Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
File:                     YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft (raw, json)
Hash identifier:          V9LYmiJ4smfZPBqoSZmbpqy1O07YKBmqKJYKq9sJbZA=
Subject key identifier:   E9:66:5E:34:5F:16:E0:FB:45:1D:F9:D0:05:AC:E5:84:B2:89:6D:E8
Authority key identifier: 63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB
Certificate issuer:       /CN=63062302b438592376c4264f49dc5e673edb2cfb
Certificate serial:       0196C8DF9CEC228C3EDAA864F0271F17D15D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
Manifest number:          0924
Signing time:             Tue 13 May 2025 09:00:19 +0000
Manifest this update:     Tue 13 May 2025 09:00:19 +0000
Manifest next update:     Wed 14 May 2025 09:00:19 +0000
Files and hashes:         1: YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl (hash: r84pfi09wbyCpwDabGcCuxDxG4ydrHv8CkuQU3Gpfrk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 14 May 2025 09:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c8:df:9c:ec:22:8c:3e:da:a8:64:f0:27:1f:17:d1:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63062302b438592376c4264f49dc5e673edb2cfb
        Validity
            Not Before: May 13 09:00:19 2025 GMT
            Not After : May 14 09:00:19 2025 GMT
        Subject: CN=e9665e345f16e0fb451df9d005ace584b2896de8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:3f:13:f2:bf:03:11:f8:80:e9:1a:60:27:cb:
                    63:3d:a4:aa:d3:ba:f3:23:5d:d9:d3:0c:89:ec:e4:
                    0c:67:a6:a7:b2:a6:dd:0c:cb:44:94:b5:68:60:e1:
                    e1:0c:85:2c:82:71:fc:08:2d:65:fb:73:cf:92:3e:
                    4b:e1:79:dc:5e:b4:ac:40:63:c2:b1:a5:da:1a:4d:
                    49:72:5e:18:18:22:1e:00:28:0a:5b:cb:ae:9c:44:
                    a3:11:c5:46:75:f9:77:0e:da:68:a5:9b:5f:b5:a4:
                    41:86:7a:40:d2:7a:c9:ff:f7:e1:db:ce:06:56:dc:
                    68:0a:a5:fe:95:e1:fb:a7:fa:24:b6:d9:59:db:c7:
                    b0:cb:90:e1:59:28:fb:d3:3b:27:58:6a:94:7f:43:
                    2d:2b:1c:a0:26:5d:21:0d:b8:38:51:2b:3f:09:fb:
                    1d:00:91:f5:b7:1e:3b:07:66:54:fb:a8:68:0a:ec:
                    da:96:9a:c1:27:a6:ab:8b:e7:49:88:9e:f7:9b:52:
                    d5:39:21:c5:2d:1a:c2:25:a6:e1:93:f4:5b:5b:7b:
                    20:ec:1c:e2:3d:c8:1c:8d:0f:5b:6b:b2:47:13:ad:
                    63:9d:91:0b:3e:ea:51:2b:41:0f:57:f0:c0:78:28:
                    8c:a3:8f:93:2c:8f:fb:c4:c4:61:60:f3:93:81:43:
                    54:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:66:5E:34:5F:16:E0:FB:45:1D:F9:D0:05:AC:E5:84:B2:89:6D:E8
            X509v3 Authority Key Identifier:
                keyid:63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:a3:53:5c:ea:20:1a:81:5a:a1:d1:51:72:e4:74:c4:93:c1:
         54:97:53:c0:ca:56:03:22:fd:2c:d2:84:ea:e0:70:37:56:5a:
         d9:14:a5:cc:06:a6:27:4d:0a:06:6b:36:28:ae:43:4c:cf:7a:
         7e:5b:60:a3:ea:c0:6a:a6:cc:8c:8d:fc:07:7d:10:b4:04:ea:
         29:3a:53:b0:25:90:f0:f0:8b:2c:66:f6:4c:03:41:e3:1b:cd:
         8b:a5:a4:47:7f:c6:b9:f3:a9:0c:6e:14:20:b7:1c:50:67:40:
         4c:56:f6:b7:f0:db:ce:bb:14:59:9c:6f:87:55:3a:9c:68:62:
         e3:a4:3d:7c:02:da:7f:5a:a4:07:e2:e8:1f:e8:43:a1:a7:25:
         1c:41:a6:af:09:d0:42:41:3c:e3:ae:e8:91:a3:28:9b:9a:bb:
         8a:9d:23:42:8f:21:28:2d:42:8a:a6:1a:4c:67:93:c6:4a:eb:
         22:f4:53:de:d6:c0:bc:9e:ed:e5:b9:c0:9d:23:12:86:cd:a0:
         41:f6:2b:b3:e1:ae:66:86:a3:0e:e5:c9:f6:5a:85:b6:d3:2b:
         24:55:b5:92:32:8f:17:13:22:9d:66:5f:43:3c:e4:dd:5b:fc:
         fc:9a:3f:71:be:a2:4a:32:52:0b:4d:b1:d2:0c:93:fb:08:c3:
         3f:71:54:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----