Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft
File:                     oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft (raw, json)
Hash identifier:          ESD0KjqTw53FJEqNBSekPHSJEEropGdvInH2v7RuQYk=
Subject key identifier:   AD:1F:01:DA:0A:F6:FF:0C:D4:9C:6A:C0:10:68:7A:92:10:4B:BB:52
Authority key identifier: A0:CA:33:E7:F6:72:5E:B4:EE:87:BA:91:B1:DD:2E:1C:42:16:8C:39
Certificate issuer:       /CN=a0ca33e7f6725eb4ee87ba91b1dd2e1c42168c39
Certificate serial:       0196C15D3791776A2693A58A8375DAEB71F2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft
Manifest number:          1106
Signing time:             Sun 11 May 2025 22:00:33 +0000
Manifest this update:     Sun 11 May 2025 22:00:33 +0000
Manifest next update:     Mon 12 May 2025 22:00:33 +0000
Files and hashes:         1: oMoz5_ZyXrTuh7qRsd0uHEIWjDk.crl (hash: 4K8ZwaVi/8hKV5vP2gSoiZg2IDgu+ihyRQN+auzS7nc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 12 May 2025 22:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c1:5d:37:91:77:6a:26:93:a5:8a:83:75:da:eb:71:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a0ca33e7f6725eb4ee87ba91b1dd2e1c42168c39
        Validity
            Not Before: May 11 22:00:33 2025 GMT
            Not After : May 12 22:00:33 2025 GMT
        Subject: CN=ad1f01da0af6ff0cd49c6ac010687a92104bbb52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:d1:d5:97:31:cb:a7:9f:78:2d:a8:fa:f2:88:
                    08:eb:fd:09:5f:0e:e1:bb:30:0b:67:80:b3:65:0b:
                    e4:30:8b:d1:12:63:5e:05:85:c8:5b:28:4f:76:b8:
                    c1:e0:56:b5:de:07:8a:a5:8e:f4:0d:10:c2:d8:0e:
                    f8:be:da:db:19:26:02:7f:69:a5:4c:33:dd:7f:3d:
                    2a:8a:49:b1:b4:c5:26:30:16:aa:87:ce:3e:96:45:
                    25:7f:05:0f:ca:7e:26:89:e1:9f:60:de:8f:21:92:
                    50:50:c6:df:f3:88:67:7e:a6:37:00:ee:63:b6:33:
                    41:e6:3d:d6:fb:cc:d9:5b:01:07:e2:5c:95:f0:06:
                    79:3a:a0:3c:57:cd:c2:2c:d6:86:88:f2:11:0b:38:
                    56:a1:fe:ab:84:39:7b:d6:56:91:ad:13:7a:f7:c0:
                    dd:f5:d2:cb:b3:3c:83:3c:88:75:aa:bd:66:8c:0a:
                    fb:96:8c:57:cc:8a:fd:3f:1f:de:70:3e:e6:6d:e8:
                    ff:a8:5e:86:4d:1a:34:3a:08:23:90:46:9c:80:13:
                    40:82:bb:6b:77:79:b4:90:52:42:7c:72:85:f1:da:
                    84:31:9f:2e:6f:74:c2:66:2f:b6:fa:7e:91:9b:50:
                    c8:15:85:8d:46:29:97:68:16:2b:69:b5:39:7e:98:
                    c5:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:1F:01:DA:0A:F6:FF:0C:D4:9C:6A:C0:10:68:7A:92:10:4B:BB:52
            X509v3 Authority Key Identifier:
                keyid:A0:CA:33:E7:F6:72:5E:B4:EE:87:BA:91:B1:DD:2E:1C:42:16:8C:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c4b401-e595-4a00-9123-f21ab7e9e1f5/1/oMoz5_ZyXrTuh7qRsd0uHEIWjDk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:07:c5:1f:22:34:a9:b2:9e:b7:5d:8a:fc:0c:66:2b:02:0f:
         81:57:68:75:f6:5d:28:ba:58:01:f7:72:2a:2e:85:87:e3:4f:
         84:ea:0d:06:81:51:5b:ac:48:23:73:5d:86:2d:63:40:0b:13:
         b5:fd:42:b5:2a:11:56:01:20:9c:3a:50:fc:c2:38:95:ef:2b:
         93:d4:a1:ce:e2:47:ab:18:09:51:11:4d:91:0f:ba:1f:55:66:
         3f:69:f8:9c:1a:f9:69:26:42:a3:31:b3:c4:85:e0:51:ef:4d:
         6f:83:10:f5:86:11:89:f6:a9:6c:8e:32:ed:0e:2b:96:ec:7d:
         e2:2a:53:07:80:5f:28:7b:18:64:29:7e:1c:d9:b5:f1:9b:92:
         ca:b3:36:2c:f6:e3:5a:d0:b6:0f:e4:4d:2b:81:1d:24:b6:d1:
         b6:1c:d0:5c:54:f9:e2:a0:b5:bb:e5:a9:4a:55:07:ff:53:7f:
         eb:6c:42:df:e3:00:b4:e7:42:c9:ae:17:2a:22:c7:4b:1f:45:
         56:fc:ea:36:5a:75:18:3b:04:8f:40:6c:f1:7d:65:8e:cc:54:
         16:ce:45:bd:b1:39:17:64:2e:d9:0f:15:ab:1f:f5:dc:27:22:
         fe:6a:71:27:96:cd:2a:b8:7c:81:6a:01:47:1d:fc:2e:99:33:
         80:20:f0:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----