Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
File:                     Yefv0ZrydUeUJswZJcW8Ls7ums4.mft (raw, json)
Hash identifier:          IkhwMhddc0u9YjNgM85pEQt461nGxmUGiDLmE6iiJpc=
Subject key identifier:   A0:0C:5F:D3:60:39:2A:B5:5D:FE:9C:0F:07:6D:2B:EC:8A:44:C3:EA
Authority key identifier: 61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE
Certificate issuer:       /CN=61e7efd19af275479426cc1925c5bc2eceee9ace
Certificate serial:       019680FD7160592003BD61F71F3A284E553F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
Manifest number:          1426
Signing time:             Tue 29 Apr 2025 10:00:15 +0000
Manifest this update:     Tue 29 Apr 2025 10:00:15 +0000
Manifest next update:     Wed 30 Apr 2025 10:00:15 +0000
Files and hashes:         1: Yefv0ZrydUeUJswZJcW8Ls7ums4.crl (hash: LRjjsm6c4p0sZzj5UkhYod7ppZhLGdwDyRHsv6jikZ0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 30 Apr 2025 09:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:80:fd:71:60:59:20:03:bd:61:f7:1f:3a:28:4e:55:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=61e7efd19af275479426cc1925c5bc2eceee9ace
        Validity
            Not Before: Apr 29 10:00:15 2025 GMT
            Not After : Apr 30 10:00:15 2025 GMT
        Subject: CN=a00c5fd360392ab55dfe9c0f076d2bec8a44c3ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:0c:80:e9:d1:f0:1c:b5:0e:04:19:f1:50:37:
                    25:d0:17:1b:6f:a2:cf:e8:31:63:8c:66:b7:1c:99:
                    76:6d:09:03:bb:f7:3a:1b:04:11:fd:a9:66:9c:e5:
                    04:00:98:ba:e0:f4:75:fb:0c:bb:fb:8f:43:6c:c9:
                    39:aa:c1:97:97:34:f3:43:99:b4:9c:f1:77:9f:f4:
                    39:ce:49:e5:85:39:dc:6e:04:bb:02:21:9a:23:b8:
                    90:cb:78:bc:35:80:b6:45:65:19:90:24:0f:50:16:
                    89:20:1d:41:f8:9f:36:5a:25:69:94:75:d5:fa:36:
                    bf:0a:9e:f2:bd:80:b0:cb:b0:f5:b6:b2:34:1c:e9:
                    3e:9f:c7:f2:15:a6:64:e5:97:b2:60:78:4d:a9:ef:
                    55:79:9f:8a:48:5b:ea:5a:1a:9d:c8:d2:42:8c:db:
                    a3:df:1b:f0:8b:4e:86:fe:82:b5:74:07:cb:2f:33:
                    7a:fe:9c:cd:3e:e5:8f:6e:e0:66:21:0d:07:34:55:
                    9e:bf:a3:38:57:e1:d1:47:0f:a8:45:b7:5a:b4:0e:
                    c6:b5:ed:f1:7a:a5:bf:fd:3d:3f:94:04:c9:e8:ee:
                    f0:32:5a:30:6c:3e:2e:9a:1c:ca:99:3e:82:07:9c:
                    57:63:cc:66:1f:e5:78:e7:2f:30:ab:10:dd:65:d7:
                    3e:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:0C:5F:D3:60:39:2A:B5:5D:FE:9C:0F:07:6D:2B:EC:8A:44:C3:EA
            X509v3 Authority Key Identifier:
                keyid:61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:8a:23:c7:0e:ad:ed:41:99:60:ca:58:ef:0e:42:3d:e8:c2:
         b0:b5:55:28:25:32:6b:ba:8a:10:e2:c5:19:3e:1c:02:be:3d:
         d8:cd:0a:dd:2c:56:ec:a1:a7:8d:08:6f:81:0a:cb:65:1b:bd:
         5b:1d:d1:07:65:f6:99:c1:67:2c:6e:45:5d:a8:79:0f:05:98:
         bb:19:05:f7:e6:f5:49:d7:17:f4:63:b7:82:dc:2e:35:e8:0e:
         bc:ad:4e:dc:df:ce:83:65:fe:a9:60:4c:64:55:69:3a:f9:36:
         7a:b8:ea:c4:0d:34:4f:5d:59:cc:02:8a:f2:27:f6:66:53:37:
         5f:f4:be:53:28:87:a4:3b:b7:f8:05:f2:8d:3b:37:58:ef:d7:
         67:bc:3c:e3:79:a7:2e:c9:fa:a4:9d:fb:49:91:d8:de:4b:2c:
         f9:90:b5:65:c1:62:b1:db:bc:11:42:42:bb:3e:1a:75:4c:dd:
         d0:7e:f0:87:dd:2d:1e:6f:11:52:fc:be:0c:df:94:b0:68:e4:
         32:42:9b:63:75:9a:45:35:95:59:4b:23:3a:f3:b9:29:2b:73:
         3a:af:79:26:61:84:ff:cc:5b:d8:e1:af:d0:a6:09:57:c0:2a:
         f7:76:8d:34:aa:5a:41:25:ac:2d:ba:15:68:f0:20:81:2b:dc:
         cd:f2:df:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----