Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
File:                     3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft (raw, json)
Hash identifier:          Ssl8YfgeiKb+SXKUKapjf3qJB9ZkO/9M7lNr7IAp25c=
Subject key identifier:   7E:1E:5F:A7:86:05:7B:64:52:60:F1:7F:43:2D:84:CA:73:39:56:12
Authority key identifier: DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4
Certificate issuer:       /CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
Certificate serial:       0196B1EA8FCE6C33621E6124B6D0971C1AE1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
Manifest number:          0C20
Signing time:             Thu 08 May 2025 22:01:01 +0000
Manifest this update:     Thu 08 May 2025 22:01:01 +0000
Manifest next update:     Fri 09 May 2025 22:01:01 +0000
Files and hashes:         1: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl (hash: ewcbjBvS+xS6gsaswxDDVBQm7crcnO+KbTnUf2020oo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 09 May 2025 22:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b1:ea:8f:ce:6c:33:62:1e:61:24:b6:d0:97:1c:1a:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
        Validity
            Not Before: May  8 22:01:01 2025 GMT
            Not After : May  9 22:01:01 2025 GMT
        Subject: CN=7e1e5fa786057b645260f17f432d84ca73395612
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:71:a1:6c:92:d5:4a:db:eb:d2:81:e0:aa:bf:
                    1f:2d:51:1f:52:d8:e9:e6:fc:50:4e:43:7c:d8:b5:
                    d6:56:7d:c3:4e:c5:8c:b3:fa:dd:cb:75:1a:b6:6f:
                    f6:42:3c:73:f7:fb:00:97:84:94:ad:8b:c4:4c:e9:
                    5c:f7:35:27:32:bf:25:05:38:82:24:0e:fd:ee:1e:
                    8b:88:be:db:0a:da:f9:7d:11:3d:a6:77:ce:a7:f6:
                    eb:4f:a0:07:aa:67:64:d0:76:3c:58:51:ce:17:e2:
                    73:27:93:e2:5d:dc:db:18:f0:78:72:a2:33:cb:13:
                    fd:42:ea:3c:aa:a9:3b:f8:53:3d:ae:9b:78:71:c1:
                    c4:9e:58:a3:b5:68:df:b6:fa:d6:57:df:ea:dd:41:
                    75:8a:4b:33:62:1a:f4:4b:e7:c5:40:8d:a1:fb:f9:
                    af:1f:b2:64:3d:d5:ce:72:d0:28:4d:3b:05:de:15:
                    8b:4f:e0:7c:bf:a3:54:bd:17:5d:08:aa:89:2f:db:
                    4c:fb:70:66:b2:d8:43:66:61:0a:73:77:52:7f:de:
                    2d:a7:02:02:1c:7f:19:b4:18:59:94:df:a5:08:c7:
                    20:a0:32:85:5b:4b:5f:a6:b3:1e:6b:96:a4:ae:2b:
                    e9:5f:33:f1:16:44:4c:e9:96:db:34:a2:b3:8b:1c:
                    fd:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:1E:5F:A7:86:05:7B:64:52:60:F1:7F:43:2D:84:CA:73:39:56:12
            X509v3 Authority Key Identifier:
                keyid:DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:21:41:f5:4b:0e:36:bf:fb:71:8a:0e:47:d7:8e:ca:c7:65:
         57:d8:c5:ac:30:7e:16:2a:43:2b:8e:c4:ee:7e:1f:b8:b9:e1:
         f1:64:30:d0:40:29:a5:0b:b5:fc:8d:82:a0:fc:13:cc:cd:2d:
         77:97:fa:75:a1:14:da:2a:a8:9f:c1:42:d6:b3:85:31:4c:55:
         f2:26:0a:d6:ae:8a:be:b8:b2:79:78:02:be:18:a2:90:2f:d8:
         d6:d6:52:43:1e:9b:3c:31:cc:40:33:96:8c:5b:e7:13:58:c7:
         2a:1a:41:99:5a:9b:35:ce:57:d8:a8:9e:23:5c:dd:ea:69:d5:
         ac:3d:0e:f6:51:df:f2:6f:e2:2d:58:d5:1c:f1:d3:7a:ff:94:
         a3:6b:47:ca:58:c9:ee:9b:2c:5d:fc:b3:22:45:68:b4:6e:d9:
         8c:e7:af:d9:f2:64:1b:af:c4:25:68:71:1f:60:84:d6:20:90:
         3b:eb:4b:d7:48:f5:64:4e:00:21:2b:c8:d1:08:65:4f:ef:44:
         1c:ee:a7:7a:94:98:0c:08:80:63:40:11:55:e6:cb:9b:3c:11:
         4e:22:30:55:38:65:e5:92:b5:2e:7b:97:cb:a2:8b:e9:ed:c4:
         48:c5:c0:4f:65:d0:20:f7:73:7e:ad:56:71:a2:f8:3c:19:a4:
         b7:74:7b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----