Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
File:                     UNlf0yarPwj3bczGVrs-Hia03Fc.mft (raw, json)
Hash identifier:          pN4lWW+q4NJ4UFglt+01NDCVzta45+hQe+T+tYlau7U=
Subject key identifier:   D0:0C:AE:CE:72:18:E4:5C:18:9A:6C:A9:9F:0E:F9:28:7A:ED:DF:E2
Authority key identifier: 50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57
Certificate issuer:       /CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
Certificate serial:       0196B069DBC8D97616669E26FF63EA538B56
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
Manifest number:          D4
Signing time:             Thu 08 May 2025 15:00:49 +0000
Manifest this update:     Thu 08 May 2025 15:00:49 +0000
Manifest next update:     Fri 09 May 2025 15:00:49 +0000
Files and hashes:         1: UNlf0yarPwj3bczGVrs-Hia03Fc.crl (hash: OEnutC4YoAhICqAdCwmzefDGrYrTi1AVnlOm/gx268Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 09 May 2025 15:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b0:69:db:c8:d9:76:16:66:9e:26:ff:63:ea:53:8b:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
        Validity
            Not Before: May  8 15:00:49 2025 GMT
            Not After : May  9 15:00:49 2025 GMT
        Subject: CN=d00caece7218e45c189a6ca99f0ef9287aeddfe2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:8c:a5:4b:20:5f:02:60:03:94:96:60:1f:77:
                    c4:90:d3:56:70:4e:59:16:86:7b:de:12:6f:1a:2f:
                    18:63:03:d5:af:96:ef:53:13:e0:ec:b7:c9:02:26:
                    64:df:05:70:34:a0:02:51:b4:fc:fc:e2:20:ba:5f:
                    b3:46:61:68:18:20:44:a2:6b:b5:07:db:7d:42:3c:
                    59:a9:c5:ff:fa:06:f1:2b:f6:4b:eb:f6:d1:9f:bc:
                    e6:a8:5f:43:dd:b7:b0:80:c0:92:5d:05:6e:4c:e9:
                    36:f4:45:f5:34:cc:f5:66:d1:de:9f:43:60:5c:75:
                    61:b4:18:b0:68:be:d4:82:bd:33:1d:11:4e:04:7a:
                    6c:fe:22:44:3d:33:a9:0d:a9:97:91:1e:90:ed:db:
                    f2:d8:90:0c:2a:36:7e:ab:49:0c:c5:f7:09:30:7d:
                    b2:fe:90:92:e7:b3:3c:e8:a2:e5:82:22:84:75:d7:
                    06:64:ef:9d:a2:a8:3b:cc:20:90:cd:56:61:64:46:
                    4f:b9:d6:6b:8e:71:2d:01:08:5a:23:bf:72:70:c0:
                    a8:05:77:36:c3:78:9e:2c:44:2e:87:ba:e6:43:a1:
                    14:53:8c:55:52:a3:10:be:d5:49:4c:9a:b7:09:61:
                    9f:fd:5d:cc:b0:fe:c7:21:82:ec:b8:17:0e:32:58:
                    ab:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:0C:AE:CE:72:18:E4:5C:18:9A:6C:A9:9F:0E:F9:28:7A:ED:DF:E2
            X509v3 Authority Key Identifier:
                keyid:50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:d3:83:22:3e:b2:29:57:b7:39:b9:21:cd:d5:04:a5:88:ab:
         08:21:b5:94:c4:d1:01:0d:aa:ae:32:a3:81:30:cb:82:49:8e:
         a2:ec:75:b2:e6:7e:2c:3b:43:6a:fb:27:56:d0:65:4a:9d:d0:
         3d:13:b7:2f:5f:74:25:0e:b2:db:fd:40:f5:94:54:91:24:76:
         44:9b:a3:0f:3e:fd:31:52:f8:2b:c2:3e:62:d0:6c:f9:74:7b:
         03:20:ea:41:1e:7d:18:a1:7a:d5:1a:4c:6c:f2:df:e6:67:9e:
         51:5e:15:84:4b:a3:be:51:b7:30:f9:ee:df:d6:7d:a4:ce:57:
         66:f8:bd:fb:c7:cb:c5:54:30:e9:d2:2f:8f:1f:48:7b:da:b0:
         f5:94:2a:15:8a:0a:bd:53:8f:ba:ae:7c:1d:66:35:5b:64:47:
         f2:99:5c:84:fd:88:73:82:bf:94:67:2a:0a:12:af:e1:31:12:
         a3:09:a6:1b:ab:d7:45:ca:f5:bb:e5:86:d2:cb:db:83:2b:eb:
         df:10:8a:16:e2:b5:ed:f6:a9:d8:07:fe:b3:df:fc:89:41:41:
         3f:28:4f:d5:a3:a0:54:a1:60:b0:4e:d6:65:a2:8f:ca:e8:3b:
         24:53:39:ad:41:17:96:dc:d7:df:87:41:22:7b:5d:1c:e9:65:
         0e:61:b1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----