Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d1205b-072f-46c1-8170-0705bccd1f2a/1/PT1pq2LI2IJfK6S0g9Djk-JTTu8.mft
File:                     PT1pq2LI2IJfK6S0g9Djk-JTTu8.mft (raw, json)
Hash identifier:          NA+840bHk9ofWj86jheneCrgnx4wpUwPZynTK0VOtDI=
Subject key identifier:   77:8D:0B:4F:DF:30:C8:47:BA:B3:41:A3:80:A7:6F:AF:0B:CC:A7:F6
Authority key identifier: 3D:3D:69:AB:62:C8:D8:82:5F:2B:A4:B4:83:D0:E3:93:E2:53:4E:EF
Certificate issuer:       /CN=3d3d69ab62c8d8825f2ba4b483d0e393e2534eef
Certificate serial:       0196D4AD3DA85697FE8360F4F773C0574B6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PT1pq2LI2IJfK6S0g9Djk-JTTu8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/d1205b-072f-46c1-8170-0705bccd1f2a/1/PT1pq2LI2IJfK6S0g9Djk-JTTu8.mft
Manifest number:          132E
Signing time:             Thu 15 May 2025 16:00:45 +0000
Manifest this update:     Thu 15 May 2025 16:00:45 +0000
Manifest next update:     Fri 16 May 2025 16:00:45 +0000
Files and hashes:         1: PT1pq2LI2IJfK6S0g9Djk-JTTu8.crl (hash: ozgQqOgfBLnQhkFX8sGsy+unVEmqwT8qM2ykya2tMjY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/d1205b-072f-46c1-8170-0705bccd1f2a/1/PT1pq2LI2IJfK6S0g9Djk-JTTu8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/d1205b-072f-46c1-8170-0705bccd1f2a/1/PT1pq2LI2IJfK6S0g9Djk-JTTu8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PT1pq2LI2IJfK6S0g9Djk-JTTu8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 16 May 2025 14:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:d4:ad:3d:a8:56:97:fe:83:60:f4:f7:73:c0:57:4b:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3d3d69ab62c8d8825f2ba4b483d0e393e2534eef
        Validity
            Not Before: May 15 16:00:45 2025 GMT
            Not After : May 16 16:00:45 2025 GMT
        Subject: CN=778d0b4fdf30c847bab341a380a76faf0bcca7f6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:4e:75:40:a9:5f:c1:2f:46:76:73:9f:75:49:
                    b0:7c:8e:e6:a7:1e:18:80:c1:10:ea:67:28:a7:0f:
                    e0:49:06:e7:73:6c:a2:39:96:0b:21:bc:11:b4:4c:
                    32:45:3a:ff:b1:5a:ee:16:c5:7c:95:fc:4a:c1:38:
                    9e:ec:6d:4b:f7:83:59:7a:ea:f1:2f:2e:c4:b9:6b:
                    f4:65:41:d2:40:5f:b0:e9:36:be:24:63:b6:53:66:
                    47:5a:85:18:cf:10:7c:93:53:98:c5:f0:8c:1c:d3:
                    90:67:64:e6:ec:58:20:24:95:21:c4:d6:cd:41:33:
                    5c:36:fa:45:da:78:2d:8c:97:ed:d0:d9:50:8b:0e:
                    44:2d:a2:b5:f6:87:28:af:ba:78:76:73:02:6d:65:
                    d2:d4:fd:78:42:85:e8:91:4b:dc:ab:d6:71:f6:f3:
                    f8:57:64:0e:a3:fc:e6:36:74:c4:5b:27:75:d3:54:
                    ac:32:91:e7:ea:c7:12:0e:90:6c:77:ed:e2:77:39:
                    57:9f:1e:9c:50:4f:67:b3:6b:1d:49:68:c1:b7:4f:
                    7b:6d:e3:1a:99:b5:c6:9d:b9:1f:2f:e0:ff:0f:9d:
                    84:79:d4:86:0f:6e:4f:d3:81:2a:49:98:74:19:de:
                    12:ed:e3:ba:0a:2a:1b:4a:65:a0:ec:33:06:17:e1:
                    0b:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:8D:0B:4F:DF:30:C8:47:BA:B3:41:A3:80:A7:6F:AF:0B:CC:A7:F6
            X509v3 Authority Key Identifier:
                keyid:3D:3D:69:AB:62:C8:D8:82:5F:2B:A4:B4:83:D0:E3:93:E2:53:4E:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PT1pq2LI2IJfK6S0g9Djk-JTTu8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d1205b-072f-46c1-8170-0705bccd1f2a/1/PT1pq2LI2IJfK6S0g9Djk-JTTu8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d1205b-072f-46c1-8170-0705bccd1f2a/1/PT1pq2LI2IJfK6S0g9Djk-JTTu8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:79:65:54:56:10:d7:5f:d6:58:ba:dc:74:11:4f:f3:fc:f1:
         2e:87:68:ea:15:39:1b:69:5c:d7:cd:42:01:c0:92:1e:21:0b:
         42:64:bf:fb:13:0a:6e:53:3d:7c:f8:94:80:c5:3e:1e:22:d6:
         e0:d0:1d:8f:65:d9:db:75:7e:20:de:e4:ca:bf:44:d4:b5:d9:
         c7:4b:9c:a6:d5:e6:45:2b:e2:d2:1d:09:ea:b4:52:af:c8:cc:
         2c:a2:fc:4d:76:8c:be:48:d5:51:2d:4c:85:9f:e3:db:17:21:
         2d:5f:01:eb:a6:59:92:c9:dd:d8:e6:3a:32:9d:91:19:e8:1c:
         f8:74:e9:2c:1f:e3:3a:88:c7:a2:d4:f0:3d:26:d1:a9:14:35:
         34:19:92:9f:f4:84:d4:26:bd:3b:06:f3:5a:1d:c8:19:b7:4c:
         47:20:9e:e0:49:46:93:10:62:09:d2:7e:21:fd:61:83:2e:0d:
         96:53:c3:09:69:58:20:b0:68:78:b7:fd:a3:6b:e3:64:78:00:
         c8:7c:33:c6:67:f4:ba:0f:79:92:00:91:bf:b1:84:75:35:f9:
         0f:37:72:3e:a7:10:c3:41:fe:08:69:98:6d:2f:bf:6a:d7:4b:
         c3:60:20:4d:f3:4d:d5:0c:2d:ef:2f:20:45:01:f0:5a:84:2c:
         14:32:de:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----