Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
File:                     dt0D59chnX68HyMPcGMtyRNvNBM.mft (raw, json)
Hash identifier:          M440LV1NyMM6prPZZfYtt1sactOTuXJJqPD7nD7AIXE=
Subject key identifier:   F2:97:B2:99:59:92:1C:34:B9:E2:5B:DB:0B:C4:36:09:3B:65:91:E4
Authority key identifier: 76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13
Certificate issuer:       /CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
Certificate serial:       019676B14ED78633DCA39D423C85673C8E16
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
Manifest number:          041B
Signing time:             Sun 27 Apr 2025 10:00:53 +0000
Manifest this update:     Sun 27 Apr 2025 10:00:53 +0000
Manifest next update:     Mon 28 Apr 2025 10:00:53 +0000
Files and hashes:         1: dt0D59chnX68HyMPcGMtyRNvNBM.crl (hash: EBOy8nIR0UnEOLg4YyJI7QTh0sTn7WJ4vHdoWAFm/Dw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Apr 2025 07:29:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:76:b1:4e:d7:86:33:dc:a3:9d:42:3c:85:67:3c:8e:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
        Validity
            Not Before: Apr 27 10:00:53 2025 GMT
            Not After : Apr 28 10:00:53 2025 GMT
        Subject: CN=f297b29959921c34b9e25bdb0bc436093b6591e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:d7:60:bc:67:08:ba:41:2f:52:06:dd:00:8f:
                    f1:97:9d:f0:fb:94:b7:c2:e4:23:b6:8f:f4:5a:d3:
                    90:c7:7a:e7:62:1c:45:e0:47:d4:82:f6:bc:80:43:
                    7a:7c:08:02:4b:0f:1d:0e:36:f2:84:eb:b6:94:b9:
                    41:29:ee:ae:c2:44:b9:ff:4b:76:b8:1c:7a:47:df:
                    4c:d2:fb:42:4c:75:d4:12:e1:40:34:05:34:f3:fc:
                    98:9a:0b:e4:c0:5e:f6:c9:27:76:45:dc:a6:4d:e5:
                    1a:c2:69:c5:dd:c6:b9:c1:e5:43:a3:c1:2f:44:a0:
                    3f:9a:ed:61:b8:a9:bf:24:c3:10:8c:13:b2:f3:13:
                    05:b3:06:b3:c9:f6:db:4a:cb:16:1e:04:df:e7:72:
                    b7:93:e6:db:a3:21:27:8f:4b:a7:67:12:1f:bc:b0:
                    6d:e9:5f:8e:54:58:d9:bd:c5:c1:6e:8e:af:35:26:
                    03:17:87:8f:36:34:f6:d5:a2:1d:a0:30:a8:34:e0:
                    c2:7a:4f:c2:cf:48:be:18:28:7e:96:df:28:d5:b4:
                    6b:e7:a7:f3:0e:71:d2:48:ee:50:94:e9:c3:ee:fd:
                    e2:f1:d1:26:02:60:a9:f8:4e:f4:46:35:9c:11:87:
                    a1:c4:a5:cd:66:03:44:70:c2:cd:2a:ba:59:b3:21:
                    a0:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:97:B2:99:59:92:1C:34:B9:E2:5B:DB:0B:C4:36:09:3B:65:91:E4
            X509v3 Authority Key Identifier:
                keyid:76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:56:59:2e:c3:f1:c3:a1:d1:57:f8:d1:8c:93:8a:c1:22:74:
         fd:c3:48:13:d1:bc:e2:21:b7:55:62:4d:d2:a2:41:bf:3f:56:
         6b:c3:ef:1b:79:4e:3b:74:be:d5:98:9e:2a:c0:b9:16:87:94:
         2e:00:d6:bd:15:ba:6c:ba:68:99:90:53:4d:c9:cf:ee:a1:3b:
         27:13:52:9e:8c:c6:df:21:d5:7f:0c:1b:4c:07:2b:5c:c4:0f:
         2e:48:50:9b:60:f3:c2:7d:3a:7e:35:3d:3d:e5:96:0a:7f:ee:
         f3:78:f9:19:c0:13:4d:22:f7:80:41:bb:0b:98:24:e3:47:ed:
         ad:a4:dc:5f:89:d6:04:ce:70:1a:aa:9a:c2:71:36:a2:8e:b5:
         8e:a7:c4:27:ef:5e:4e:cf:c3:09:ea:cf:b5:93:d5:33:a7:4f:
         8c:71:f7:34:53:ef:85:bd:6d:ce:ca:d2:c3:f2:56:0b:38:62:
         89:8b:a0:f4:28:b9:3f:c9:26:79:09:ae:6d:41:3a:2c:2c:94:
         f1:81:5d:69:4c:24:5f:25:69:0d:c1:b0:2f:6d:94:8e:e0:d0:
         b3:07:13:ba:73:7a:f2:31:52:e7:6b:cf:fe:1e:c6:72:ee:2b:
         d1:7b:3e:25:36:30:69:19:42:67:c9:52:ea:95:09:7a:f7:8c:
         60:bb:7a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----