Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
File:                     A-aapu504w79uBm5yxvyHnhub6M.mft (raw, json)
Hash identifier:          VU3REiTDh9RykzJ5xIO1qUBZHqBj2l+EDPJVz2F2TmA=
Subject key identifier:   E0:B5:CA:5D:BA:17:C0:A1:85:8A:EC:A1:51:51:32:D9:2D:C4:F4:41
Authority key identifier: 03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3
Certificate issuer:       /CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
Certificate serial:       0196AF8DF564CB8501A29186FFE8FB8E129F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
Manifest number:          03C9
Signing time:             Thu 08 May 2025 11:00:38 +0000
Manifest this update:     Thu 08 May 2025 11:00:38 +0000
Manifest next update:     Fri 09 May 2025 11:00:38 +0000
Files and hashes:         1: A-aapu504w79uBm5yxvyHnhub6M.crl (hash: 4vREkJIIS0FsUnI5LVW2n4NeJMd7rw/puQYGP537Hio=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 09 May 2025 07:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:af:8d:f5:64:cb:85:01:a2:91:86:ff:e8:fb:8e:12:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
        Validity
            Not Before: May  8 11:00:38 2025 GMT
            Not After : May  9 11:00:38 2025 GMT
        Subject: CN=e0b5ca5dba17c0a1858aeca1515132d92dc4f441
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:3e:22:9c:76:b6:fd:31:7d:97:20:6a:f2:21:
                    8b:e7:eb:bb:df:fb:78:46:0b:09:30:a8:df:b6:77:
                    ed:f1:8c:e6:0b:27:dc:db:7c:b6:08:be:91:2a:aa:
                    e4:d7:e0:06:ce:12:a6:dd:7f:96:00:2d:a0:44:78:
                    d8:b9:34:6b:c1:ee:28:c7:3f:bd:36:02:50:49:4b:
                    d0:70:97:08:72:d1:ed:90:58:f6:95:fc:4f:a9:bf:
                    01:b7:c1:62:36:eb:05:a7:31:fd:5d:13:51:cf:88:
                    59:3f:40:1e:95:bb:e1:ef:eb:67:22:01:2f:ca:e2:
                    40:90:ed:74:f1:e7:1d:b8:cd:54:7a:78:ed:11:0e:
                    91:3e:c8:fa:2c:cd:a2:d8:84:1b:aa:d8:fb:cf:40:
                    35:26:1a:8e:bd:aa:e8:42:09:21:2f:4e:b2:31:0d:
                    f5:3b:2d:38:ea:ea:44:b3:a2:a9:91:2a:86:c5:2a:
                    85:59:3d:a0:2f:79:72:f0:38:51:52:ed:35:d9:79:
                    a5:ee:9e:3b:e3:b7:66:52:4e:51:df:6e:01:c1:f8:
                    08:f4:b8:18:3a:55:1a:30:87:69:9c:24:87:fb:75:
                    39:4d:be:b0:1a:d4:a7:86:04:74:d4:18:ce:52:67:
                    c7:ae:ea:73:49:c2:b4:92:30:12:1c:03:51:f3:2e:
                    ea:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:B5:CA:5D:BA:17:C0:A1:85:8A:EC:A1:51:51:32:D9:2D:C4:F4:41
            X509v3 Authority Key Identifier:
                keyid:03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:05:dd:b9:a8:49:4e:96:1f:8b:c6:57:6c:11:02:57:b5:cb:
         35:1f:e8:c9:ac:b7:f4:f2:86:27:5c:33:62:b2:f2:fc:b4:b3:
         ee:ca:9e:34:9b:23:ca:5f:a6:61:26:15:bd:09:ae:5b:1a:0e:
         e7:e8:98:66:f6:87:e4:d3:f0:4f:7e:10:91:a6:a3:ef:69:7b:
         06:d9:2d:63:0c:c1:f6:ff:a5:06:58:75:56:8e:2c:f0:86:09:
         bd:4e:a8:c6:0d:7a:76:69:35:07:ef:59:c1:fa:82:91:b8:aa:
         94:81:fb:0e:56:89:dc:a1:d1:0c:c2:05:22:d5:55:6a:18:e3:
         42:85:8a:2a:3a:31:1b:27:cc:76:6f:80:14:e7:6a:8f:04:5a:
         66:fc:2d:8f:d7:12:42:e3:49:4e:a7:56:04:8f:39:f1:ad:8e:
         75:8b:66:df:64:27:ed:cd:4e:ed:a3:74:df:61:37:8f:07:9c:
         cf:12:01:69:4c:7d:9d:ee:a9:bd:8a:24:d0:04:ab:65:ce:5a:
         fd:a7:3a:db:14:d4:56:f0:d1:83:41:91:01:f8:69:dd:43:8b:
         b8:ce:95:13:11:e7:41:84:15:f3:c9:da:44:ff:ac:4d:a3:1a:
         3f:c2:da:d5:2a:b5:f3:e7:e3:cc:5e:22:5d:07:80:0d:c0:ab:
         fd:31:ff:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----