Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft
File:                     YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft (raw, json)
Hash identifier:          kOrzuiF1oD4Ulu5HKmMhZJv8tdDKaOr4Kzqxp+VSY14=
Subject key identifier:   21:52:A7:CD:9E:7F:96:55:5A:54:04:11:43:FC:A9:DC:CB:FA:D8:7E
Authority key identifier: 60:5A:BB:25:3B:76:6D:CD:7F:16:D9:F0:1B:C1:19:69:18:48:EB:0E
Certificate issuer:       /CN=605abb253b766dcd7f16d9f01bc119691848eb0e
Certificate serial:       0196C26FEEE9CAB1FF9F6507D131D98EBF39
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YFq7JTt2bc1_FtnwG8EZaRhI6w4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft
Manifest number:          0193
Signing time:             Mon 12 May 2025 03:00:37 +0000
Manifest this update:     Mon 12 May 2025 03:00:37 +0000
Manifest next update:     Tue 13 May 2025 03:00:37 +0000
Files and hashes:         1: YFq7JTt2bc1_FtnwG8EZaRhI6w4.crl (hash: BzALLZ4ezWjsr8S7GLa4PFJ2y5CX8c7/7qqwLD02GYY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YFq7JTt2bc1_FtnwG8EZaRhI6w4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 13 May 2025 01:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c2:6f:ee:e9:ca:b1:ff:9f:65:07:d1:31:d9:8e:bf:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=605abb253b766dcd7f16d9f01bc119691848eb0e
        Validity
            Not Before: May 12 03:00:37 2025 GMT
            Not After : May 13 03:00:37 2025 GMT
        Subject: CN=2152a7cd9e7f96555a54041143fca9dccbfad87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:d5:ca:1d:ae:ff:71:ef:5a:ee:6c:38:41:de:
                    cb:36:90:38:d9:c9:81:ee:5f:f1:fe:32:06:cd:fd:
                    84:9b:c8:2e:ff:0a:b8:01:79:54:c0:6d:8c:9d:c0:
                    6f:32:fd:c2:03:f5:a8:c1:d6:95:c1:9b:f9:5d:03:
                    db:1b:b6:88:31:b6:39:d7:ce:89:32:46:10:52:e7:
                    fc:7f:67:27:f3:cb:33:d6:10:e5:08:08:20:70:93:
                    26:0a:a6:4a:53:7d:ba:f2:7a:51:22:9d:25:32:0e:
                    af:13:4f:c8:0a:a0:70:95:af:82:91:7d:0e:3d:d4:
                    3b:f6:95:6b:ba:0c:93:60:60:a8:28:56:30:9c:93:
                    e1:7b:e1:b0:d3:de:4f:66:2e:1c:97:64:5a:76:32:
                    36:1e:ab:06:4a:cd:9f:ed:da:9b:5c:d4:29:03:8b:
                    c1:d6:da:0b:81:42:d4:a1:d7:00:f3:b4:85:10:ea:
                    1a:2b:17:15:0d:2a:09:3d:bc:65:bb:c8:4d:61:43:
                    ae:c3:a3:b1:72:b9:c5:bc:09:74:39:21:2f:8c:f2:
                    49:09:81:3b:8f:56:27:58:83:4d:44:62:20:86:cf:
                    e1:3b:e9:44:5e:63:57:7a:4e:b2:a2:16:77:6a:1d:
                    b3:86:f4:93:64:b4:32:a0:30:98:da:98:14:3b:63:
                    6f:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:52:A7:CD:9E:7F:96:55:5A:54:04:11:43:FC:A9:DC:CB:FA:D8:7E
            X509v3 Authority Key Identifier:
                keyid:60:5A:BB:25:3B:76:6D:CD:7F:16:D9:F0:1B:C1:19:69:18:48:EB:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFq7JTt2bc1_FtnwG8EZaRhI6w4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:c2:f2:23:9e:64:0b:80:21:a0:78:ea:d4:63:41:54:f3:14:
         8c:ca:7a:5d:c5:4f:c9:77:d0:3a:9c:96:07:62:68:9d:c5:08:
         fe:cf:e2:4f:ce:79:d6:a4:1f:d1:19:14:34:e9:6b:71:b8:83:
         86:8d:fb:ed:c2:a9:31:71:41:dd:42:e3:f9:f5:b6:92:b3:db:
         2a:e2:ec:90:4c:53:01:73:8b:df:9e:e7:fd:80:bd:31:b1:4d:
         0f:28:8f:d2:23:6f:d1:47:e5:0b:64:bb:fd:a0:4d:04:4d:e1:
         c1:b1:3d:08:6b:24:9c:2d:c9:10:c3:f5:68:8c:81:02:cb:ad:
         b8:72:7a:1b:63:e3:9c:74:52:90:b0:82:46:24:3a:5f:4e:cc:
         c8:8f:51:3e:9b:53:89:7f:80:72:3c:85:97:b1:cb:f5:07:fc:
         b2:22:76:5c:b6:af:8d:05:03:10:92:bf:f9:29:a0:7a:65:62:
         3c:e7:1c:e5:e4:0c:07:03:7c:ff:2d:b2:b6:1d:d1:c4:53:5c:
         dc:57:3b:29:21:a7:a7:3e:ca:5d:eb:6b:2f:59:e5:c4:84:e7:
         c9:fb:0f:cf:77:f3:bf:dc:94:12:7d:3d:e5:06:79:09:b3:11:
         0b:ea:bf:d1:a0:a0:c5:4f:cc:89:35:2a:38:5f:ef:8f:58:ca:
         9c:3f:b4:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----