Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
File:                     cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft (raw, json)
Hash identifier:          pS7Oi0OcUciSlfP67soOptiwoMJqGb8Ze4MdAFRV/no=
Subject key identifier:   B4:5A:7E:DF:0E:2A:DA:87:A2:EE:D0:B8:A6:A8:1F:C8:3A:AE:FA:5C
Authority key identifier: 73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2
Certificate issuer:       /CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
Certificate serial:       0196BA7F61D5890B43F469FA8C88A23F87EF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
Manifest number:          01CD
Signing time:             Sat 10 May 2025 14:00:32 +0000
Manifest this update:     Sat 10 May 2025 14:00:32 +0000
Manifest next update:     Sun 11 May 2025 14:00:32 +0000
Files and hashes:         1: cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl (hash: +AmRUldldKo30KGvkFuWxcHae8U9BfHbA53SMz4RYYE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 13:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:ba:7f:61:d5:89:0b:43:f4:69:fa:8c:88:a2:3f:87:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
        Validity
            Not Before: May 10 14:00:32 2025 GMT
            Not After : May 11 14:00:32 2025 GMT
        Subject: CN=b45a7edf0e2ada87a2eed0b8a6a81fc83aaefa5c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:d3:b2:de:91:8e:e2:d8:8c:24:01:37:7f:0f:
                    81:d7:78:05:fa:3f:2e:0c:ae:dc:3d:98:ff:dc:99:
                    36:3c:a5:7e:7a:2b:26:7e:3e:b6:f9:3f:49:e1:86:
                    ba:26:9e:7b:ac:6e:a4:c2:a7:08:4a:d3:ed:ce:f8:
                    2a:cd:33:de:36:71:84:d6:2c:9d:29:e6:10:a4:ea:
                    5c:f9:42:66:9d:be:f0:73:f6:0f:2e:e2:5b:15:f8:
                    37:69:96:fd:48:eb:e7:6a:b2:07:76:70:65:8f:0e:
                    15:ed:f6:08:f1:28:c3:e9:ad:84:bd:fe:74:d1:aa:
                    ec:1f:29:4d:36:0f:22:2e:a2:03:9c:fd:7a:f2:2c:
                    a8:f5:d0:8a:49:49:f7:7f:01:65:dd:f6:25:8f:85:
                    7c:c9:d3:6e:f3:f7:c6:a0:dd:88:d3:f9:0b:a1:9e:
                    2a:62:0d:a7:e7:d0:2c:ea:b7:16:8a:1b:7b:7e:c7:
                    d9:72:31:2d:37:45:53:47:97:3f:3b:15:4d:aa:43:
                    d0:e4:34:da:01:82:96:da:4b:90:9d:18:d7:2a:6d:
                    96:9e:6d:8f:9b:4e:59:df:00:a5:7f:da:08:52:8c:
                    eb:4a:dc:12:d0:e8:25:96:6d:d9:6c:5e:2f:47:26:
                    4d:eb:43:ac:92:af:81:be:b9:46:e0:b9:ed:5d:7c:
                    c7:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:5A:7E:DF:0E:2A:DA:87:A2:EE:D0:B8:A6:A8:1F:C8:3A:AE:FA:5C
            X509v3 Authority Key Identifier:
                keyid:73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:3b:68:12:63:a8:ed:cb:0b:e5:42:ce:42:85:15:e5:4c:dc:
         78:32:44:a9:49:69:aa:a3:1a:7d:7d:21:6b:c0:b2:24:0f:8b:
         ea:4d:d4:d6:89:6c:ba:45:93:3c:8a:de:e7:f5:11:75:86:d9:
         28:eb:e4:42:76:9d:40:ee:98:14:63:e2:e7:bf:2e:60:e3:85:
         ea:a6:de:2b:af:7c:e2:ec:cd:8e:16:60:fc:4f:4a:27:95:09:
         42:5c:95:a2:74:88:d1:8c:72:56:17:17:7f:58:8a:b1:bc:6f:
         77:fb:b7:62:55:b7:1a:c5:ee:f7:ee:0c:63:3b:fb:9e:f0:99:
         8e:8a:de:60:6d:a8:1e:0d:d0:24:ce:a3:74:51:97:f4:f5:a4:
         1d:de:0c:61:92:13:72:98:dd:d8:0e:92:f0:74:f2:f0:46:0a:
         8e:7a:05:86:d3:91:0b:51:ff:59:28:1e:31:7e:51:64:ae:01:
         21:48:ed:2a:b0:1d:39:c8:9a:6d:8c:7c:1e:3d:be:16:d7:8e:
         6c:33:0f:fb:30:f8:2d:76:35:8c:6f:e9:12:38:ee:82:66:61:
         85:ff:78:1d:ad:fa:1e:e3:26:0a:da:32:bc:45:64:b7:fa:37:
         e2:bd:39:91:62:df:39:2e:54:79:14:57:64:a1:9c:10:53:8d:
         25:d8:34:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----