Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft
File:                     HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft (raw, json)
Hash identifier:          pjECqS82pPxwrW2+GMW0vRZjYH4cZTcP0dowXzZHETc=
Subject key identifier:   D7:58:34:12:AA:41:F3:AC:59:2E:82:4D:53:AF:C9:61:67:22:E7:F2
Authority key identifier: 1C:D2:E7:8A:09:7F:29:0F:C2:FC:AF:5D:9C:7D:88:FC:C8:7B:D4:52
Certificate issuer:       /CN=1cd2e78a097f290fc2fcaf5d9c7d88fcc87bd452
Certificate serial:       01969B2BDD3333299CAB6070A9578DFE9AA1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HNLnigl_KQ_C_K9dnH2I_Mh71FI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft
Manifest number:          0179
Signing time:             Sun 04 May 2025 12:01:05 +0000
Manifest this update:     Sun 04 May 2025 12:01:05 +0000
Manifest next update:     Mon 05 May 2025 12:01:05 +0000
Files and hashes:         1: HNLnigl_KQ_C_K9dnH2I_Mh71FI.crl (hash: 0xx0wJMaWmW6YdFcHEfCtFofa6IxEPg9H2/AWpF2vpk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HNLnigl_KQ_C_K9dnH2I_Mh71FI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 05 May 2025 12:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:9b:2b:dd:33:33:29:9c:ab:60:70:a9:57:8d:fe:9a:a1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1cd2e78a097f290fc2fcaf5d9c7d88fcc87bd452
        Validity
            Not Before: May  4 12:01:05 2025 GMT
            Not After : May  5 12:01:05 2025 GMT
        Subject: CN=d7583412aa41f3ac592e824d53afc9616722e7f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:b3:74:79:ce:b1:23:4a:46:9f:32:c2:e0:03:
                    4a:21:cc:92:a4:fd:b2:b9:60:02:92:4f:d7:83:37:
                    02:97:e4:aa:64:3e:f9:b3:b1:45:7a:cf:59:4f:d7:
                    40:d0:4c:0b:82:7d:26:81:7c:1c:2f:b0:77:a7:dd:
                    3a:b7:8e:88:6c:6c:ec:b2:a0:a5:ba:aa:6a:6d:2a:
                    21:53:ec:88:e0:e0:38:0b:bf:d4:f8:05:a3:84:46:
                    06:e9:6b:e1:8f:ee:e4:60:f7:09:ce:e2:5d:b5:b7:
                    b2:8a:2b:83:20:79:d7:b3:f1:e7:c2:27:43:5c:07:
                    26:7d:16:46:ab:b8:20:94:b3:73:b8:85:8a:60:04:
                    f3:fa:3b:29:d8:a8:4f:13:db:be:30:05:6c:46:52:
                    63:82:a0:bc:2f:b3:8b:eb:ca:ab:6a:08:78:05:7c:
                    72:2d:52:8c:89:cb:b3:d5:53:58:99:6d:3b:7f:b8:
                    95:56:2c:5c:d5:9e:34:ca:3e:79:7d:cb:be:a6:71:
                    6d:34:fe:27:63:31:31:dc:ef:32:eb:c2:0a:60:cf:
                    98:50:58:a3:d1:3f:11:8c:c9:8b:d4:11:df:08:c1:
                    03:b3:c2:b5:64:a6:fd:4c:e4:bb:ce:80:18:f5:2d:
                    5d:b0:63:ed:a0:c6:ba:55:d7:8b:71:37:8b:0c:c7:
                    1d:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:58:34:12:AA:41:F3:AC:59:2E:82:4D:53:AF:C9:61:67:22:E7:F2
            X509v3 Authority Key Identifier:
                keyid:1C:D2:E7:8A:09:7F:29:0F:C2:FC:AF:5D:9C:7D:88:FC:C8:7B:D4:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNLnigl_KQ_C_K9dnH2I_Mh71FI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:9d:c9:23:e2:c4:5b:25:c1:92:a8:98:9e:c9:26:c0:95:9c:
         79:7f:e6:8c:2a:39:19:c0:14:32:de:d4:d8:88:56:80:46:83:
         be:88:b8:69:a3:d5:1a:49:8d:ae:d7:c1:be:e3:b7:ed:2f:e4:
         a5:ba:08:eb:d0:54:a5:c2:26:fb:35:8a:93:ed:b4:3f:b6:b1:
         c3:76:9b:48:83:6e:f0:b7:e6:e3:76:80:3f:49:6f:96:a1:e8:
         e6:15:b8:5a:30:33:e5:e0:db:7f:46:c0:01:b2:ba:c4:78:18:
         c4:22:ef:90:e5:7f:65:b3:e1:0f:22:31:3d:69:48:96:d4:cc:
         d0:30:e0:3b:0b:38:38:d5:f1:91:1f:2a:7f:c0:6f:60:3e:e1:
         6d:cd:9e:28:be:01:4a:17:84:81:f4:18:af:ba:f4:29:80:c2:
         e4:92:d4:02:df:f0:06:fb:88:b1:cc:81:62:e2:65:e2:f9:b8:
         9d:ff:a1:57:66:3b:c5:5c:2e:bd:a4:a5:94:52:b4:11:eb:7f:
         7d:ab:83:ab:12:23:0a:16:5c:d2:7c:90:9f:43:c2:43:63:85:
         ef:ce:33:7d:29:b1:e9:7b:bf:9d:5b:d5:0e:f5:22:92:a5:ef:
         70:d5:96:f6:29:af:e5:8d:30:37:18:b5:84:8f:cb:1c:51:cf:
         b9:62:68:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----