Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft
File:                     HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft (raw, json)
Hash identifier:          ys77k0UJVTQFkyoKiI6MVxMpDIAAjlalPy6zzyyAeqY=
Subject key identifier:   5E:36:E7:69:FF:70:D3:80:1E:70:1A:FB:55:17:5B:B0:69:20:C9:D0
Authority key identifier: 1C:53:53:A8:6A:BD:33:B1:A2:36:E4:07:CE:46:92:61:D0:63:61:50
Certificate issuer:       /CN=1c5353a86abd33b1a236e407ce469261d0636150
Certificate serial:       0196BC6E1446B2A24B0571E6EB0A739852B0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HFNTqGq9M7GiNuQHzkaSYdBjYVA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft
Manifest number:          07B8
Signing time:             Sat 10 May 2025 23:00:52 +0000
Manifest this update:     Sat 10 May 2025 23:00:52 +0000
Manifest next update:     Sun 11 May 2025 23:00:52 +0000
Files and hashes:         1: HFNTqGq9M7GiNuQHzkaSYdBjYVA.crl (hash: nKShbfyhXi5vvV8evX3CTkkYfD3kHtF/tR48E9LNkAM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HFNTqGq9M7GiNuQHzkaSYdBjYVA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 22:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bc:6e:14:46:b2:a2:4b:05:71:e6:eb:0a:73:98:52:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c5353a86abd33b1a236e407ce469261d0636150
        Validity
            Not Before: May 10 23:00:52 2025 GMT
            Not After : May 11 23:00:52 2025 GMT
        Subject: CN=5e36e769ff70d3801e701afb55175bb06920c9d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:97:28:61:ef:67:40:ba:6b:72:b3:fa:64:f8:
                    64:71:05:53:b2:7d:5d:c4:40:b1:b4:8a:0a:49:82:
                    40:60:50:96:83:34:eb:1c:2f:a8:e3:69:9c:ee:b0:
                    14:b9:af:23:8b:77:2b:b6:40:c9:b1:66:44:49:d6:
                    34:35:da:b4:06:cd:fc:40:80:fa:ed:e0:2f:1b:f0:
                    34:76:1a:e1:c2:aa:2b:27:0a:6f:cc:86:a5:11:30:
                    54:37:6b:e5:6b:ff:8f:7e:35:66:fe:98:a4:21:77:
                    85:5d:c3:20:8e:87:44:25:3d:40:e1:24:fd:11:a4:
                    cd:2d:60:01:73:20:ec:20:97:56:8f:5d:59:4a:5c:
                    76:3c:c9:d8:00:fe:a7:9c:47:8b:c1:3a:dd:8f:ce:
                    73:ad:7c:1a:90:72:8a:2d:62:f2:91:d1:ac:c4:54:
                    fd:17:16:74:e3:72:1c:54:78:45:15:a4:64:44:6a:
                    40:fd:07:1c:bf:f5:ad:ef:71:29:59:6d:79:0f:88:
                    78:77:75:02:e6:26:35:05:72:1f:51:91:2b:29:34:
                    4d:76:d8:90:54:d1:ae:3b:67:f0:60:cd:f1:66:70:
                    7c:93:fe:78:e8:04:8d:4f:4e:5e:13:4f:9a:be:56:
                    d8:66:8a:8a:a3:bb:62:f1:86:68:b0:d0:cd:1c:77:
                    2c:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:36:E7:69:FF:70:D3:80:1E:70:1A:FB:55:17:5B:B0:69:20:C9:D0
            X509v3 Authority Key Identifier:
                keyid:1C:53:53:A8:6A:BD:33:B1:A2:36:E4:07:CE:46:92:61:D0:63:61:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFNTqGq9M7GiNuQHzkaSYdBjYVA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:30:73:9f:bf:04:c6:c0:3b:50:72:50:46:67:96:aa:51:40:
         df:72:61:b9:5c:15:e0:f3:56:28:a0:e1:f5:da:15:6e:69:81:
         c4:35:1d:6f:7e:dc:88:54:3d:a2:25:c4:a9:dd:88:12:96:7e:
         4a:3d:25:a1:f9:73:42:01:51:14:4c:be:28:ad:ef:a8:27:f2:
         a7:31:69:18:29:5d:7e:5c:c7:51:ca:ff:93:76:ae:f2:39:00:
         89:33:7c:e6:1d:c1:5c:85:60:86:fa:c8:6e:c7:c3:de:5a:55:
         74:d3:04:9a:c1:20:a7:b7:2f:9b:95:a0:07:84:d6:e6:48:89:
         57:b3:f0:d4:20:aa:c3:44:99:be:70:14:cf:95:ed:38:58:4d:
         cd:58:17:e4:b8:95:b7:91:fa:dc:49:4f:83:8a:e3:77:82:81:
         28:a9:bc:60:66:e4:f7:5e:db:9a:b7:31:3c:9d:cc:44:dc:16:
         d8:5f:0e:a9:d7:42:b5:29:0c:c0:fa:39:ba:ec:4c:63:7d:63:
         be:12:fc:b3:9c:eb:bc:ac:9f:b3:bf:44:da:ba:89:79:65:4a:
         d4:6e:c7:65:73:ca:4a:8f:93:c8:3f:85:8a:f8:68:f1:84:41:
         3c:a6:a8:be:6c:99:2d:ce:3c:6a:7d:2b:59:da:c3:97:2b:97:
         ad:14:4b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----