Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
File:                     8j79S9kntM6jMSCiG09zFNy-oXk.mft (raw, json)
Hash identifier:          cW06LdrhIjlOL3tX/YrAicBbTanFHSNYoSZMfPivY8M=
Subject key identifier:   43:AC:97:CC:9E:2A:FB:E8:D4:05:1F:04:C0:93:B7:E2:57:DE:42:3D
Authority key identifier: F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79
Certificate issuer:       /CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
Certificate serial:       019676E8278E0C6EA6A2A22F808FF456BFBF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
Manifest number:          0CB4
Signing time:             Sun 27 Apr 2025 11:00:48 +0000
Manifest this update:     Sun 27 Apr 2025 11:00:48 +0000
Manifest next update:     Mon 28 Apr 2025 11:00:48 +0000
Files and hashes:         1: 8j79S9kntM6jMSCiG09zFNy-oXk.crl (hash: gu8ymOOrZAiIF/YqE94IcnABogQNpX64dQ76VfiNyfs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Apr 2025 05:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:76:e8:27:8e:0c:6e:a6:a2:a2:2f:80:8f:f4:56:bf:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
        Validity
            Not Before: Apr 27 11:00:48 2025 GMT
            Not After : Apr 28 11:00:48 2025 GMT
        Subject: CN=43ac97cc9e2afbe8d4051f04c093b7e257de423d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:d1:3f:c2:17:35:b3:a9:c2:61:2a:f7:77:4e:
                    d5:79:3c:12:d0:15:ea:39:12:f0:0c:44:cc:c7:b8:
                    b7:1d:e5:ad:74:de:20:11:0e:89:d4:f7:fb:72:9c:
                    5f:1c:9f:72:63:91:62:87:2d:33:fc:1f:7a:b4:16:
                    4d:6f:26:95:6f:f0:f9:18:9f:09:64:ca:05:13:2a:
                    19:9c:e9:7b:9b:c6:67:f9:e5:bc:b1:2c:a9:7a:40:
                    0e:88:52:07:10:73:99:c6:f0:69:ff:ab:2e:8b:14:
                    5e:d4:0f:5a:57:5f:88:0f:eb:7d:81:85:4d:e8:1a:
                    74:88:62:96:68:eb:3c:24:23:b8:31:1a:87:06:16:
                    a0:7f:a3:83:00:5e:bf:ac:ee:a2:5d:ef:cd:ae:f7:
                    80:64:33:1a:ca:c5:b1:3b:6b:48:b0:ce:85:14:b5:
                    a8:b9:dd:cc:85:f2:15:a0:cd:14:ba:00:37:31:e0:
                    5c:56:74:5a:26:35:8e:dd:29:68:fa:a8:a9:5a:ea:
                    69:c7:d9:6d:98:cd:fc:b3:ed:2d:ae:30:0c:50:7f:
                    98:94:7a:46:55:be:d5:09:46:df:7d:72:c0:15:83:
                    46:81:ec:65:fb:b2:2b:27:5b:a3:45:d1:a0:9e:ce:
                    da:05:b0:8a:2e:dc:b7:f8:87:50:6d:b1:39:56:bf:
                    8d:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:AC:97:CC:9E:2A:FB:E8:D4:05:1F:04:C0:93:B7:E2:57:DE:42:3D
            X509v3 Authority Key Identifier:
                keyid:F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:32:d0:34:0a:69:d2:e9:93:d0:02:a3:1e:9f:80:2b:c2:6f:
         64:6f:a1:ca:b8:a9:e8:63:0c:a4:6a:ec:27:a5:89:c6:6e:3b:
         47:e4:a6:f4:e8:74:69:f1:a0:a7:04:fe:23:99:b3:c0:b4:23:
         48:cd:d4:4b:7f:e0:45:bc:18:f6:0c:21:73:b7:29:5b:7c:f3:
         2d:97:7e:57:eb:bf:49:53:fe:38:2b:bc:79:ab:eb:ca:f8:0a:
         c7:40:3c:4b:1a:1a:15:68:f3:88:4b:b4:fd:00:f4:d4:0a:37:
         39:8c:ba:40:d3:ed:1c:41:ee:f8:71:9d:db:a1:13:fe:97:4a:
         1c:98:ee:e7:a1:02:87:20:9c:89:6e:3f:75:42:c4:3b:fd:f9:
         5f:aa:c1:45:bb:41:79:22:14:88:39:b3:16:7e:73:64:9b:da:
         ab:42:e6:bc:80:d4:58:54:0f:27:ba:19:00:58:a2:9d:53:3f:
         8a:99:f3:95:ea:0e:b4:4a:fc:2d:fe:26:84:80:59:08:2d:48:
         66:d1:a6:3c:3d:b2:e6:51:cc:83:ec:88:42:5d:82:86:d9:d8:
         53:84:55:83:30:b8:78:7e:4a:2d:f1:d4:85:56:02:94:08:14:
         33:93:7a:75:38:99:d5:42:df:28:c9:a9:d2:31:94:b3:5f:71:
         92:00:9d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----