Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
File:                     sLQvCUy6l0wfrsa97BVg9mOHiRE.mft (raw, json)
Hash identifier:          1RK8oVb0wpVrukU8OpGqIpf8yI6mW2OPgL4JkBckHqk=
Subject key identifier:   6D:AE:8F:7C:60:BB:E8:69:E0:0C:3A:9D:FD:C5:BD:B5:2F:20:38:78
Authority key identifier: B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
Certificate issuer:       /CN=b0b42f094cba974c1faec6bdec1560f663878911
Certificate serial:       019694F354CDC50E6679518D625A5D8BAD7B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
Manifest number:          11B0
Signing time:             Sat 03 May 2025 07:01:36 +0000
Manifest this update:     Sat 03 May 2025 07:01:36 +0000
Manifest next update:     Sun 04 May 2025 07:01:36 +0000
Files and hashes:         1: sLQvCUy6l0wfrsa97BVg9mOHiRE.crl (hash: lDSM5nhFX8LqZ0xzXK6zjv3rCY9XyAgiz1lKpS6ol4w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 04 May 2025 04:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:94:f3:54:cd:c5:0e:66:79:51:8d:62:5a:5d:8b:ad:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0b42f094cba974c1faec6bdec1560f663878911
        Validity
            Not Before: May  3 07:01:36 2025 GMT
            Not After : May  4 07:01:36 2025 GMT
        Subject: CN=6dae8f7c60bbe869e00c3a9dfdc5bdb52f203878
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:09:f5:cc:5f:12:2a:58:3b:ea:fe:07:2a:14:
                    eb:c0:5d:09:81:ca:b7:f8:c5:ba:30:62:39:48:41:
                    87:f9:a4:bd:05:97:6e:75:b7:80:eb:13:91:78:16:
                    7c:b5:8d:a6:5c:a1:f2:51:8c:cf:40:23:08:34:15:
                    68:9d:1d:55:56:a1:52:1f:b8:62:ac:d1:a0:69:1d:
                    37:b1:f2:a1:7d:d4:a6:87:f9:38:25:9e:65:38:ef:
                    6f:5e:d9:f3:d6:31:10:e8:2a:06:99:bf:ec:ba:51:
                    05:66:f4:92:4e:0c:1f:47:b6:5c:96:4f:d3:a3:44:
                    0b:c5:d4:d9:40:d6:a5:aa:9e:38:ed:c1:60:5e:88:
                    e0:a4:4e:d5:83:2d:ec:60:63:1c:f0:78:4e:df:35:
                    b3:c2:83:e4:c3:45:2a:ca:43:9e:69:41:39:15:1d:
                    8f:e3:3f:63:30:ae:7c:01:08:bc:16:b3:b5:41:f2:
                    91:b5:a4:1f:3b:3d:d0:7b:3a:37:84:8e:e2:26:6a:
                    65:62:70:c7:c5:21:4b:19:c4:6a:13:a5:d7:32:9c:
                    44:a2:69:8e:e8:13:e0:ef:4c:95:91:1e:27:ce:34:
                    79:b5:59:6b:2d:2e:9b:b7:1d:07:30:f0:ec:97:6e:
                    9f:86:63:a4:8f:ed:ce:13:8c:47:fe:3f:09:85:48:
                    17:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:AE:8F:7C:60:BB:E8:69:E0:0C:3A:9D:FD:C5:BD:B5:2F:20:38:78
            X509v3 Authority Key Identifier:
                keyid:B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:89:f7:4b:64:96:3b:77:55:61:d6:2f:70:29:15:d1:1d:95:
         ed:95:55:8d:26:33:64:89:b8:27:5c:9c:b6:b5:66:a8:34:a6:
         37:3b:31:7f:8a:df:9c:b9:f8:37:79:0c:cf:65:76:ea:8d:5b:
         fd:93:e3:d5:ad:a2:9b:dd:73:11:1b:df:28:1a:8a:1c:d8:cd:
         27:8a:b5:18:a6:63:f7:77:cf:f2:37:00:42:7c:2a:f5:5b:eb:
         e1:41:e8:10:69:c4:5d:b8:5f:2b:8c:ee:ca:08:ff:1a:c2:f2:
         d7:5c:80:d2:cc:89:96:57:2d:8a:86:24:10:21:6d:97:f2:01:
         3d:00:0c:9b:e3:c1:52:87:bf:45:03:31:13:e7:9d:4a:8e:d4:
         3a:5d:ec:45:36:bb:e7:f4:05:1f:68:a8:f5:a7:af:d5:07:a7:
         2d:6a:79:82:db:7b:28:28:fc:cf:42:87:61:4f:7d:31:34:a4:
         c4:74:e2:09:76:70:d6:1c:72:1e:72:db:15:df:3d:47:b4:b1:
         36:a1:2d:8e:a0:62:e9:0f:11:63:a4:c8:c1:e5:89:ac:fe:1d:
         20:0b:4f:d5:ef:4e:e2:89:72:ec:72:c8:2a:81:28:c4:05:3f:
         ff:bd:f2:4d:84:0d:ac:a7:cc:96:85:8b:72:8c:f5:84:20:08:
         91:a1:29:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----