Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
File:                     tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft (raw, json)
Hash identifier:          SEhMBXsN/2AUnjgOzsk8LE8Qc1FH4XhJB3Tbs1Gz8+U=
Subject key identifier:   CD:CF:96:FD:A8:AC:70:D9:56:BA:39:4B:A6:0D:F4:20:4A:89:26:3E
Authority key identifier: B6:91:9F:E8:CB:EF:9A:B3:20:AC:7E:0E:34:68:79:D4:9D:18:57:D6
Certificate issuer:       /CN=b6919fe8cbef9ab320ac7e0e346879d49d1857d6
Certificate serial:       0196760C6ABC2235665CE0CA58A9DFFD3407
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
Manifest number:          05C6
Signing time:             Sun 27 Apr 2025 07:00:47 +0000
Manifest this update:     Sun 27 Apr 2025 07:00:47 +0000
Manifest next update:     Mon 28 Apr 2025 07:00:47 +0000
Files and hashes:         1: tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl (hash: QWXS6uCyWZomsvX6K9Z4U7rz+vfGaHGteYh+4aYYWds=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Apr 2025 05:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:76:0c:6a:bc:22:35:66:5c:e0:ca:58:a9:df:fd:34:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b6919fe8cbef9ab320ac7e0e346879d49d1857d6
        Validity
            Not Before: Apr 27 07:00:47 2025 GMT
            Not After : Apr 28 07:00:47 2025 GMT
        Subject: CN=cdcf96fda8ac70d956ba394ba60df4204a89263e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:c0:8d:ec:9d:e6:ae:8d:64:4d:0f:b9:ce:12:
                    a2:93:7c:27:27:f2:44:d0:c4:8b:98:3c:14:f1:99:
                    a2:cd:32:15:78:c6:ca:2f:ad:47:8f:80:d7:9d:c2:
                    fa:c3:4b:71:fc:15:39:fa:77:3c:ea:bd:0b:2b:76:
                    e7:19:27:da:75:35:26:ee:d2:ea:cd:11:f2:cc:88:
                    39:91:2b:62:a9:06:db:ca:2a:fe:a3:71:54:7c:26:
                    bc:8b:21:76:39:d5:e0:5e:a6:8a:98:39:c6:f5:53:
                    4e:1d:89:af:e7:f7:58:89:d4:ba:f8:8b:30:ea:5b:
                    f5:cd:be:9c:f8:d1:b1:0a:7a:ca:4e:2f:4b:74:a8:
                    8b:ff:ee:0d:23:5d:dc:dd:c0:aa:3a:56:d2:cd:77:
                    6a:47:a8:03:f1:b0:5a:e1:e2:a2:04:bd:08:ca:84:
                    e1:5b:0d:61:96:88:61:a7:1f:e6:e5:9a:06:21:7c:
                    78:91:49:ad:f4:d8:cf:c1:21:ce:b7:18:24:d4:48:
                    0d:69:6c:e0:45:db:51:9c:7e:19:ba:58:28:17:5b:
                    bd:46:d4:6c:65:69:9c:2f:aa:66:1e:65:f5:35:19:
                    ce:2b:ec:14:8d:1a:8f:72:55:73:06:1a:2b:ea:f7:
                    23:a3:60:18:9b:11:b3:25:96:02:0c:7c:95:fd:8f:
                    6b:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:CF:96:FD:A8:AC:70:D9:56:BA:39:4B:A6:0D:F4:20:4A:89:26:3E
            X509v3 Authority Key Identifier:
                keyid:B6:91:9F:E8:CB:EF:9A:B3:20:AC:7E:0E:34:68:79:D4:9D:18:57:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:90:70:95:70:de:bd:c5:9a:1e:17:9d:06:61:b5:a2:94:13:
         d4:9b:f7:21:76:1f:8f:b6:c2:c7:9f:6f:0f:25:c4:a7:48:ca:
         d5:ee:d0:e6:c1:58:4f:e5:02:10:fc:89:93:a1:72:f9:f0:b4:
         25:f3:c0:ee:ae:5f:a9:7b:51:0f:5b:0b:27:d2:00:93:59:e7:
         ed:09:e6:b3:86:5d:72:a8:b7:16:cf:23:de:5f:eb:38:80:2e:
         0f:22:33:1d:25:83:c1:02:9b:91:ee:1c:6a:ac:2e:19:bf:c9:
         dd:20:0c:4c:3d:6c:fc:c5:3d:60:25:89:49:b7:42:3e:ca:4f:
         c1:49:68:b1:2c:01:75:96:b8:b2:60:f7:46:3e:4f:72:a3:a3:
         27:a9:68:71:91:c1:ee:22:37:a5:1b:c5:41:bf:2b:6e:8b:04:
         22:28:4c:ef:3c:8f:08:07:d2:6e:7d:46:25:60:d8:df:65:a7:
         eb:5d:35:7f:05:cc:f7:3d:93:4f:d1:15:57:5b:2b:7f:d0:cd:
         a2:c6:5e:75:35:56:77:4c:85:a0:ce:31:e6:ce:04:b4:63:66:
         fe:38:cc:e8:a1:0c:63:84:ae:1c:ab:70:4b:3b:e6:6a:d9:b8:
         65:df:fa:f2:fd:f2:0d:53:ea:a2:80:0d:d6:50:b3:2c:c5:b3:
         55:f0:cd:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----