Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft
File:                     pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft (raw, json)
Hash identifier:          GT8PsANpPRtJDlwV8lAkFUN8YMFhkBJAGsaQIwpW5a0=
Subject key identifier:   83:FD:7B:6F:4E:39:25:4B:28:02:69:B9:C7:8B:6B:8E:9E:24:73:79
Authority key identifier: A5:4A:9E:27:5C:5C:17:80:9B:8F:CF:8C:0F:E0:B5:F6:32:9C:EE:EF
Certificate issuer:       /CN=a54a9e275c5c17809b8fcf8c0fe0b5f6329ceeef
Certificate serial:       0196C34BA1F1F46EC23B8FB9F33EB2C133D8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft
Manifest number:          0E54
Signing time:             Mon 12 May 2025 07:00:35 +0000
Manifest this update:     Mon 12 May 2025 07:00:35 +0000
Manifest next update:     Tue 13 May 2025 07:00:35 +0000
Files and hashes:         1: pUqeJ1xcF4Cbj8-MD-C19jKc7u8.crl (hash: CHyqED5pVUzFm4OmB76qjgwRbTlcDhpb1GZpuqNk49A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 13 May 2025 07:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c3:4b:a1:f1:f4:6e:c2:3b:8f:b9:f3:3e:b2:c1:33:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a54a9e275c5c17809b8fcf8c0fe0b5f6329ceeef
        Validity
            Not Before: May 12 07:00:35 2025 GMT
            Not After : May 13 07:00:35 2025 GMT
        Subject: CN=83fd7b6f4e39254b280269b9c78b6b8e9e247379
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:fc:63:01:5c:26:4a:76:f9:d5:6c:35:e4:41:
                    7d:09:9c:0d:28:21:26:8f:a1:79:64:73:3e:27:ba:
                    56:e0:25:4d:61:aa:b9:4f:c8:0d:3f:64:2d:97:b7:
                    74:44:8b:19:bd:44:54:fd:05:e6:ef:78:4d:2c:c0:
                    a3:09:ba:86:50:58:fe:27:62:db:d0:48:1c:78:34:
                    3a:75:bb:df:02:35:04:94:bd:21:4e:2f:62:af:68:
                    2e:df:9b:29:56:2e:23:f9:bd:95:2a:1d:39:5d:15:
                    f8:a3:29:d6:db:26:4d:7f:54:3b:c4:24:6f:3b:2b:
                    47:c9:c1:91:50:8c:54:d5:d9:dc:0e:f1:7d:85:7e:
                    db:0d:e7:41:7c:e5:75:3e:98:3d:e1:c7:0b:ce:f8:
                    46:91:19:4a:f4:cc:9f:e8:f4:fd:eb:46:43:13:c8:
                    08:0b:e6:7c:ac:98:47:14:2a:f1:8d:f6:5b:8f:ed:
                    b9:7b:f8:1a:de:71:34:df:cd:34:a8:59:00:01:dc:
                    17:1f:4f:f8:33:7f:0e:6a:dc:2a:da:42:b7:e0:bf:
                    4b:36:aa:ab:94:e6:d8:e4:85:bc:5b:c1:44:0d:3d:
                    aa:21:e4:76:da:17:b8:30:54:78:a4:4f:e0:da:43:
                    f0:f6:a1:65:08:f9:ab:8a:83:c7:5b:ef:15:cf:a6:
                    70:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:FD:7B:6F:4E:39:25:4B:28:02:69:B9:C7:8B:6B:8E:9E:24:73:79
            X509v3 Authority Key Identifier:
                keyid:A5:4A:9E:27:5C:5C:17:80:9B:8F:CF:8C:0F:E0:B5:F6:32:9C:EE:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:b4:4f:7f:98:d1:90:ef:25:2c:bf:86:ec:50:9c:aa:e9:8a:
         ee:07:91:1b:5f:e2:09:b9:13:c3:67:b9:37:93:87:4f:89:d0:
         f4:81:c0:9c:06:7a:08:e6:73:23:f2:cd:26:a0:dd:55:f2:09:
         ea:86:09:28:54:74:81:ff:ab:22:6d:fe:08:21:2f:47:2f:db:
         2e:e9:02:24:c2:cd:2d:99:82:a0:cf:ee:2e:74:cc:b2:76:4d:
         a9:4f:9d:87:e6:98:96:89:41:86:0f:f1:20:7c:af:bf:4a:f9:
         53:b0:8f:e6:85:df:01:9b:48:04:80:e9:d4:0b:ea:c4:85:db:
         98:ab:53:a2:4a:95:32:d3:e2:45:ad:46:ce:36:36:36:ac:91:
         87:7f:33:93:be:93:1a:16:6d:4c:86:c0:a8:86:c0:8a:c4:d9:
         6d:0d:47:bf:4b:f6:a4:58:1c:5c:1e:94:68:fa:7d:e2:30:67:
         4d:d9:6f:33:fa:4b:e3:36:38:9e:b3:e1:35:0d:bf:b1:2f:51:
         fc:a6:74:f5:77:70:2b:70:1b:36:1d:6c:26:0c:a9:07:36:3d:
         58:95:ba:20:a5:55:98:b7:47:22:f5:7f:52:2b:ea:b3:7d:01:
         60:00:8f:1f:4f:fc:17:04:a0:70:c2:c5:f3:53:1a:7e:5b:5e:
         74:40:76:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----