Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
File:                     uOssmbjKaFoqU4WIFB2xxLZB03Y.mft (raw, json)
Hash identifier:          KgE2Dm+1fQgmVyHfhjy+iRT5JXFfwJ6mXLIZDfVFDRg=
Subject key identifier:   61:01:BE:66:9C:CE:DD:8C:04:3C:C3:EB:E0:C1:C2:5C:67:4F:F6:9D
Authority key identifier: B8:EB:2C:99:B8:CA:68:5A:2A:53:85:88:14:1D:B1:C4:B6:41:D3:76
Certificate issuer:       /CN=b8eb2c99b8ca685a2a538588141db1c4b641d376
Certificate serial:       0196876E58C89A687EF6EDA0E2E498E219B0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
Manifest number:          1515
Signing time:             Wed 30 Apr 2025 16:01:17 +0000
Manifest this update:     Wed 30 Apr 2025 16:01:17 +0000
Manifest next update:     Thu 01 May 2025 16:01:17 +0000
Files and hashes:         1: uOssmbjKaFoqU4WIFB2xxLZB03Y.crl (hash: 6/kkr8ZF0o9nhJix+hkHNfeS9r/MOLDdA3IAiEJFOQA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 01 May 2025 13:16:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:87:6e:58:c8:9a:68:7e:f6:ed:a0:e2:e4:98:e2:19:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b8eb2c99b8ca685a2a538588141db1c4b641d376
        Validity
            Not Before: Apr 30 16:01:17 2025 GMT
            Not After : May  1 16:01:17 2025 GMT
        Subject: CN=6101be669ccedd8c043cc3ebe0c1c25c674ff69d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:b3:03:c5:69:ec:0e:68:42:cd:09:f0:aa:f5:
                    ab:b8:8e:a0:3d:e4:bd:12:60:cc:97:ff:bc:8f:1f:
                    ee:15:12:1f:d4:d1:3e:4a:49:d0:6b:6b:62:56:15:
                    97:b2:3c:80:6c:bc:74:01:69:56:10:89:12:e1:13:
                    ac:7a:b8:26:6a:3e:11:5c:4d:c6:88:87:2a:f4:dd:
                    28:51:ef:2d:0f:0a:e0:4c:6c:80:6f:6d:b2:ea:45:
                    a6:c4:7f:09:57:4b:c7:ff:51:44:c6:5d:a5:92:25:
                    df:d3:f7:e5:ba:f7:3c:fd:dc:61:04:c1:56:57:23:
                    71:13:82:00:2b:61:18:50:9d:af:e1:43:84:eb:d4:
                    bf:2f:f7:f4:60:05:a0:81:7e:19:f6:cd:9d:28:87:
                    11:9d:bf:35:59:cd:53:c6:fd:0e:b9:6b:33:11:91:
                    f0:2c:d2:a8:0a:d2:a3:f4:c6:32:68:27:d8:38:e5:
                    6b:87:8c:79:e8:c2:40:60:54:4d:dc:57:7d:48:dc:
                    f4:5b:8d:2d:5c:b0:1b:7e:52:4c:d1:55:3f:be:d9:
                    4c:8a:48:eb:a8:bf:20:1f:f9:06:44:a3:3a:c7:02:
                    21:e7:51:14:10:08:8f:5d:53:5a:8a:a6:bf:66:fb:
                    93:74:2c:af:62:18:da:69:41:3b:24:ef:11:85:9e:
                    3f:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:01:BE:66:9C:CE:DD:8C:04:3C:C3:EB:E0:C1:C2:5C:67:4F:F6:9D
            X509v3 Authority Key Identifier:
                keyid:B8:EB:2C:99:B8:CA:68:5A:2A:53:85:88:14:1D:B1:C4:B6:41:D3:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uOssmbjKaFoqU4WIFB2xxLZB03Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/457533-6905-4840-883c-ab6d0c213fdc/1/uOssmbjKaFoqU4WIFB2xxLZB03Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:97:58:43:3f:c6:2d:5f:51:39:1d:2e:63:db:10:cc:03:58:
         4a:e8:d7:9e:f7:6b:f2:f4:5c:93:e9:a1:01:30:ce:0a:d3:a8:
         b0:56:a8:e6:a8:c1:cb:bd:b2:17:f6:6a:4d:94:e2:00:eb:32:
         f3:8d:e6:87:10:02:d6:cd:52:2c:79:a1:77:08:16:8f:55:26:
         4a:0f:b5:81:29:11:7a:c1:f6:a1:14:00:28:d0:dd:31:62:d7:
         97:ca:46:01:c0:04:a4:4a:95:48:77:9a:86:c5:10:53:86:a3:
         e0:f9:4e:5c:c1:29:d9:10:4f:80:d2:3b:91:8f:89:84:a2:92:
         f7:64:11:0e:31:b7:34:6d:88:89:66:37:88:5f:71:03:60:af:
         22:00:67:67:64:e8:4a:ab:f8:1b:87:ec:68:7b:36:09:60:4b:
         23:e6:b7:39:0c:5a:f1:3b:85:b7:9f:a4:4f:7c:f1:ec:58:2d:
         b1:76:5c:4d:e0:73:43:98:45:79:3c:c7:ed:18:e7:44:96:29:
         49:4c:cb:ce:fb:ed:a3:a9:29:e4:d2:fb:e2:1f:6a:5e:1c:af:
         53:44:5a:66:0a:a3:c8:c4:ba:9d:14:da:6a:a7:f4:c8:75:a8:
         44:2b:0a:5e:28:18:ac:b8:9e:51:91:5d:d0:60:16:84:24:ac:
         79:52:cc:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----