Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
File:                     RHhnr-yeLyk5So9fl_kJKdkoIQI.mft (raw, json)
Hash identifier:          UwDABGJ9YzXYvgerVlLeRJz5e8O711PdPfdsvJoSIhQ=
Subject key identifier:   7E:46:A9:59:66:08:F2:34:44:14:77:1C:85:64:89:33:3E:76:21:62
Authority key identifier: 44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02
Certificate issuer:       /CN=447867afec9e2f29394a8f5f97f90929d9282102
Certificate serial:       0196A276EBE782C3E6E315A0163D12A27592
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
Manifest number:          1523
Signing time:             Mon 05 May 2025 22:00:24 +0000
Manifest this update:     Mon 05 May 2025 22:00:24 +0000
Manifest next update:     Tue 06 May 2025 22:00:24 +0000
Files and hashes:         1: RHhnr-yeLyk5So9fl_kJKdkoIQI.crl (hash: jfZLFxbwSBM4fP1iIva7ahlKMC8OY8pjQ37npQiIIXc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 06 May 2025 18:19:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a2:76:eb:e7:82:c3:e6:e3:15:a0:16:3d:12:a2:75:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=447867afec9e2f29394a8f5f97f90929d9282102
        Validity
            Not Before: May  5 22:00:24 2025 GMT
            Not After : May  6 22:00:24 2025 GMT
        Subject: CN=7e46a9596608f2344414771c856489333e762162
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:a6:00:e8:e5:a9:bb:92:35:0f:3b:20:8e:7c:
                    45:ed:77:4f:cd:44:28:f0:04:65:95:45:80:df:16:
                    94:56:72:7c:d8:d8:e4:03:1f:5d:84:b5:61:07:97:
                    2b:97:b1:c0:87:3e:64:80:07:7d:a2:68:31:a6:16:
                    5f:49:06:98:06:c6:95:5b:b9:db:f5:5d:b4:1b:78:
                    ed:f8:69:94:19:48:28:10:c4:7d:fe:2f:a9:ba:8a:
                    3e:aa:04:b8:8d:95:3f:08:cf:dc:72:9f:67:6f:ef:
                    b2:1d:67:73:a4:e8:15:d9:4a:e2:a3:00:13:7e:e1:
                    a3:18:a9:fc:b3:bf:10:46:49:9c:98:b0:c3:69:bc:
                    95:51:35:f8:32:07:62:28:10:72:09:cc:39:2d:27:
                    24:12:d2:1b:f8:29:06:6a:84:bd:df:68:76:62:34:
                    09:84:4e:24:35:db:0c:61:e0:83:31:e6:73:c2:96:
                    7c:27:f2:43:db:e0:e4:3d:bb:8c:1d:11:62:af:b3:
                    34:25:20:d0:4e:32:fe:4e:09:68:3b:8e:d2:dc:b0:
                    8a:a7:9b:bb:86:7c:fd:82:15:54:2d:95:e1:67:17:
                    cb:8c:7c:61:00:81:c7:8a:20:5c:d1:88:64:f7:09:
                    3f:b8:3f:18:8f:ea:2c:24:30:4f:80:45:66:79:65:
                    d3:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:46:A9:59:66:08:F2:34:44:14:77:1C:85:64:89:33:3E:76:21:62
            X509v3 Authority Key Identifier:
                keyid:44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:f4:e8:a6:fd:df:23:37:02:8e:9f:87:1c:dc:ac:b8:ca:e9:
         94:78:00:b9:43:70:86:30:df:77:df:31:7f:b3:ed:d7:06:f5:
         ea:eb:c9:54:b5:7f:35:02:9e:60:7a:3c:0e:3a:a8:46:03:73:
         19:5c:92:15:be:50:b1:c7:59:b1:5f:bd:23:fe:4e:16:50:e3:
         80:ed:d9:16:2d:b0:98:f8:da:0d:08:04:7e:b0:c0:21:35:60:
         b1:e0:a2:23:9d:5f:0a:15:77:db:91:79:00:0a:f0:a9:bd:61:
         c7:fe:4e:5f:f3:4f:95:c9:9f:43:f5:77:10:79:c5:51:0d:81:
         03:32:27:3b:06:1e:a5:a3:8a:4d:be:b3:70:32:f6:75:5b:f8:
         2c:c9:39:2f:3d:8e:f2:b2:f7:e5:8b:14:ef:b6:5d:8a:46:8d:
         55:6e:e5:2e:0a:31:a7:83:6d:b7:f4:6c:f7:cd:87:72:c5:07:
         4f:ca:0c:9d:8b:46:04:97:44:18:ad:9e:6d:a7:4f:5a:97:5d:
         7d:1e:0f:f6:63:7d:9b:ab:f3:74:6c:ec:3f:11:75:06:77:d0:
         2c:c5:40:a1:32:64:d3:8e:3e:07:44:6c:39:cd:2c:f0:82:ee:
         46:eb:e0:8e:60:c2:b0:3a:5f:88:a2:bd:d8:c7:e3:5b:81:d4:
         11:64:ac:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----