Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
File:                     tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft (raw, json)
Hash identifier:          cWr86geQ6lLfqc+72voLeqM3qDWSxaglDZ2Ee+gl+u0=
Subject key identifier:   51:F3:17:E8:BD:AB:6D:76:82:29:5D:D3:00:CB:E9:F4:75:0B:9F:95
Authority key identifier: B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5
Certificate issuer:       /CN=b483bc0a71a52d0cf3989522367575959ebdcef5
Certificate serial:       0196A0F7276ADB891B3CDE2B404A3F972F1B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
Manifest number:          14B3
Signing time:             Mon 05 May 2025 15:01:14 +0000
Manifest this update:     Mon 05 May 2025 15:01:14 +0000
Manifest next update:     Tue 06 May 2025 15:01:14 +0000
Files and hashes:         1: tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl (hash: U+YDJXlXvYomv4RAUFfIEe6kQLEr0npocZYgpHynkmI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 06 May 2025 15:01:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a0:f7:27:6a:db:89:1b:3c:de:2b:40:4a:3f:97:2f:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b483bc0a71a52d0cf3989522367575959ebdcef5
        Validity
            Not Before: May  5 15:01:14 2025 GMT
            Not After : May  6 15:01:14 2025 GMT
        Subject: CN=51f317e8bdab6d7682295dd300cbe9f4750b9f95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:5c:d2:ac:cb:c6:41:f8:4c:38:34:fa:3e:9c:
                    17:8d:ad:24:38:69:00:be:25:44:58:21:b5:fc:ef:
                    8a:d2:ac:10:ca:61:7a:9d:3c:c1:88:df:93:50:7d:
                    d0:65:e4:04:2b:ef:75:f0:f8:12:5b:85:58:7c:7b:
                    9a:dc:21:a7:9b:e2:82:76:6a:b7:a5:0d:44:a2:ff:
                    73:dc:ee:fa:1e:84:88:ef:ad:c9:29:e3:48:4f:a0:
                    a2:ee:e1:ac:40:de:eb:db:ed:76:97:35:36:27:73:
                    c5:a4:2a:95:b9:b3:6e:97:5c:8c:2e:84:95:3b:b4:
                    36:af:6b:8e:80:e5:7d:c8:2a:f6:53:56:f3:df:da:
                    3b:58:29:04:ab:9e:68:75:bb:66:e3:14:3d:6a:d6:
                    a5:59:b2:02:e9:0a:60:a0:14:1d:d6:18:ff:94:e8:
                    3d:23:ef:84:a8:fc:22:f6:d2:df:04:3b:e1:37:da:
                    89:2f:1d:a2:a6:55:7d:5d:0f:0e:25:d0:a4:5d:4e:
                    f4:1c:af:f1:99:28:89:cb:36:79:7d:78:38:0f:1d:
                    bc:9a:b5:4d:f8:28:ae:e7:d2:d6:cc:40:c3:d9:0b:
                    52:d4:ef:cf:05:ba:18:dc:38:ab:2f:99:51:30:7d:
                    81:f5:78:cb:16:fb:b4:18:d0:31:38:e1:91:bc:b3:
                    36:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:F3:17:E8:BD:AB:6D:76:82:29:5D:D3:00:CB:E9:F4:75:0B:9F:95
            X509v3 Authority Key Identifier:
                keyid:B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:1f:64:c7:c3:ae:15:ba:6a:fd:11:fb:84:c9:48:74:38:9e:
         f0:f2:62:57:17:84:83:de:1b:40:ef:b8:1a:78:ac:a8:81:b5:
         b5:0d:a8:a1:02:05:98:41:61:3a:28:cc:57:7b:72:eb:9f:01:
         7b:7f:ff:8d:cb:11:98:37:e2:1d:05:d7:c5:ee:24:d4:87:c5:
         83:08:b4:80:11:c5:05:fe:e1:36:93:bd:6d:df:c2:6c:dd:23:
         19:77:6f:f8:75:92:36:14:90:99:0c:8a:b6:10:31:0c:ea:b9:
         3a:5e:26:b4:b9:5e:a1:e3:36:d6:d8:a7:f0:9e:3a:fb:92:ca:
         46:da:27:91:ee:12:a6:ad:60:85:ac:f4:7a:f8:5e:f7:fc:c5:
         b3:e6:27:d8:af:b9:28:ce:22:63:cc:ed:91:e1:be:11:ad:a8:
         0d:7d:39:5a:0a:26:c9:60:01:a8:13:18:b7:9f:b8:be:38:1c:
         d9:61:c6:fe:d4:83:e8:5c:b7:71:de:4c:68:a1:40:f1:3a:e3:
         f5:f5:ee:d9:d4:62:1a:2a:28:da:6a:4d:1e:f9:7e:ce:ad:28:
         84:78:13:71:2f:e5:6f:e8:60:ed:b1:16:04:39:9c:6d:09:d5:
         4a:45:21:c2:6b:56:5d:4d:c6:d5:d3:52:5d:94:5f:46:b2:1f:
         d1:11:80:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----