Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft
File:                     oGqOPGol1GOfOUWtFszF6Yo6kqY.mft (raw, json)
Hash identifier:          ptKCGIeC+vqxk2ofC5CzJTtI4oYFlHnJ8L30UBWws1U=
Subject key identifier:   A8:B4:01:76:A1:7E:D4:C3:48:45:41:22:41:52:FA:D2:EC:72:9A:53
Authority key identifier: A0:6A:8E:3C:6A:25:D4:63:9F:39:45:AD:16:CC:C5:E9:8A:3A:92:A6
Certificate issuer:       /CN=a06a8e3c6a25d4639f3945ad16ccc5e98a3a92a6
Certificate serial:       0196A65459FC83D6132CE4C20E0DF1E4F8D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oGqOPGol1GOfOUWtFszF6Yo6kqY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft
Manifest number:          1526
Signing time:             Tue 06 May 2025 16:01:07 +0000
Manifest this update:     Tue 06 May 2025 16:01:07 +0000
Manifest next update:     Wed 07 May 2025 16:01:07 +0000
Files and hashes:         1: oGqOPGol1GOfOUWtFszF6Yo6kqY.crl (hash: zQJ7OmtxAkRUhiF4EIvtIgLZN7YyReC587ME41NABGk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oGqOPGol1GOfOUWtFszF6Yo6kqY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 07 May 2025 14:16:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a6:54:59:fc:83:d6:13:2c:e4:c2:0e:0d:f1:e4:f8:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a06a8e3c6a25d4639f3945ad16ccc5e98a3a92a6
        Validity
            Not Before: May  6 16:01:07 2025 GMT
            Not After : May  7 16:01:07 2025 GMT
        Subject: CN=a8b40176a17ed4c3484541224152fad2ec729a53
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:5b:e9:9d:9b:ee:d6:a4:f9:86:85:01:41:61:
                    94:ae:c8:4e:8a:0b:c5:90:da:31:67:19:e0:5d:ba:
                    31:e9:02:73:0c:c3:50:93:0e:02:cf:21:5b:64:5f:
                    e2:9f:7c:a2:2d:fb:30:a5:f7:b4:65:18:41:35:0d:
                    08:0b:9a:61:bb:fb:c7:7c:b3:9a:d4:30:ac:5f:09:
                    cb:cd:60:88:36:da:50:9e:71:f8:db:1a:da:4b:5b:
                    bd:4a:b4:0b:dd:a6:ec:c9:1e:23:45:48:e0:c0:02:
                    07:52:ae:80:7d:18:54:29:23:cf:65:22:0b:6b:f1:
                    85:e9:21:94:82:3c:16:6c:8d:8e:87:20:6e:f1:b4:
                    bf:b7:5e:d3:df:63:f4:0d:65:09:4a:02:62:aa:67:
                    7d:97:7d:51:60:53:19:08:9a:99:52:b8:f8:b4:70:
                    e3:37:08:af:60:08:df:74:51:0c:fe:16:03:08:46:
                    a9:5e:92:d3:a0:26:44:58:c7:1e:7e:96:6b:c0:17:
                    5f:1a:22:26:42:e9:22:1d:b1:48:97:03:01:5a:f1:
                    5e:82:31:f0:62:4d:e5:9b:a1:38:5c:a5:52:4f:03:
                    be:3e:b4:6f:0b:89:34:86:63:45:61:20:06:c5:58:
                    b7:6d:f4:15:ce:77:d7:05:18:9d:c3:54:6a:e0:19:
                    97:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:B4:01:76:A1:7E:D4:C3:48:45:41:22:41:52:FA:D2:EC:72:9A:53
            X509v3 Authority Key Identifier:
                keyid:A0:6A:8E:3C:6A:25:D4:63:9F:39:45:AD:16:CC:C5:E9:8A:3A:92:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGqOPGol1GOfOUWtFszF6Yo6kqY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d24305-c551-450d-b697-9ac2d536f12d/1/oGqOPGol1GOfOUWtFszF6Yo6kqY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:2c:74:de:9b:43:28:33:c4:c4:cb:68:b4:8e:1d:c4:5e:e3:
         1e:91:ef:7c:39:fd:af:ba:ed:81:0f:77:98:91:f5:4a:6a:9b:
         62:86:62:9d:d1:d3:79:6d:95:7e:cd:e3:7e:c0:74:8e:1f:25:
         16:2c:4f:7c:6e:d2:77:7e:06:b5:e0:4d:25:4e:48:47:5b:bc:
         25:7d:50:0f:66:5e:9c:57:e5:7e:d0:f7:fe:fe:b6:a6:aa:09:
         8f:19:08:47:d5:96:fa:bd:63:69:49:56:ca:13:46:b1:db:ba:
         a9:58:84:01:ec:34:44:4d:ff:1c:9c:97:e3:24:15:76:85:52:
         4e:37:c1:bb:41:2b:69:f9:19:bd:a9:f5:31:ee:62:5f:0f:17:
         e3:a0:46:0c:17:3a:a7:ab:06:31:02:d8:9a:64:ab:7e:f9:4e:
         cd:45:b6:58:76:47:6d:b3:c6:b8:55:02:38:75:c4:e8:8b:a3:
         9a:bf:61:0d:e2:5f:4d:8a:db:11:ab:63:3f:e4:a6:cf:02:55:
         28:6a:8a:bb:b9:f5:ff:43:67:ea:a9:2f:1b:6c:a4:65:0b:c3:
         12:03:e0:b3:4d:ee:28:d6:4d:fd:bb:7d:f0:79:75:16:47:27:
         14:48:e4:c3:10:cd:1a:67:d6:e3:ca:1a:57:67:61:00:9d:2b:
         d7:8a:44:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----