Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File:                     Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier:          rlesempP9+FEXBulv0THJ82JnJ5DJVgxDqsHwu0amhs=
Subject key identifier:   25:F5:7F:21:A3:A9:9B:ED:47:FF:7E:87:26:0B:1F:D7:0B:5C:C6:0B
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer:       /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial:       01967FB40ECB5C025B4FAEDADA7A3C707C53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number:          0C26
Signing time:             Tue 29 Apr 2025 04:00:28 +0000
Manifest this update:     Tue 29 Apr 2025 04:00:28 +0000
Manifest next update:     Wed 30 Apr 2025 04:00:28 +0000
Files and hashes:         1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: 8Tb0Nn9wwI63eNHj3Qb764PXPSYJavG4441NZNvmitE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 30 Apr 2025 00:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:7f:b4:0e:cb:5c:02:5b:4f:ae:da:da:7a:3c:70:7c:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
        Validity
            Not Before: Apr 29 04:00:28 2025 GMT
            Not After : Apr 30 04:00:28 2025 GMT
        Subject: CN=25f57f21a3a99bed47ff7e87260b1fd70b5cc60b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:c2:ae:e2:65:d1:85:71:35:0a:9c:25:e7:e7:
                    3c:f0:c0:54:27:4d:b1:d0:00:a4:2b:0b:a6:a5:fd:
                    5f:dd:e7:f0:74:d7:49:20:ec:e3:a4:10:32:19:50:
                    6e:ba:f1:a4:9a:93:bb:e5:ec:65:d5:78:06:fe:5e:
                    8a:8d:49:a3:1c:e4:56:f4:0b:84:8e:f6:58:2f:8a:
                    20:58:f2:15:9f:4d:6c:ca:36:fc:a6:93:e5:72:55:
                    28:4d:1c:0a:c3:fc:09:df:a6:20:1f:04:8c:ea:e8:
                    df:87:9f:0e:94:ae:4e:c8:ed:bc:11:8d:70:e6:b0:
                    e9:f4:1a:44:6c:1e:51:07:a9:5e:1a:cd:44:21:5d:
                    7f:6c:cf:2a:e8:a8:62:f3:48:9e:ff:8b:84:47:c4:
                    f7:ba:bc:37:6d:f5:74:b6:29:d7:00:89:47:10:97:
                    03:a5:cc:e7:97:0d:f5:47:c0:88:3b:87:e6:d7:74:
                    9e:a4:ac:7a:1f:11:d8:51:31:5f:e5:93:16:88:6f:
                    08:95:1b:25:28:a6:8c:42:86:f9:30:41:3d:82:94:
                    ee:5d:83:6e:0a:27:e3:24:a6:ab:cf:0a:d3:e6:a2:
                    16:17:92:bf:26:8e:f5:29:c7:b6:9f:eb:45:06:7f:
                    00:40:99:64:62:ce:8a:9f:93:e2:2b:0d:94:95:41:
                    7a:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:F5:7F:21:A3:A9:9B:ED:47:FF:7E:87:26:0B:1F:D7:0B:5C:C6:0B
            X509v3 Authority Key Identifier:
                keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:39:62:22:8e:c4:e4:0d:d8:c0:fa:4f:4a:cc:47:20:51:90:
         a0:39:a5:79:f1:2c:e1:f5:f5:bb:3a:82:60:aa:74:fb:c6:0c:
         15:88:b0:80:00:61:bd:7d:88:e5:4d:59:00:72:6b:b5:a8:06:
         d6:2b:57:ac:3f:f6:f1:85:c1:30:9c:64:44:65:a1:fc:d3:93:
         29:11:98:a8:59:d5:97:93:92:92:a4:ed:0e:14:90:24:5e:00:
         ba:46:2d:2f:5b:f6:3e:0a:3a:d3:00:18:62:59:04:fb:21:55:
         dd:4e:bb:de:7f:b6:7d:14:eb:fe:56:fc:d4:64:d2:05:65:49:
         fe:82:9e:d5:6c:34:0b:69:46:4a:4f:32:4f:52:2b:6b:c0:95:
         68:75:15:35:6b:61:6a:39:22:d4:e0:57:99:96:5b:c4:19:b3:
         48:a0:c7:47:ef:34:f1:b0:4c:77:e4:05:bf:b9:ef:a3:fb:7c:
         b9:aa:c1:ee:23:33:43:cb:da:2c:cc:11:22:31:f5:b4:a7:80:
         23:a3:17:60:c0:80:f7:88:ee:be:ac:b7:5a:94:67:8e:67:a5:
         72:47:bb:09:c5:9a:b9:78:03:dc:57:05:d7:55:ad:c8:d1:84:
         01:13:81:c3:ab:d9:8c:92:00:f4:1f:8e:8d:55:65:d5:23:83:
         58:0f:7f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----