Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft
File:                     2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft (raw, json)
Hash identifier:          tNgfZafmRTdtpva2n3/uMzD3EjuSOGjeyuvnFxIMFxY=
Subject key identifier:   29:25:26:96:E4:48:55:85:6B:E1:98:4D:FB:E5:7D:91:60:22:25:B5
Authority key identifier: DA:7D:CB:08:1C:73:80:2F:C1:89:5C:6E:B4:A2:72:66:6B:D4:27:9A
Certificate issuer:       /CN=da7dcb081c73802fc1895c6eb4a272666bd4279a
Certificate serial:       0196BD812375D5919E5E9317090FCF8ADDE0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2n3LCBxzgC_BiVxutKJyZmvUJ5o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft
Manifest number:          1530
Signing time:             Sun 11 May 2025 04:01:19 +0000
Manifest this update:     Sun 11 May 2025 04:01:19 +0000
Manifest next update:     Mon 12 May 2025 04:01:19 +0000
Files and hashes:         1: 2n3LCBxzgC_BiVxutKJyZmvUJ5o.crl (hash: K++1HuG5G4iDH+AfhA6Ia+srUp114cLGojYXk7ksM2E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2n3LCBxzgC_BiVxutKJyZmvUJ5o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 23:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bd:81:23:75:d5:91:9e:5e:93:17:09:0f:cf:8a:dd:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da7dcb081c73802fc1895c6eb4a272666bd4279a
        Validity
            Not Before: May 11 04:01:19 2025 GMT
            Not After : May 12 04:01:19 2025 GMT
        Subject: CN=29252696e44855856be1984dfbe57d91602225b5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:79:68:67:3a:dd:25:16:45:7b:7c:98:0d:cd:
                    c0:a6:9d:fd:f8:aa:c8:a7:05:36:9f:1b:1e:92:1d:
                    8b:e3:1b:17:95:8d:b0:7a:4c:bd:8c:cb:9a:96:64:
                    e7:fb:82:e9:a0:ad:11:c4:67:64:ec:89:82:75:b5:
                    0d:7e:98:37:ad:82:66:71:a1:82:38:bc:32:79:8c:
                    66:a6:cf:26:0e:cc:c2:9c:f9:0f:40:77:e3:42:1a:
                    03:1b:d0:7a:be:10:9d:7d:b9:af:35:cd:75:7f:7c:
                    68:88:0f:fd:81:af:91:c5:7a:22:49:2a:05:0b:90:
                    c9:81:5e:15:42:f3:c8:9c:d5:9d:93:72:4a:d4:67:
                    85:04:b7:c3:8d:93:13:60:fb:af:09:41:f7:55:ef:
                    14:92:98:ef:8a:a5:31:cc:ca:e2:ad:3b:fe:99:70:
                    59:ee:fe:57:8d:af:a3:d8:49:7a:90:f9:73:0d:27:
                    ca:7c:02:e7:2a:c8:d3:99:00:ad:62:36:fa:d1:f1:
                    dc:fd:f8:a1:b9:53:6b:81:08:e1:dc:03:db:24:02:
                    3c:89:61:3a:cf:9d:ff:67:84:4b:c0:86:c8:1d:02:
                    2b:78:44:ac:6c:16:76:cb:19:5f:08:bf:c6:4f:6b:
                    bd:29:20:98:a2:af:8b:2d:a6:b0:38:a2:48:5d:da:
                    fa:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:25:26:96:E4:48:55:85:6B:E1:98:4D:FB:E5:7D:91:60:22:25:B5
            X509v3 Authority Key Identifier:
                keyid:DA:7D:CB:08:1C:73:80:2F:C1:89:5C:6E:B4:A2:72:66:6B:D4:27:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2n3LCBxzgC_BiVxutKJyZmvUJ5o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4abf12-45a6-4e2a-bc85-68b68e499b4b/1/2n3LCBxzgC_BiVxutKJyZmvUJ5o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:0a:18:e1:c1:73:87:37:f5:2f:a2:e3:f4:61:e5:8e:bc:e3:
         28:75:8d:a7:77:b3:0a:58:34:a7:45:42:42:a9:73:02:be:49:
         26:df:4c:1e:a6:27:1b:a1:31:3b:fd:0d:8e:78:6d:90:eb:79:
         16:40:1a:dd:51:bd:87:ea:04:2d:e5:58:52:aa:bb:29:89:d2:
         5c:79:99:50:0b:56:e3:ee:70:cf:84:b4:eb:c3:ff:5d:b7:f4:
         ec:13:13:08:5b:b6:d8:64:1f:b0:98:6f:46:47:46:f4:e2:05:
         a8:bf:4c:bf:87:ef:9b:a6:ed:6a:8e:88:f1:96:5e:4b:22:a7:
         c4:73:10:46:d9:89:d8:f7:a9:69:81:dd:4d:45:37:c6:67:8a:
         ec:f2:8b:d9:99:7b:b2:fa:bd:5d:d2:1f:1f:cc:10:df:7e:3f:
         22:50:96:02:4e:03:a1:dc:48:f5:da:cc:e7:c9:62:03:4d:31:
         d7:82:a1:4b:b2:65:07:77:b2:a6:94:a7:01:08:7c:b2:db:50:
         ee:2b:5c:5a:17:2e:46:68:88:f7:0c:3b:3e:bb:02:df:9f:13:
         6f:df:b7:0d:82:db:52:c6:2e:13:59:99:a1:7c:f9:b0:e6:cd:
         1e:20:83:0e:20:2c:96:6b:e0:9f:c9:41:ac:20:ed:e0:f7:df:
         dc:41:5c:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----