1A:96:07:BE:4D:DD:DA:26:7E:73:52:CF:B7:AE:4F
Authority key identifier: 8F:7D:42:0B:23:43:CD:91:EC:23:F5:08:9A:83:42:E8:9D:6D:91:65
Certificate issuer:       /CN=8f7d420b2343cd91ec23f5089a8342e89d6d9165
Certificate serial:       019677FB40448ABF90887D9F4FC2A3DA98BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j31CCyNDzZHsI_UImoNC6J1tkWU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/d17665-68b4-496b-9d9a-c5e1722a0c68/1/j31CCyNDzZHsI_UImoNC6J1tkWU.mft
Manifest number:          0E76
Signing time:             Sun 27 Apr 2025 16:01:16 +0000
Manifest this update:     Sun 27 Apr 2025 16:01:16 +0000
Manifest next update:     Mon 28 Apr 2025 16:01:16 +0000
Files and hashes:         1: j31CCyNDzZHsI_UImoNC6J1tkWU.crl (hash: 1mc0FPXD7+kWXwGJHQxZ71CgKRuT1WOGPJruf7LuCFU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/d17665-68b4-496b-9d9a-c5e1722a0c68/1/j31CCyNDzZHsI_UImoNC6J1tkWU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/d17665-68b4-496b-9d9a-c5e1722a0c68/1/j31CCyNDzZHsI_UImoNC6J1tkWU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j31CCyNDzZHsI_UImoNC6J1tkWU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Apr 2025 16:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:77:fb:40:44:8a:bf:90:88:7d:9f:4f:c2:a3:da:98:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f7d420b2343cd91ec23f5089a8342e89d6d9165
        Validity
            Not Before: Apr 27 16:01:16 2025 GMT
            Not After : Apr 28 16:01:16 2025 GMT
        Subject: CN=7e40baa9731a9607be4dddda267e7352cfb7ae4f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:2a:dd:de:05:29:a4:b7:af:d3:d8:6c:71:46:
                    56:89:99:7e:10:66:1a:48:9a:d0:1b:99:aa:9d:97:
                    1c:32:a4:e9:e6:e4:5f:e7:17:13:b9:51:f9:15:67:
                    3e:d6:f8:a9:4d:e4:9d:63:01:9c:74:f8:28:f2:d8:
                    da:7a:a0:0f:91:bd:4f:cd:b0:c0:b7:8c:46:88:41:
                    2e:80:c1:bd:37:37:7b:47:bc:7a:52:69:92:9f:be:
                    c4:b0:e5:3a:c3:f7:81:8a:51:75:7c:7f:f7:f1:ef:
                    cb:87:72:7b:fc:5c:c6:37:51:9c:8f:b9:bb:13:cc:
                    74:86:82:62:72:e7:87:14:e0:54:ec:c9:e0:66:72:
                    47:4a:f7:75:62:ba:90:30:3d:f1:13:fe:43:6a:7e:
                    1d:4a:9b:cd:ea:55:9c:11:f0:49:f8:0f:57:83:84:
                    6e:88:13:20:3a:b9:a0:a3:62:e1:d1:22:5d:b0:eb:
                    3f:a1:33:39:70:17:70:ff:d6:2b:6d:96:26:2b:68:
                    01:d9:ed:b7:46:cf:fb:02:54:46:ad:b8:7a:fc:43:
                    fd:25:55:d7:20:b4:e0:1f:0b:b7:6b:3b:79:a7:64:
                    67:66:59:12:35:fc:c6:4a:88:31:c7:5b:57:b4:92:
                    41:5d:a4:51:39:c2:86:38:8d:d5:a8:93:7b:44:ba:
                    a0:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:40:BA:A9:73:1A:96:07:BE:4D:DD:DA:26:7E:73:52:CF:B7:AE:4F
            X509v3 Authority Key Identifier:
                keyid:8F:7D:42:0B:23:43:CD:91:EC:23:F5:08:9A:83:42:E8:9D:6D:91:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j31CCyNDzZHsI_UImoNC6J1tkWU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d17665-68b4-496b-9d9a-c5e1722a0c68/1/j31CCyNDzZHsI_UImoNC6J1tkWU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d17665-68b4-496b-9d9a-c5e1722a0c68/1/j31CCyNDzZHsI_UImoNC6J1tkWU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:f0:29:21:06:15:a5:96:bd:62:25:f2:02:4c:e4:0a:d7:65:
         d3:3e:fd:42:fe:96:8f:12:47:eb:88:6a:e2:94:87:31:ef:19:
         fa:c4:c6:cd:ac:14:58:2b:59:53:27:9f:95:ab:50:4e:8f:ce:
         c0:20:42:83:b8:74:64:3e:35:b7:ee:04:b4:10:40:11:28:d4:
         72:3e:d3:c1:6c:57:19:83:9a:4f:af:09:67:2d:f7:f8:82:65:
         51:ff:7b:b1:2e:5b:82:03:02:dc:9d:ac:c0:27:7c:e9:cd:09:
         42:1d:7f:a9:af:40:0a:e1:88:09:02:c3:71:6d:0b:87:42:6f:
         1d:16:3f:7a:8b:38:50:4b:64:37:6f:48:08:c9:ea:c4:fe:73:
         17:94:ad:93:f5:a9:5c:87:76:e2:7d:63:08:35:27:c9:91:bc:
         67:8a:92:72:57:4a:2b:94:e9:84:8f:e6:7a:52:26:ea:77:01:
         9a:bb:22:bd:26:0b:b6:64:17:24:7a:29:d9:1d:7c:b2:29:c3:
         ef:d7:13:a8:de:06:b5:e7:b6:e0:7c:e1:f4:6d:87:4c:94:76:
         12:18:71:11:ca:32:4f:7e:67:71:fe:e0:c0:95:45:24:81:41:
         91:17:f9:2e:d1:0d:15:45:6e:33:6f:36:b1:ed:d6:ae:d3:a9:
         36:53:4b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----