Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
File:                     aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft (raw, json)
Hash identifier:          PHXqaZ0yHA4I3WaB5FXmsODQVxtghO1VMVms4PeBq3Y=
Subject key identifier:   6E:F1:52:45:11:3C:F6:04:CC:C2:CC:F5:19:58:9C:E1:47:78:9C:C5
Authority key identifier: 68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA
Certificate issuer:       /CN=6809515d093644678703c024d92014c532f316ea
Certificate serial:       0196B6A2A37CCB18E5545D36C3B8F3264D74
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
Manifest number:          112F
Signing time:             Fri 09 May 2025 20:00:34 +0000
Manifest this update:     Fri 09 May 2025 20:00:34 +0000
Manifest next update:     Sat 10 May 2025 20:00:34 +0000
Files and hashes:         1: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl (hash: r1627xwyxhwEfhz32e8OSK/+Hqkkgj0Wpt2WeEFH1uM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 10 May 2025 17:53:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b6:a2:a3:7c:cb:18:e5:54:5d:36:c3:b8:f3:26:4d:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6809515d093644678703c024d92014c532f316ea
        Validity
            Not Before: May  9 20:00:34 2025 GMT
            Not After : May 10 20:00:34 2025 GMT
        Subject: CN=6ef15245113cf604ccc2ccf519589ce147789cc5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:f6:da:5d:1b:fc:1f:7a:b8:30:df:5b:7d:d4:
                    02:1a:6b:31:67:b1:50:2b:00:72:e4:88:17:41:31:
                    78:df:9d:69:ff:56:e7:13:f7:04:63:93:76:2d:d5:
                    88:c6:24:ef:3f:c9:02:84:23:e0:7d:9c:fc:58:5a:
                    d6:5e:73:9d:47:38:61:b5:7a:98:a4:2c:05:8a:25:
                    aa:65:96:af:8a:0e:4d:fa:6e:30:65:47:16:4c:7b:
                    2b:e1:82:a7:ba:09:ce:04:46:6b:63:ae:b9:fd:60:
                    ad:5b:55:8a:3a:12:48:90:ec:1b:af:ad:4c:8a:f8:
                    b7:86:94:4b:d1:cf:2e:ca:ae:9f:da:e2:ce:21:df:
                    94:60:07:76:e0:47:8b:b0:40:c7:a3:43:4c:e3:f2:
                    b1:b2:1b:42:d5:93:90:94:78:a7:90:a7:fc:23:c0:
                    c5:4f:45:0e:79:06:35:dc:ca:c0:70:06:3b:8c:bf:
                    72:53:ff:eb:41:57:ee:c6:86:d9:bd:4a:ba:5d:39:
                    44:d9:13:52:c8:2d:18:c0:81:61:d0:de:37:ea:3b:
                    ec:3c:45:54:0b:00:9f:5a:cd:4c:d2:4f:20:1d:79:
                    c4:e2:09:22:18:77:0f:fa:55:37:15:00:be:bd:1d:
                    92:44:6d:70:1b:cd:3f:76:f0:db:65:da:b3:41:ea:
                    75:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:F1:52:45:11:3C:F6:04:CC:C2:CC:F5:19:58:9C:E1:47:78:9C:C5
            X509v3 Authority Key Identifier:
                keyid:68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:11:47:6b:bf:aa:38:48:51:87:0c:9f:76:9a:93:7d:cf:16:
         87:40:65:46:33:9a:2f:c9:f2:7c:f8:b5:d6:e1:cf:5a:7f:e0:
         0f:09:22:ac:4e:72:c8:70:86:6c:3e:fe:29:e2:23:c8:1f:57:
         4c:9c:e9:71:f0:a8:d3:a9:fd:0c:a4:9c:7d:6f:b4:41:ad:29:
         20:33:38:4f:d5:c4:15:46:bf:2b:15:df:fc:02:93:9c:bd:4d:
         5d:e1:95:b3:99:94:92:b7:e3:c2:18:32:3d:b2:83:0b:73:5f:
         5c:fc:9b:e4:ae:24:a5:97:bb:32:28:05:ec:ce:88:e1:b4:9f:
         c4:14:8d:c0:55:0e:49:65:74:ab:35:3c:ca:6b:aa:4a:b9:d8:
         0f:6e:4a:65:39:97:ed:85:f8:2d:a6:aa:cd:1c:f5:5b:b6:4c:
         eb:98:d4:07:e6:68:87:9e:6d:79:61:8b:6c:d0:d1:27:53:29:
         b3:26:08:af:32:29:7b:f5:2b:50:3e:1c:bb:fb:c5:84:81:24:
         07:c5:1d:ec:4f:05:fa:a9:23:21:38:64:0f:a8:c7:30:7a:2b:
         7b:0a:1f:96:99:6a:6c:d3:e5:07:5d:01:89:30:9e:0c:c6:ae:
         ad:9c:eb:ae:4a:f4:0f:04:85:5e:86:6a:76:d7:67:79:d5:8c:
         3e:94:25:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----