Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
File:                     rfjUKjroBc6WqpT66fW0QG_0VZk.mft (raw, json)
Hash identifier:          fvrRSjfeCqVLY04P+dbtiEZD0mB0mmiyHc0oCWIwRpM=
Subject key identifier:   EA:13:16:67:0E:D3:E7:70:AF:2F:22:CF:E9:BD:6D:75:DE:FF:E6:80
Authority key identifier: AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
Certificate issuer:       /CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Certificate serial:       01968FCC289B7D3CCE21391570F3E52B1D68
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
Manifest number:          0283
Signing time:             Fri 02 May 2025 07:00:43 +0000
Manifest this update:     Fri 02 May 2025 07:00:43 +0000
Manifest next update:     Sat 03 May 2025 07:00:43 +0000
Files and hashes:         1: rfjUKjroBc6WqpT66fW0QG_0VZk.crl (hash: mqsfPxSZLuZCKd9n/lD4HQ7m7UrKGhnts3bg5iuddQ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 03 May 2025 07:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:8f:cc:28:9b:7d:3c:ce:21:39:15:70:f3:e5:2b:1d:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
        Validity
            Not Before: May  2 07:00:43 2025 GMT
            Not After : May  3 07:00:43 2025 GMT
        Subject: CN=ea1316670ed3e770af2f22cfe9bd6d75deffe680
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:0c:40:f5:f5:d9:09:44:3d:a3:b0:66:1a:eb:
                    21:6e:48:79:8a:4c:f7:1d:fa:67:70:88:e3:06:6f:
                    81:c1:86:06:58:83:10:87:59:d5:d1:6f:23:42:18:
                    ad:67:3e:8c:59:42:21:d4:37:b0:5b:1f:c4:ba:cd:
                    fe:c8:6d:73:e6:3e:69:f7:6a:ba:ab:69:a6:e3:f2:
                    ab:51:72:4c:4b:4a:b5:c2:a5:ec:da:30:9e:2a:ae:
                    39:e4:ea:ce:4b:ff:8d:e3:84:82:db:b8:8f:77:0f:
                    e2:15:8c:9d:89:d7:45:28:2d:58:41:23:ae:4e:98:
                    dc:aa:81:62:75:9b:b5:b1:b7:4b:35:f6:bb:33:96:
                    b8:81:d5:3a:1d:68:dd:b8:e0:12:fb:82:3c:70:86:
                    86:e0:1b:e0:a4:0b:d5:13:e7:52:d6:0e:3c:42:c0:
                    44:44:20:0a:1c:f1:17:78:4c:2e:03:c3:59:2a:36:
                    7a:12:fa:da:30:e9:c4:53:1d:aa:be:7f:d7:95:19:
                    62:81:fd:bd:ff:c2:88:13:f7:27:eb:d6:43:3c:18:
                    fd:be:f3:3f:3d:23:47:eb:7f:ba:39:32:0c:0c:90:
                    10:3b:a0:4d:76:fc:09:b5:d9:b9:78:31:9a:06:48:
                    2b:c2:bf:cf:d5:76:f9:95:54:3e:63:74:a1:ca:1b:
                    6d:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:13:16:67:0E:D3:E7:70:AF:2F:22:CF:E9:BD:6D:75:DE:FF:E6:80
            X509v3 Authority Key Identifier:
                keyid:AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:59:be:f3:ec:21:ae:95:bb:b2:11:4e:b1:de:29:15:24:c0:
         02:d2:fc:60:64:83:d3:f4:eb:21:c9:18:e1:ec:8e:a6:f8:76:
         09:f3:8e:7c:af:71:85:9d:30:21:2e:bc:11:0d:ab:c2:8b:e5:
         74:1c:4e:a1:1d:00:94:8e:ed:1a:0b:22:2e:8d:69:a4:41:75:
         6a:87:45:f2:28:66:53:36:c6:2f:eb:90:11:e5:a8:53:2f:80:
         90:0a:17:76:66:c7:d0:f0:8f:18:70:45:16:09:2f:fe:15:ee:
         43:eb:47:df:de:5e:f9:f4:5d:62:18:ec:b9:bc:28:58:da:c1:
         2c:35:79:1e:5b:69:0a:89:be:0f:52:cf:1b:2c:ae:c9:5a:4c:
         ea:55:88:3d:a7:fb:cf:ce:b8:f8:0c:06:2d:cb:db:d0:97:cf:
         dc:c5:a9:b9:01:41:fd:d6:55:52:4e:78:ee:84:ee:dd:50:d2:
         c3:30:a2:94:7d:b0:37:ac:ac:72:5d:98:a3:6f:ea:6b:50:f4:
         3a:3d:20:9f:4d:20:5c:6f:d8:1d:41:b5:b8:24:62:09:18:ee:
         44:1f:08:0b:e0:e4:0f:8c:d3:92:c5:d4:21:88:47:a0:93:d7:
         fe:b5:80:21:41:44:f0:4e:97:a4:4c:df:6e:20:e4:fc:80:d5:
         01:cf:30:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----