Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft
File:                     XzoD6voEyDkjvYaTJGGFDfX3gUY.mft (raw, json)
Hash identifier:          24tYlKLipx4sQ0Tjjn6d/HSX9lCaEF4Iz21u3F3w/tU=
Subject key identifier:   80:52:70:35:EE:80:79:BE:6E:17:7C:03:9D:94:65:07:4F:51:9F:6A
Authority key identifier: 5F:3A:03:EA:FA:04:C8:39:23:BD:86:93:24:61:85:0D:F5:F7:81:46
Certificate issuer:       /CN=5f3a03eafa04c83923bd86932461850df5f78146
Certificate serial:       0196D219C63E73E16315233921849A420945
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XzoD6voEyDkjvYaTJGGFDfX3gUY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft
Manifest number:          1199
Signing time:             Thu 15 May 2025 04:00:26 +0000
Manifest this update:     Thu 15 May 2025 04:00:26 +0000
Manifest next update:     Fri 16 May 2025 04:00:26 +0000
Files and hashes:         1: XzoD6voEyDkjvYaTJGGFDfX3gUY.crl (hash: vbyFLZNfNYCuMFoinenIBEA8FLUtRhTgyK0JIRJu1KI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XzoD6voEyDkjvYaTJGGFDfX3gUY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 16 May 2025 04:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:d2:19:c6:3e:73:e1:63:15:23:39:21:84:9a:42:09:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5f3a03eafa04c83923bd86932461850df5f78146
        Validity
            Not Before: May 15 04:00:26 2025 GMT
            Not After : May 16 04:00:26 2025 GMT
        Subject: CN=80527035ee8079be6e177c039d9465074f519f6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:5e:d6:40:d0:e3:8b:42:60:a9:2a:a2:d9:6b:
                    46:7e:1e:b9:cf:d5:d6:09:45:1b:46:24:22:b6:0c:
                    e0:6f:92:f6:a9:a6:88:b3:af:b6:15:b1:4e:60:8f:
                    93:da:3b:2a:dc:8f:eb:0e:76:d8:2d:d5:7d:71:4b:
                    ae:1d:15:4b:6e:58:1e:af:06:1d:7d:d7:45:c5:a2:
                    ed:a8:be:08:55:c6:5e:79:73:06:44:ac:a8:e2:6e:
                    3f:aa:7c:57:37:d1:db:4e:7f:ba:bd:2c:5b:9d:b5:
                    24:81:53:25:9c:03:9e:e8:5b:fb:f1:35:c6:7e:73:
                    d5:93:25:80:b5:77:f4:ed:67:ae:bf:a4:d9:3e:85:
                    dd:06:8e:8d:44:d1:d3:83:79:d6:6a:a6:df:1c:4b:
                    c1:53:95:f5:af:e8:0d:8e:de:f7:81:8c:9d:b5:35:
                    b3:6e:83:0b:82:31:a4:b2:ca:6b:66:6c:f9:d0:24:
                    7f:13:25:36:c9:65:59:0f:12:8a:b0:43:d3:12:e8:
                    9e:08:b6:e0:b2:53:9e:53:31:d3:08:38:e0:c8:7f:
                    39:36:ec:2c:78:ea:26:e5:33:f6:ad:e5:ed:38:88:
                    cd:e6:14:5c:8b:48:55:1c:a7:48:35:5d:1c:7d:e7:
                    dc:48:af:56:40:28:e6:7c:3c:95:ed:18:be:ce:48:
                    f9:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:52:70:35:EE:80:79:BE:6E:17:7C:03:9D:94:65:07:4F:51:9F:6A
            X509v3 Authority Key Identifier:
                keyid:5F:3A:03:EA:FA:04:C8:39:23:BD:86:93:24:61:85:0D:F5:F7:81:46

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzoD6voEyDkjvYaTJGGFDfX3gUY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:41:f2:b3:99:b2:e1:8f:28:7c:98:26:96:66:8c:4c:4f:15:
         e5:05:a9:5b:f7:d0:fa:8e:25:1d:f4:20:52:26:63:de:c7:59:
         a5:f0:fe:b6:bb:eb:5d:cf:a1:4e:d8:45:f5:df:4b:33:de:3e:
         31:f5:29:95:ec:af:cf:7a:40:5e:5e:10:2a:50:42:92:12:ef:
         da:79:86:f5:ed:2a:a2:be:f4:35:5b:3f:6b:f9:15:2b:ef:98:
         bb:ad:4b:86:da:11:d6:bc:7a:01:37:9a:06:d4:d6:f9:ca:9a:
         34:95:b1:e9:d5:68:f0:3a:4e:59:a3:e6:a6:62:b6:8b:a6:ba:
         13:b9:75:21:ba:cf:5f:64:6a:7f:77:46:7b:fc:82:2f:dc:40:
         60:3a:fd:60:1a:d0:93:82:f7:45:a9:2a:3f:47:5e:a7:5d:ac:
         e6:24:54:51:0a:9e:53:38:b9:2c:43:8a:42:1d:c6:fb:ca:c8:
         07:3d:22:1e:a8:b4:92:35:e6:64:7a:bd:4c:f2:f4:f3:2e:18:
         f6:4c:2c:c4:58:32:9d:fd:6c:31:dc:a9:51:91:b7:fe:85:70:
         5d:9e:dd:8e:a4:ab:58:bc:ea:8e:c3:98:65:ad:9b:42:70:cd:
         e3:0f:dc:8d:3b:e8:06:4e:9b:df:dd:a2:71:10:e1:3d:24:93:
         74:e0:e9:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----