Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
File:                     83MAhqFPMbJWQMFC7f0XvJMyDFo.mft (raw, json)
Hash identifier:          ZUX732+Sm4kSeWFYlJ2XkuQhiRML6OCuhrQ1MJZKy5M=
Subject key identifier:   72:61:C4:87:16:B3:0B:A0:F2:01:65:1B:E7:8D:99:33:AB:D6:5E:EC
Authority key identifier: F3:73:00:86:A1:4F:31:B2:56:40:C1:42:ED:FD:17:BC:93:32:0C:5A
Certificate issuer:       /CN=f3730086a14f31b25640c142edfd17bc93320c5a
Certificate serial:       0196A91DACBF958EA960E9E93F540A66C178
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
Manifest number:          0DD0
Signing time:             Wed 07 May 2025 05:00:16 +0000
Manifest this update:     Wed 07 May 2025 05:00:16 +0000
Manifest next update:     Thu 08 May 2025 05:00:16 +0000
Files and hashes:         1: 83MAhqFPMbJWQMFC7f0XvJMyDFo.crl (hash: HUmbZcOLNLVHb9sdxVzS5QV9bm1PQ1zAwHH59eAKeyU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 08 May 2025 05:00:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a9:1d:ac:bf:95:8e:a9:60:e9:e9:3f:54:0a:66:c1:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f3730086a14f31b25640c142edfd17bc93320c5a
        Validity
            Not Before: May  7 05:00:16 2025 GMT
            Not After : May  8 05:00:16 2025 GMT
        Subject: CN=7261c48716b30ba0f201651be78d9933abd65eec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:ee:60:ad:1b:4e:98:ac:e9:06:42:d8:21:07:
                    62:fe:ce:91:01:d3:ab:93:f4:b1:82:43:2a:c3:99:
                    3a:a9:05:61:9a:76:5b:92:f7:03:31:7c:0e:79:0e:
                    4f:48:f6:a4:6a:52:46:60:de:92:13:fa:d0:78:5b:
                    83:4f:06:8f:cd:98:96:54:f6:d2:2d:62:be:1e:e7:
                    c5:c1:2a:84:13:6e:1b:38:f1:98:5e:a1:3a:11:0d:
                    1e:1e:60:e5:de:17:5d:95:20:ff:5f:d2:24:52:6a:
                    f9:81:8e:77:39:18:c4:4c:f2:0f:93:f2:9e:e5:9f:
                    45:cd:be:61:fa:d4:7f:99:0f:16:86:e4:3d:f9:f5:
                    0e:49:29:91:b4:3d:b0:51:af:2d:01:ca:28:18:32:
                    5d:18:8a:82:45:cc:ce:7c:8a:e7:76:c5:54:ab:9e:
                    40:07:93:92:d3:40:25:96:bd:cf:91:76:ca:ff:99:
                    48:b0:ee:3f:12:b8:1a:63:5c:6a:e5:a5:04:7c:85:
                    98:bc:d2:9b:e5:56:1a:cf:2b:f0:8e:b3:a7:c8:ad:
                    66:e0:87:93:42:09:8f:fa:50:f9:68:ff:e3:b8:18:
                    51:ec:3c:5f:81:70:e8:5d:d0:90:7b:d8:d1:1d:5b:
                    36:4d:3b:98:66:36:73:59:9b:8d:a6:52:31:0b:5f:
                    29:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:61:C4:87:16:B3:0B:A0:F2:01:65:1B:E7:8D:99:33:AB:D6:5E:EC
            X509v3 Authority Key Identifier:
                keyid:F3:73:00:86:A1:4F:31:B2:56:40:C1:42:ED:FD:17:BC:93:32:0C:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:25:de:9c:7b:32:f5:fd:e4:71:c7:94:0d:b5:77:50:81:0e:
         fc:83:45:07:b4:0a:34:58:fc:6d:e9:1c:c7:c4:27:f7:bb:1c:
         f0:71:48:01:95:d8:7a:f6:ae:3d:ba:7a:8a:9b:22:ab:e4:1d:
         99:bd:9a:49:ab:a2:47:ec:cf:26:dc:fd:a1:4b:fc:91:81:3e:
         13:29:84:3f:2c:60:80:07:74:06:99:31:32:2e:9b:25:56:7b:
         7f:25:85:bc:48:8c:38:b6:4b:6e:a4:22:a7:ff:d3:b9:d7:26:
         53:db:8a:27:f5:ea:27:70:c0:ab:16:e1:ca:39:14:dd:75:2e:
         cb:2c:e7:d2:b0:72:3d:08:ae:41:ac:fc:1c:c6:7a:ac:92:6b:
         00:6b:b9:0f:5c:fa:4d:ad:3d:fb:5b:66:f6:44:ca:ec:37:98:
         a5:a4:74:1f:26:fb:77:74:2a:43:93:10:84:ab:28:88:70:70:
         2a:84:12:7f:83:5a:29:40:4e:0d:f9:48:7e:8d:53:a5:08:c1:
         1a:0a:f2:30:57:1c:8a:95:db:47:fb:5d:5f:a3:3c:6c:5f:b5:
         24:23:d4:9f:4e:0f:c9:b8:e6:e3:4b:2f:13:1a:c3:3f:17:62:
         b8:a5:4e:6e:74:54:65:93:69:cd:49:3e:b5:4f:a0:c8:0e:67:
         c0:36:5f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----