Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
File:                     7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json)
Hash identifier:          wqZ4wbAnWuA/Qpa5RpKkm4l2ZXI2rsGXtsoiJo0WzaY=
Subject key identifier:   00:8C:D0:BB:C7:0B:6B:41:BB:62:D1:E8:39:D1:BD:B7:07:A3:15:1A
Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
Certificate issuer:       /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Certificate serial:       0196BDEE73C1462ED00CBFD2590982FEDF53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
Manifest number:          1530
Signing time:             Sun 11 May 2025 06:00:43 +0000
Manifest this update:     Sun 11 May 2025 06:00:43 +0000
Manifest next update:     Mon 12 May 2025 06:00:43 +0000
Files and hashes:         1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: fKGAb/k84NznvTiVTv71fCaIk/MxiS4vCFR1JmEq1wQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 12 May 2025 06:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bd:ee:73:c1:46:2e:d0:0c:bf:d2:59:09:82:fe:df:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
        Validity
            Not Before: May 11 06:00:43 2025 GMT
            Not After : May 12 06:00:43 2025 GMT
        Subject: CN=008cd0bbc70b6b41bb62d1e839d1bdb707a3151a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:b7:fd:3d:5e:8a:03:27:28:a1:37:86:47:c1:
                    dd:70:10:3d:e1:42:e4:a0:05:1b:e0:36:b9:e6:97:
                    ad:1f:98:31:41:82:55:84:fb:b5:6d:ae:96:26:1c:
                    b3:5a:cc:76:65:2b:1d:29:47:d6:33:a9:33:16:34:
                    e2:40:bc:9d:5e:fb:7e:20:71:05:fb:4b:79:78:8c:
                    a0:07:cf:63:af:25:d3:03:0a:e4:5c:73:c2:e3:56:
                    84:59:ba:4e:a3:f7:e9:d4:96:15:f8:c0:44:9a:ee:
                    fc:00:1a:16:5a:7d:a6:62:6c:9d:d1:20:53:4d:43:
                    2d:80:01:24:24:6a:28:36:85:9e:2b:14:84:d2:2c:
                    e9:5b:ac:f7:a5:d2:25:ce:94:9a:61:9f:78:61:39:
                    80:9f:30:e4:40:27:44:46:bc:6b:75:7a:c3:8b:aa:
                    2e:56:ba:6e:45:4e:fe:d0:e3:9f:c3:db:6b:93:c2:
                    d3:08:3d:33:3e:48:e7:0b:f4:97:0d:42:2c:39:74:
                    d0:d6:68:ac:86:69:52:11:c6:09:97:bc:95:78:c7:
                    42:c6:56:3a:30:cc:de:ab:25:35:e1:f1:6c:75:e0:
                    1b:18:90:a1:96:8b:ad:0a:c6:fe:fb:fc:59:da:da:
                    7a:78:e8:25:68:0c:cd:e9:60:48:bb:b5:24:d8:79:
                    1b:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:8C:D0:BB:C7:0B:6B:41:BB:62:D1:E8:39:D1:BD:B7:07:A3:15:1A
            X509v3 Authority Key Identifier:
                keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:35:8a:6d:e3:cc:8f:05:62:4b:ee:ce:f3:32:86:6d:23:a2:
         66:99:b5:02:ff:ef:59:a6:a7:ae:ab:91:ed:cf:96:23:50:0f:
         ba:02:3f:85:b2:79:bc:0b:6b:d6:96:de:32:ae:a3:66:c3:e7:
         f2:40:9e:ce:e4:33:f9:a1:77:5b:49:8f:90:dd:22:4b:23:b7:
         97:aa:1d:50:4d:74:4d:f7:47:b3:ca:91:39:3e:55:9d:2e:9c:
         ab:e7:0e:43:c1:25:f7:aa:5f:29:a2:02:49:a6:06:3f:51:a7:
         5b:17:51:70:8e:e2:1e:f5:21:08:33:10:e8:ec:03:5d:9b:b3:
         0c:2f:c7:e2:61:54:33:16:2b:8c:50:78:62:3c:7c:31:ce:3e:
         81:ad:3e:d6:49:93:00:96:b0:e0:55:25:10:eb:a1:6c:a2:40:
         9e:a1:d9:5b:70:96:81:36:5d:c9:19:6c:0c:69:ac:1f:85:08:
         23:01:b2:83:89:05:b8:2a:7b:3c:57:08:5b:f9:6b:cd:0b:c9:
         9d:8c:e1:74:23:c5:5a:99:62:b6:f1:b5:a5:71:c1:fb:a6:64:
         45:c8:20:9a:bc:b3:2e:75:3a:24:22:b7:35:de:ea:bb:b6:9d:
         87:8a:30:14:63:e3:f0:c9:e7:40:5a:cc:c2:69:8d:6d:c9:94:
         f0:4b:d6:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----