Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/60d338-4b36-4054-b4bc-6473b092aadd/1/RZzMG7ARYGhoBts1qTNRshs-YNw.mft
File:                     RZzMG7ARYGhoBts1qTNRshs-YNw.mft (raw, json)
Hash identifier:          0STIn0Zt3wo+FdZtnMEoC7dmAcHNZ9L5xYKh9Uea4fE=
Subject key identifier:   80:85:49:E8:6F:46:EC:83:FE:0B:A8:4E:BD:16:26:BA:09:43:40:10
Authority key identifier: 45:9C:CC:1B:B0:11:60:68:68:06:DB:35:A9:33:51:B2:1B:3E:60:DC
Certificate issuer:       /CN=459ccc1bb01160686806db35a93351b21b3e60dc
Certificate serial:       01968E82E12490E041C1F3EA39CB6E63474F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RZzMG7ARYGhoBts1qTNRshs-YNw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/24/60d338-4b36-4054-b4bc-6473b092aadd/1/RZzMG7ARYGhoBts1qTNRshs-YNw.mft
Manifest number:          1291
Signing time:             Fri 02 May 2025 01:01:04 +0000
Manifest this update:     Fri 02 May 2025 01:01:04 +0000
Manifest next update:     Sat 03 May 2025 01:01:04 +0000
Files and hashes:         1: RZzMG7ARYGhoBts1qTNRshs-YNw.crl (hash: L51sH2GBVnMP6+MCJKi0zSEo/PXY4i5AXZrDh5RJM3A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/24/60d338-4b36-4054-b4bc-6473b092aadd/1/RZzMG7ARYGhoBts1qTNRshs-YNw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/24/60d338-4b36-4054-b4bc-6473b092aadd/1/RZzMG7ARYGhoBts1qTNRshs-YNw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RZzMG7ARYGhoBts1qTNRshs-YNw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 02 May 2025 19:27:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:8e:82:e1:24:90:e0:41:c1:f3:ea:39:cb:6e:63:47:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=459ccc1bb01160686806db35a93351b21b3e60dc
        Validity
            Not Before: May  2 01:01:04 2025 GMT
            Not After : May  3 01:01:04 2025 GMT
        Subject: CN=808549e86f46ec83fe0ba84ebd1626ba09434010
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:dc:73:03:45:15:e0:8e:bd:de:ac:05:06:62:
                    a5:5c:47:d2:6e:d9:ba:be:4c:a0:fd:15:8e:8a:83:
                    49:71:04:d3:5a:2d:04:3e:4b:a5:0c:58:54:9a:7c:
                    68:8b:ae:88:e0:fd:3c:cb:c4:ef:66:64:3f:5f:9a:
                    33:aa:95:f4:eb:43:b1:ea:87:d2:e8:0f:b0:91:f7:
                    e0:cc:f2:8d:7c:b1:e3:1a:c1:1d:31:3b:12:86:6b:
                    39:9c:46:00:f0:f5:e5:69:c0:01:17:1f:33:e4:a9:
                    e0:03:95:0d:5d:3d:f4:48:ad:10:44:44:3a:16:1b:
                    8d:15:df:48:1d:73:c6:8e:64:f4:2e:48:f0:a2:0f:
                    63:ff:d3:25:fc:d2:e5:b1:d8:66:2c:45:36:e3:a9:
                    71:bf:27:48:e0:46:00:5a:01:59:35:24:28:9b:94:
                    e7:ba:d1:7b:fe:9b:fb:4c:96:46:64:db:5e:26:d2:
                    98:bf:38:d4:ec:f8:72:c8:3a:fb:d3:b7:a3:b3:ae:
                    66:d8:47:b4:fe:69:14:58:1b:ed:15:eb:e4:cc:1c:
                    a9:81:9a:21:bf:41:f9:cf:77:2f:94:08:bf:da:e1:
                    e9:51:58:91:28:52:60:d8:ab:21:63:a4:92:95:0e:
                    3f:59:91:55:c5:7d:d6:b5:b4:eb:2f:0b:96:e9:a5:
                    d7:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:85:49:E8:6F:46:EC:83:FE:0B:A8:4E:BD:16:26:BA:09:43:40:10
            X509v3 Authority Key Identifier:
                keyid:45:9C:CC:1B:B0:11:60:68:68:06:DB:35:A9:33:51:B2:1B:3E:60:DC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZzMG7ARYGhoBts1qTNRshs-YNw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/60d338-4b36-4054-b4bc-6473b092aadd/1/RZzMG7ARYGhoBts1qTNRshs-YNw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/24/60d338-4b36-4054-b4bc-6473b092aadd/1/RZzMG7ARYGhoBts1qTNRshs-YNw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:77:4b:75:cc:b0:4c:4f:53:9b:75:e4:67:91:bd:17:4f:db:
         a7:6f:76:d4:db:03:05:2c:9f:5e:6d:2e:89:c2:25:88:86:d2:
         7f:f1:3d:e5:8e:ff:cd:d2:ef:be:ae:2b:d5:47:7e:f4:e0:40:
         8f:b2:db:4e:50:79:94:eb:4f:f5:4b:90:22:36:81:17:81:ac:
         22:43:a9:74:d7:fc:2d:33:63:69:a1:bc:51:9c:d8:bd:f9:1c:
         93:91:0c:b2:68:c7:fa:03:f5:68:df:f7:6f:fa:ff:86:38:5d:
         9c:c3:4a:a7:3d:c5:8a:15:54:07:32:46:e4:2a:f2:10:df:c0:
         5b:11:b2:23:1c:40:e5:b0:9f:85:fe:49:fa:ab:cb:48:69:17:
         16:f9:ab:8f:38:7d:ab:d8:bb:f8:39:9c:47:78:05:60:3f:8d:
         3f:59:c7:6e:a7:fb:e9:01:4c:85:ed:1a:53:23:df:64:f1:1f:
         92:35:8b:e9:67:7f:48:db:80:b5:28:49:22:76:5f:d7:e7:75:
         b8:68:6e:33:36:0c:58:13:73:16:ad:47:aa:f8:98:eb:6a:44:
         54:11:05:6e:7e:71:cf:db:4f:fc:45:18:17:c0:bf:6b:ce:9f:
         b4:3f:b0:a6:32:82:de:70:73:a0:b2:b1:be:c3:a7:30:50:46:
         cf:70:9a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----