Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
File:                     FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft (raw, json)
Hash identifier:          MiofN4JBCUMGtVjYQPXwMDXQamUDeh5g7tsPUolF5uE=
Subject key identifier:   FF:7F:01:5C:66:FE:25:C9:49:83:AF:6D:FB:60:B7:73:7B:26:8F:98
Authority key identifier: 14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A
Certificate issuer:       /CN=14c735259fdb7b83f277adf12d08cc98b5a6100a
Certificate serial:       0196BD812D98361788210E689ADC0443087C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
Manifest number:          0855
Signing time:             Sun 11 May 2025 04:01:21 +0000
Manifest this update:     Sun 11 May 2025 04:01:21 +0000
Manifest next update:     Mon 12 May 2025 04:01:21 +0000
Files and hashes:         1: FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl (hash: jXRBzX7vhGcy2TvclRkoMplt4eIx+jFWiSJ+12yT3lQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 22:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bd:81:2d:98:36:17:88:21:0e:68:9a:dc:04:43:08:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14c735259fdb7b83f277adf12d08cc98b5a6100a
        Validity
            Not Before: May 11 04:01:21 2025 GMT
            Not After : May 12 04:01:21 2025 GMT
        Subject: CN=ff7f015c66fe25c94983af6dfb60b7737b268f98
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:73:45:bd:58:c1:c2:aa:36:52:ba:69:35:03:
                    96:f6:dd:4d:6e:b1:a4:67:e4:27:46:09:6b:8b:d8:
                    04:7a:22:d0:24:37:85:97:6d:cc:9d:ac:65:1f:cb:
                    3e:f3:aa:c4:63:63:98:6e:02:95:36:9a:9d:0b:a3:
                    4c:26:b1:3e:33:5d:5a:78:8b:7e:6b:14:b3:a8:cc:
                    68:05:6d:6d:7d:a2:1e:c9:b5:2c:4f:74:ea:58:91:
                    cf:12:7d:66:69:81:55:26:38:55:bc:b4:f4:73:a3:
                    bc:b4:f6:38:41:4b:71:a5:07:87:a3:da:ff:84:70:
                    24:2e:7c:1d:73:58:df:e3:9c:f4:89:f8:1b:62:0e:
                    73:ab:42:78:69:58:2f:53:a1:28:65:f7:ba:44:69:
                    e9:97:de:48:6a:89:c4:90:ea:c0:d4:f0:08:13:e2:
                    c7:78:d7:de:c2:ba:f3:d3:b1:af:25:fb:02:fc:7d:
                    c3:e9:79:30:11:c3:1b:c2:47:55:2f:e3:b1:8a:3a:
                    7e:4c:09:67:56:9d:3f:36:a8:eb:23:77:c2:cd:42:
                    38:c5:02:99:61:62:88:22:98:cf:23:86:3e:1c:10:
                    21:61:dd:3f:9f:d0:55:89:dd:63:d4:cc:2a:bf:85:
                    0d:89:18:4e:78:8c:86:ff:68:81:6b:a9:a7:ab:4f:
                    fd:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:7F:01:5C:66:FE:25:C9:49:83:AF:6D:FB:60:B7:73:7B:26:8F:98
            X509v3 Authority Key Identifier:
                keyid:14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:45:a6:26:bb:04:93:c5:af:a1:8a:01:76:a2:a0:84:91:a4:
         6b:1a:a2:c4:4b:a8:cd:7a:7c:b6:92:2d:7e:e4:f3:11:a5:d0:
         75:63:e4:8e:ec:85:1e:0c:0b:34:32:08:54:16:b0:13:f1:a0:
         0d:18:2a:d8:72:45:1b:ba:9e:f4:8a:f2:89:f5:44:22:e3:3e:
         95:48:52:0f:37:9b:ba:25:88:ab:22:83:ce:b6:47:79:e7:47:
         42:58:0d:ac:20:8d:b3:2f:da:fa:b4:ed:6f:30:48:dd:d6:5f:
         6d:82:99:c1:a7:42:a4:f9:25:c8:d2:1a:c4:69:61:e9:91:81:
         df:1b:3f:be:90:3e:9b:90:ca:82:9c:e3:df:8b:ab:06:3f:bd:
         66:6b:b7:4f:aa:6d:fd:6c:d8:58:8b:50:68:c5:79:a4:10:b8:
         75:2e:34:74:69:9e:7b:32:ae:ec:37:12:f9:b3:81:f1:3c:9b:
         73:aa:b4:81:08:de:b4:f0:07:02:56:3f:d7:7a:88:e1:a1:04:
         cd:03:d8:aa:ee:cf:60:44:3a:88:47:0a:04:8a:8c:91:bc:c7:
         08:78:1b:40:b7:5f:16:c2:f4:50:c8:71:91:59:36:d6:e0:e9:
         b1:a6:93:4e:4f:57:a7:d7:25:30:cf:f3:0f:af:47:aa:72:ca:
         cf:26:ba:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----