Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft
File:                     Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft (raw, json)
Hash identifier:          vuaqOQYUxR4VjfJTGPMvlBqO4GDwmSizXqG4eZSkmDI=
Subject key identifier:   BB:FF:48:C5:25:65:E9:A3:47:E0:30:71:11:73:6B:BB:B1:CF:EF:44
Authority key identifier: 63:EF:6B:DB:C4:2A:D0:6D:EF:DA:D7:26:79:41:43:46:D8:D0:48:DF
Certificate issuer:       /CN=63ef6bdbc42ad06defdad72679414346d8d048df
Certificate serial:       0196CACE46E16DC27398EF8DB11D5D228862
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft
Manifest number:          1536
Signing time:             Tue 13 May 2025 18:00:38 +0000
Manifest this update:     Tue 13 May 2025 18:00:38 +0000
Manifest next update:     Wed 14 May 2025 18:00:38 +0000
Files and hashes:         1: Y-9r28Qq0G3v2tcmeUFDRtjQSN8.crl (hash: JoD3hPgBL3wLwfOqYlI0HVheAmIBVqXPeaD3DbMlg8c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 14 May 2025 18:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:ca:ce:46:e1:6d:c2:73:98:ef:8d:b1:1d:5d:22:88:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63ef6bdbc42ad06defdad72679414346d8d048df
        Validity
            Not Before: May 13 18:00:38 2025 GMT
            Not After : May 14 18:00:38 2025 GMT
        Subject: CN=bbff48c52565e9a347e0307111736bbbb1cfef44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:5c:d8:11:d0:3a:8e:76:ac:2c:a9:8e:2a:1d:
                    d8:dd:29:d3:6d:78:6b:0b:63:b2:dd:f2:22:60:85:
                    fb:7d:f6:45:c2:80:f1:5e:34:09:a3:45:88:1e:61:
                    48:7c:54:2a:90:94:06:aa:93:0b:2e:2f:aa:87:fb:
                    88:4e:de:09:cc:9c:30:02:c4:b9:82:f4:df:0a:5e:
                    46:ae:8e:89:3f:b9:fc:73:cb:da:66:8a:4b:2f:49:
                    f0:bc:7d:e6:d3:3b:dd:46:62:bf:81:b0:ee:cb:5d:
                    bf:05:93:f8:8f:48:b0:43:6c:6b:9e:6b:bd:c9:1a:
                    0b:98:7a:03:cb:11:38:f8:d1:e8:a1:e4:9e:90:94:
                    82:df:05:be:e1:4f:a6:f2:fe:72:3d:df:29:30:0e:
                    a4:6b:49:e5:10:a8:6d:f3:68:22:85:50:40:be:22:
                    db:4a:62:43:d6:93:a4:69:cb:ef:e1:ca:b8:73:24:
                    40:3b:38:a2:7a:d4:07:fa:04:d1:11:a8:f4:7b:38:
                    66:e6:2f:24:b5:9e:fe:56:aa:4d:78:6b:77:6e:af:
                    66:c0:65:24:44:2a:28:7b:63:04:d3:b1:b6:90:a2:
                    5e:66:ef:05:0d:3b:79:af:70:33:b8:77:85:35:01:
                    6a:5c:f5:4b:2d:26:a0:93:51:3f:ce:48:21:35:da:
                    23:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:FF:48:C5:25:65:E9:A3:47:E0:30:71:11:73:6B:BB:B1:CF:EF:44
            X509v3 Authority Key Identifier:
                keyid:63:EF:6B:DB:C4:2A:D0:6D:EF:DA:D7:26:79:41:43:46:D8:D0:48:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:c8:08:2a:17:3a:b5:56:5c:0a:7e:38:0e:cc:e4:74:da:1f:
         72:23:a7:c7:1f:ee:93:21:97:89:30:2b:de:db:61:8b:cc:a3:
         77:ca:1a:d1:02:8b:9c:76:97:38:56:db:98:b4:c9:cb:28:8f:
         9b:0e:7d:8e:91:1c:c0:9b:96:d7:76:27:d7:48:fa:67:0c:6b:
         26:ea:cd:5c:3c:d6:14:0a:7a:30:dd:bb:09:48:76:8c:d2:69:
         40:ff:32:b2:80:a6:a1:89:0e:d9:de:94:92:38:96:2e:ac:d1:
         5d:30:e3:0d:fb:3c:ff:24:45:38:44:78:98:25:39:2b:a9:57:
         71:b0:0f:4e:2b:fc:23:0c:2e:3e:dd:18:85:1e:04:fa:fc:03:
         19:3b:bc:ff:18:45:e6:5b:cd:62:ba:09:98:49:fc:f4:fd:7c:
         7f:eb:59:54:5b:47:7f:c0:e2:16:8b:57:ac:84:03:fa:c1:ab:
         b3:7e:8c:68:a5:24:4c:23:7d:66:d2:ea:e2:d4:f6:91:23:e7:
         7f:1a:1c:4c:81:cc:d8:5d:85:f8:ca:fd:c8:da:bb:57:be:c6:
         99:05:ea:fe:4e:be:d7:e3:0a:f0:31:bc:9d:f5:73:ec:a5:e3:
         34:80:bd:5d:3b:45:9e:55:3e:01:8f:23:50:9c:3c:a2:32:1b:
         4a:74:8a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----