Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
File:                     OEzdzXTQQilYPSwr7tBz4AlrozU.mft (raw, json)
Hash identifier:          B3iq6x8K99FNVDd9QB6qQp0OC07z2V6E6+xtqQU6Suw=
Subject key identifier:   19:A7:6D:22:EE:6B:7B:D5:1C:06:74:18:26:1D:BE:5F:56:14:83:B2
Authority key identifier: 38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35
Certificate issuer:       /CN=384cddcd74d04229583d2c2beed073e0096ba335
Certificate serial:       0196895CBB28C47371648AEB25CEEE436E6D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
Manifest number:          056B
Signing time:             Thu 01 May 2025 01:01:17 +0000
Manifest this update:     Thu 01 May 2025 01:01:17 +0000
Manifest next update:     Fri 02 May 2025 01:01:17 +0000
Files and hashes:         1: OEzdzXTQQilYPSwr7tBz4AlrozU.crl (hash: XzWFWyu7NkYCG+vRhrSRM04oSd13hBW/o00gF4DupWg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 01 May 2025 21:27:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:89:5c:bb:28:c4:73:71:64:8a:eb:25:ce:ee:43:6e:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=384cddcd74d04229583d2c2beed073e0096ba335
        Validity
            Not Before: May  1 01:01:17 2025 GMT
            Not After : May  2 01:01:17 2025 GMT
        Subject: CN=19a76d22ee6b7bd51c067418261dbe5f561483b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:fc:fc:e8:52:d1:b2:ab:48:77:79:9c:61:b5:
                    0a:02:7d:f3:56:29:73:f3:ef:b7:68:d3:7f:ec:d2:
                    b3:f7:ee:7b:e8:f3:1b:96:e2:a6:15:e3:ab:3e:dc:
                    6b:57:fd:a5:af:6d:e0:9d:fe:b8:8f:87:c4:c7:33:
                    d8:54:4a:61:01:c2:98:33:a4:66:4a:64:e0:43:39:
                    11:9b:81:06:11:97:7b:5b:6f:2b:eb:3d:78:0e:96:
                    11:2d:5e:ef:70:99:5e:81:d4:20:c4:4d:ef:2b:26:
                    b9:0e:4a:2e:9c:9c:78:91:6a:86:f8:56:79:61:ca:
                    83:a5:76:1e:63:ca:8b:de:24:3e:4c:af:7f:a9:89:
                    b0:6e:1e:a7:ff:4d:bf:94:c3:b6:18:d4:97:8c:94:
                    a8:b1:a1:c0:99:22:0e:23:4b:ae:e7:73:cc:70:a7:
                    d5:aa:87:ba:ae:52:8e:12:76:aa:92:e2:56:7d:0d:
                    c6:93:4c:3a:55:3b:05:62:15:59:a3:cb:14:31:d9:
                    15:83:94:a3:6c:db:6c:60:a9:f2:b1:06:2d:55:ef:
                    eb:14:3c:3e:59:f2:a3:5f:40:26:ce:4d:fe:dc:48:
                    98:dc:66:94:fb:f0:73:e7:f0:c9:a0:4f:81:25:3c:
                    18:a7:1a:b1:a3:e6:99:0f:ff:21:2f:08:e0:d5:13:
                    50:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:A7:6D:22:EE:6B:7B:D5:1C:06:74:18:26:1D:BE:5F:56:14:83:B2
            X509v3 Authority Key Identifier:
                keyid:38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:0d:21:fb:d8:82:66:6e:ad:c4:47:37:09:12:00:e3:0b:0f:
         68:d7:95:81:c9:aa:c0:d8:a7:75:a4:3b:1e:65:7b:c2:b4:75:
         d1:3e:30:4c:27:41:00:cd:7f:97:08:06:7b:63:f7:78:75:27:
         58:78:34:39:ae:bb:fd:11:1a:5e:2b:01:a4:7e:a1:b5:37:83:
         be:2d:2b:d0:05:58:57:7b:81:12:3f:15:50:3c:d7:d0:5f:49:
         c4:6b:e8:31:18:32:43:75:5f:5f:48:80:03:2d:48:c5:e7:54:
         ce:51:f2:db:94:b2:17:3f:7e:44:44:6e:45:6b:9a:e8:7e:0c:
         60:19:61:20:79:ad:75:d8:bd:2b:bf:87:2e:0a:6f:34:4c:92:
         87:4b:ab:fd:b6:6d:57:38:5c:ea:c3:c4:a3:42:22:11:68:c8:
         1d:59:00:10:7d:63:32:be:4b:3c:01:05:3e:34:b3:93:75:8a:
         1f:39:db:3c:ac:fa:e2:e3:25:fc:15:9f:90:f4:97:93:7d:3b:
         5d:a8:03:40:b2:03:0b:c3:35:bb:8c:5d:43:72:d4:9c:7c:95:
         bd:ee:0c:69:0a:be:51:5d:23:af:14:fa:ad:42:be:f4:31:90:
         4b:98:ec:28:c2:3a:ae:32:27:90:5f:1e:1f:fb:c6:80:9e:a1:
         fb:b1:b9:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----