Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft
File:                     SpR3QFKci4QPf4kzCXmshyyj-rg.mft (raw, json)
Hash identifier:          LfmC1PskhQwa9p3kYy109bMAy0W/f2hwam7zIRPpNjg=
Subject key identifier:   0B:18:C1:53:9A:7B:C9:36:44:1A:AA:DE:24:B8:38:B8:40:A3:84:8D
Authority key identifier: 4A:94:77:40:52:9C:8B:84:0F:7F:89:33:09:79:AC:87:2C:A3:FA:B8
Certificate issuer:       /CN=4a947740529c8b840f7f89330979ac872ca3fab8
Certificate serial:       0196CB04F42A228548778C30015CD4FBB2D3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SpR3QFKci4QPf4kzCXmshyyj-rg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft
Manifest number:          E5
Signing time:             Tue 13 May 2025 19:00:21 +0000
Manifest this update:     Tue 13 May 2025 19:00:21 +0000
Manifest next update:     Wed 14 May 2025 19:00:21 +0000
Files and hashes:         1: SpR3QFKci4QPf4kzCXmshyyj-rg.crl (hash: gtxmbakpr5CJCndCbngPSYUZtrUtVf9Eq7wyFDSsMvE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SpR3QFKci4QPf4kzCXmshyyj-rg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 14 May 2025 19:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:cb:04:f4:2a:22:85:48:77:8c:30:01:5c:d4:fb:b2:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4a947740529c8b840f7f89330979ac872ca3fab8
        Validity
            Not Before: May 13 19:00:21 2025 GMT
            Not After : May 14 19:00:21 2025 GMT
        Subject: CN=0b18c1539a7bc936441aaade24b838b840a3848d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:c1:1e:fa:01:9a:aa:c8:a6:3a:c8:29:80:cf:
                    94:d9:e8:72:ec:79:22:2a:25:e4:dd:5b:ab:28:48:
                    cb:f3:8e:bc:07:9e:18:a7:25:dd:a4:ca:75:7f:5c:
                    82:6b:e8:5a:33:90:dc:2a:48:17:c3:da:81:5c:39:
                    a7:a0:8f:01:42:69:36:c6:06:a4:0d:1d:e7:fd:e5:
                    cc:6c:89:3e:47:10:fe:4a:6f:7e:dd:99:c8:1e:86:
                    f3:a2:c3:e8:3d:fd:46:e2:10:0c:cc:7e:64:ab:fb:
                    88:ea:18:2c:be:36:fe:b1:2b:6c:6e:8f:ca:30:35:
                    0f:6c:08:e6:2b:d4:19:8f:e3:cc:9a:c9:2a:74:95:
                    25:f2:03:11:41:f9:16:16:e7:31:ab:ef:31:09:e2:
                    35:47:a4:4d:36:39:bb:6e:80:00:08:ef:bf:16:7c:
                    49:9d:ac:2c:57:07:a1:70:c3:c9:13:9c:1b:d8:e4:
                    fa:14:22:40:43:e1:e9:a1:29:b4:86:a8:2c:57:20:
                    a3:70:32:1f:56:9a:51:0c:6a:c7:cf:90:6c:b1:e8:
                    50:54:b5:19:90:e3:d1:f6:b7:23:95:cb:73:8f:fa:
                    71:b3:c9:99:cc:57:b3:14:4c:d4:c2:ec:c6:e7:5f:
                    2f:c0:46:08:25:92:e4:d1:d5:56:ef:4f:7c:86:99:
                    77:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:18:C1:53:9A:7B:C9:36:44:1A:AA:DE:24:B8:38:B8:40:A3:84:8D
            X509v3 Authority Key Identifier:
                keyid:4A:94:77:40:52:9C:8B:84:0F:7F:89:33:09:79:AC:87:2C:A3:FA:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SpR3QFKci4QPf4kzCXmshyyj-rg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/51/e90d6b-52e0-4195-88af-7db25ad7cd4c/1/SpR3QFKci4QPf4kzCXmshyyj-rg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:0b:2b:b7:25:18:75:1e:e2:b9:bc:20:5c:c3:91:52:32:c9:
         84:40:8f:e3:d5:62:17:b9:8f:b2:54:b3:02:d8:55:d7:ca:a9:
         d3:ec:e7:ad:31:24:c4:ab:0c:a9:05:cb:9d:10:71:54:4f:00:
         81:b6:b4:75:6d:7e:01:0b:df:46:da:66:44:4f:4c:7b:cd:da:
         42:5f:bb:a5:60:37:5c:ef:d0:70:16:08:79:bf:62:89:47:2f:
         1e:54:f8:54:1b:10:c1:9f:f5:03:51:a2:d0:3a:91:e9:7f:2c:
         cd:2a:83:c8:86:10:93:bb:1b:d7:96:53:4e:d7:08:6b:85:e8:
         34:3c:8d:d0:f5:ab:0c:b2:d6:1b:45:db:e2:a0:5f:f8:a6:5a:
         ce:b6:e8:e3:9f:3e:0a:55:2b:ef:dd:a8:94:ff:b3:06:76:e0:
         59:19:ff:ec:d3:95:35:c9:46:25:a9:3e:e5:f9:5c:e6:29:07:
         5d:5a:11:32:0f:54:06:8f:bf:e6:93:e4:3f:5d:64:39:e8:e6:
         96:1a:7f:a6:97:9d:b1:f2:60:b7:b5:82:6f:b1:fa:62:cd:af:
         84:e8:ff:0e:19:6b:8b:70:ff:8f:a0:fb:b6:20:23:fe:76:33:
         2f:54:49:83:be:fd:ca:ef:22:fa:c5:69:3b:83:aa:f7:e8:b9:
         13:1c:3a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----