Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
File:                     hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json)
Hash identifier:          8ulwy2N0+j51f50Uty2TFnwt7f7O0+b1vc1ysPJU2L0=
Subject key identifier:   46:EB:1A:55:D8:C4:AB:4F:94:78:BE:05:DE:62:0C:7B:C2:66:1F:20
Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
Certificate issuer:       /CN=856350305f11387500f03c5a06ff73aa13592f1c
Certificate serial:       0196BDEE093AD98CD32ED0C2825F39F351B3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
Manifest number:          1530
Signing time:             Sun 11 May 2025 06:00:15 +0000
Manifest this update:     Sun 11 May 2025 06:00:15 +0000
Manifest next update:     Mon 12 May 2025 06:00:15 +0000
Files and hashes:         1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: kfjZWBKPxviMI1bY0D6CXN7ZxutjbwC6h5LVlfDWPHA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 12 May 2025 06:00:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bd:ee:09:3a:d9:8c:d3:2e:d0:c2:82:5f:39:f3:51:b3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c
        Validity
            Not Before: May 11 06:00:15 2025 GMT
            Not After : May 12 06:00:15 2025 GMT
        Subject: CN=46eb1a55d8c4ab4f9478be05de620c7bc2661f20
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:b8:88:08:20:e8:60:5a:13:d8:55:49:f6:6a:
                    bf:42:5e:96:5a:77:67:ac:cf:f2:50:3c:13:36:f3:
                    8c:90:69:35:4b:de:0a:c1:3a:93:76:f3:ca:38:3d:
                    8c:d4:d3:e4:80:40:f4:2b:00:da:83:af:6c:7e:d1:
                    f8:22:4a:bf:5c:7c:60:a8:95:7a:b4:89:53:f8:2b:
                    67:fd:23:c9:b6:2d:b9:8b:f4:64:05:26:45:75:1e:
                    27:de:4b:c8:c6:a1:6d:87:93:2b:36:e7:3a:ac:38:
                    23:f1:33:f8:f8:d7:f5:45:27:35:6b:f3:cd:c7:4e:
                    81:b0:33:22:53:83:20:9e:50:46:d7:57:88:68:69:
                    53:2c:a1:29:7f:21:bf:b1:a6:e7:e2:46:e7:4a:18:
                    33:7a:dd:d2:40:b3:af:f1:d2:4f:a1:83:41:06:dd:
                    73:3f:89:19:7c:84:ab:b1:bb:34:75:e1:83:42:37:
                    e8:e0:45:9c:4a:92:6a:41:f8:ab:9d:c2:f3:8d:db:
                    f3:ec:41:cd:68:c8:c0:68:88:a3:e2:d2:ce:4c:b0:
                    58:b0:e8:4a:4a:5a:8a:52:49:a3:8f:89:8b:6a:75:
                    15:eb:78:80:e6:aa:18:c6:16:77:cb:f1:7e:c8:07:
                    3a:ad:01:26:95:71:b8:78:f6:fa:09:58:9a:6d:fd:
                    4c:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:EB:1A:55:D8:C4:AB:4F:94:78:BE:05:DE:62:0C:7B:C2:66:1F:20
            X509v3 Authority Key Identifier:
                keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:5e:d0:5a:6b:b7:f8:67:4f:e5:f6:11:84:ef:57:da:9f:f5:
         05:db:ad:6f:fe:2d:a1:fc:85:63:9d:06:4d:25:6e:1e:74:cd:
         dc:48:aa:3a:f0:3b:e1:84:b1:34:69:7a:93:73:a2:f3:52:09:
         20:ea:02:32:ac:0c:e1:d8:98:e7:aa:cd:90:bf:12:07:c6:5b:
         ba:f0:59:f9:5f:20:26:50:02:fa:8d:34:99:8a:68:a4:3e:c8:
         60:10:3f:67:6b:ec:65:6d:be:8f:05:09:9c:63:bc:68:7b:9e:
         d8:b8:16:6e:a2:f8:f1:df:73:bd:9b:87:f4:91:e3:86:90:18:
         4f:aa:f6:87:39:e9:b1:08:bc:45:2b:af:ed:37:d8:ce:14:7c:
         16:e4:86:b3:ac:39:ce:bd:21:c3:ac:d5:e8:98:7e:27:4a:09:
         9f:c4:c8:ce:e4:cf:d2:7d:e4:fe:53:b6:89:23:97:41:e4:f4:
         20:fe:42:28:27:eb:91:ce:3d:98:64:3c:db:b6:78:08:55:17:
         90:6b:93:47:f4:3c:6f:5a:b1:dd:6a:8a:63:24:c4:83:42:e7:
         37:10:6c:b0:cd:c1:6e:34:57:78:0f:ba:05:77:2f:29:a2:d4:
         16:93:48:c2:eb:68:1f:85:ba:fc:4b:37:72:6a:97:f7:63:e6:
         a2:d9:a0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----