Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft
File:                     cUt8OIAz4WI_xti-t69cOUJRkds.mft (raw, json)
Hash identifier:          8ypDKwbrXdArbRIIc3tJgh5/eLiYHKI0k1SnJomUQUs=
Subject key identifier:   94:04:D1:BF:4A:32:32:12:A3:F5:A0:D6:3B:EE:3A:9B:B2:33:06:62
Authority key identifier: 71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB
Certificate issuer:       /CN=714b7c388033e1623fc6d8beb7af5c39425191db
Certificate serial:       01967F7CF176E9065144A332BDD754EF225E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft
Manifest number:          06CB
Signing time:             Tue 29 Apr 2025 03:00:16 +0000
Manifest this update:     Tue 29 Apr 2025 03:00:16 +0000
Manifest next update:     Wed 30 Apr 2025 03:00:16 +0000
Files and hashes:         1: cUt8OIAz4WI_xti-t69cOUJRkds.crl (hash: HbOoAW/qBDDf+gJotg0ah0u9Nj7dpJBU5F4E2EGkVEE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 30 Apr 2025 00:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:7f:7c:f1:76:e9:06:51:44:a3:32:bd:d7:54:ef:22:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=714b7c388033e1623fc6d8beb7af5c39425191db
        Validity
            Not Before: Apr 29 03:00:16 2025 GMT
            Not After : Apr 30 03:00:16 2025 GMT
        Subject: CN=9404d1bf4a323212a3f5a0d63bee3a9bb2330662
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:8d:47:a2:a4:97:43:92:d7:e7:53:0f:fc:f7:
                    70:62:8b:0c:51:9c:af:4d:e3:ff:a9:ff:da:f5:e6:
                    94:e7:c7:8c:34:12:b9:f2:fc:77:e6:2b:37:21:5d:
                    5e:8e:92:38:95:92:dc:87:e7:1f:d9:43:7c:c6:82:
                    0d:7f:3b:cc:af:a7:2b:2f:70:b3:aa:09:da:5f:83:
                    e9:35:98:20:8e:72:df:3e:48:e7:09:5d:bc:90:90:
                    ed:03:2b:8d:84:48:ea:7e:62:0e:32:a0:5e:59:4e:
                    fc:c5:7f:79:d8:8a:9d:9a:9b:bf:53:ba:e2:1e:a6:
                    36:2a:22:d3:5e:c9:28:a2:c4:1c:fd:4d:82:95:81:
                    d6:af:96:ae:1f:41:63:4d:70:0f:fc:06:f4:6c:8f:
                    7a:82:a2:79:0b:84:9b:5f:c7:b6:93:29:79:81:7c:
                    62:11:92:4b:5d:89:dd:f2:76:0b:65:45:e5:9a:8c:
                    76:9a:52:f2:7e:30:ac:47:fe:63:83:0b:f1:91:c4:
                    15:96:1e:3a:6d:e2:87:89:36:09:34:05:d9:0c:63:
                    39:31:3c:20:9a:a0:f7:85:d6:04:e3:be:9d:cf:1b:
                    5b:1c:67:88:10:d7:75:6f:b0:24:6a:a7:74:2e:52:
                    22:fa:a3:58:39:49:dc:9a:58:ae:16:3d:74:5b:8a:
                    99:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:04:D1:BF:4A:32:32:12:A3:F5:A0:D6:3B:EE:3A:9B:B2:33:06:62
            X509v3 Authority Key Identifier:
                keyid:71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:b6:11:7e:f4:0a:4a:50:45:96:0e:f4:ea:81:93:83:72:19:
         25:67:37:e6:19:eb:eb:79:ad:0e:72:c0:07:48:f5:de:cb:41:
         e8:ae:12:b9:9e:1f:0c:0b:58:ad:88:b5:a6:62:29:60:6e:da:
         fd:7f:ef:19:2b:a4:2b:f8:95:1a:fc:52:89:b1:2d:42:bb:6d:
         03:f2:87:07:8b:49:74:04:dc:c2:a1:af:9a:cb:9b:cf:12:fc:
         f4:91:f2:a4:8c:d9:42:26:73:52:e1:49:58:49:ae:61:16:20:
         f8:3b:1d:90:31:2d:bb:ee:7f:af:c3:f1:bd:16:f2:db:eb:12:
         e6:86:d9:8c:d2:8e:0f:c8:15:99:2b:ec:4b:a1:3b:af:3d:60:
         e5:28:4b:bc:f1:1c:48:03:83:4d:b7:67:75:82:df:35:fa:83:
         78:8b:5c:6e:fb:49:64:24:89:06:90:a2:5d:30:3c:a0:f6:07:
         89:e6:10:45:ac:79:74:b2:5d:02:f5:fe:08:c9:ef:10:87:05:
         85:1a:a2:de:f6:99:b7:a2:0e:a1:e6:33:cf:c8:99:bd:dc:be:
         2f:b5:dd:f3:3e:2f:d4:3e:f7:49:c2:0f:b9:5d:5c:ac:b9:87:
         4e:02:cd:d9:9f:63:26:61:0f:91:70:39:b5:7f:f1:c1:bc:99:
         50:9a:f1:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----