Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File:                     4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier:          6UjaXcbhqZCnlDhQ05lKC5/pN2tpGPxdsaceryN+6Vs=
Subject key identifier:   26:5C:B6:79:4F:4A:60:EA:F7:0E:D9:DD:E4:43:63:CE:EB:80:9B:A6
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer:       /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial:       0196B82302DCB13F4451D5242F6236FE9864
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number:          0A0B
Signing time:             Sat 10 May 2025 03:00:24 +0000
Manifest this update:     Sat 10 May 2025 03:00:24 +0000
Manifest next update:     Sun 11 May 2025 03:00:24 +0000
Files and hashes:         1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: Py9DUMjUk81Jy7eONS3G92FPbRA4gXb9suvh+QGupa8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 03:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b8:23:02:dc:b1:3f:44:51:d5:24:2f:62:36:fe:98:64
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
        Validity
            Not Before: May 10 03:00:24 2025 GMT
            Not After : May 11 03:00:24 2025 GMT
        Subject: CN=265cb6794f4a60eaf70ed9dde44363ceeb809ba6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:0b:69:fc:d1:a1:2e:48:a9:61:6d:98:4b:e4:
                    46:79:ba:61:71:29:34:fb:70:ef:c8:6e:2c:ca:f6:
                    ca:d2:6c:d7:e7:78:fa:6b:08:df:47:e4:ab:a4:d4:
                    64:0d:49:6d:19:54:06:43:7c:25:6a:4b:ce:24:81:
                    3b:bf:04:3d:3e:98:f4:59:97:11:10:64:18:18:a8:
                    51:cf:e5:b9:81:ca:bc:e0:76:fd:e2:a5:9f:3d:62:
                    36:6a:fd:d8:a1:9c:4d:31:2a:e1:b8:58:cb:02:0f:
                    95:b4:dd:df:0e:64:3f:41:90:c4:6b:ca:43:ff:45:
                    cd:6d:67:d4:e7:5d:f1:40:af:07:6b:01:65:3a:f2:
                    e5:85:1e:2d:79:fd:8f:ef:2e:5f:33:10:c4:08:f2:
                    c2:a8:c2:e2:e0:20:00:02:dd:78:e2:82:c7:d2:ac:
                    3e:ed:95:9a:d5:a4:81:43:a8:7a:0c:f8:00:7c:b8:
                    eb:ac:50:fd:d0:ad:e8:40:83:f0:9d:8f:34:57:de:
                    ec:80:38:fa:18:3e:20:f1:87:40:7f:1f:b8:88:2c:
                    d6:f5:b3:9a:d9:40:ad:72:dd:31:32:9d:5f:1b:4a:
                    1f:2c:a4:c5:a3:62:75:e9:62:e4:8b:f4:e7:ad:a8:
                    c3:7a:67:f9:c3:07:fa:6b:ae:43:6c:4b:6c:58:ea:
                    2f:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:5C:B6:79:4F:4A:60:EA:F7:0E:D9:DD:E4:43:63:CE:EB:80:9B:A6
            X509v3 Authority Key Identifier:
                keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:73:d1:dc:5e:3e:17:e7:df:8b:a5:21:c4:d3:08:b0:39:84:
         6b:e6:d4:a1:33:aa:46:28:f7:71:98:3b:e3:48:03:c2:4f:98:
         c2:c9:10:f8:81:d6:4a:e6:64:5e:15:7f:83:8d:29:13:ab:f5:
         27:f1:95:a3:c6:c9:ce:61:71:4a:dd:69:d3:40:b1:df:8e:e8:
         26:f9:a0:d3:6a:24:c3:ad:2e:0f:93:b5:2f:59:84:33:a7:15:
         e2:03:7a:32:9c:ef:ea:70:0b:3e:63:61:0f:2f:a4:54:d6:97:
         14:a0:59:de:a5:46:5d:7d:7c:b9:f3:e3:b2:97:d2:6d:94:cc:
         81:6f:7d:20:4b:ed:83:9f:69:3b:00:96:a3:4a:67:79:f9:9a:
         c5:2d:94:f7:83:03:f9:cf:b4:e4:62:c2:1e:05:b8:b2:a8:65:
         a2:9d:8a:c9:a0:75:2b:9c:e1:e3:30:78:b3:b5:e3:34:60:98:
         64:bd:16:91:b6:dc:71:17:d7:26:20:3f:9e:ef:55:97:fc:46:
         48:7d:7d:9e:01:cf:fe:e2:21:46:5a:dd:a0:7f:0c:c8:14:8d:
         78:48:2a:ad:07:60:f1:af:a0:b7:14:85:21:b3:7a:ab:52:75:
         7b:5e:ab:49:08:ba:49:74:60:43:5e:69:45:d7:e4:1c:59:c3:
         de:42:50:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----