Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
File:                     gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json)
Hash identifier:          7SejD6XXELJLrgyHcdvhQeH2SnGv9E1HBg8jKNTDwZ8=
Subject key identifier:   FA:12:21:3B:6A:64:C1:5F:59:6B:6A:86:39:62:8D:ED:D3:C9:C4:DE
Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66
Certificate issuer:       /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
Certificate serial:       0196A2771BC89F8D7203CA0CAFF694C327E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
Manifest number:          1523
Signing time:             Mon 05 May 2025 22:00:36 +0000
Manifest this update:     Mon 05 May 2025 22:00:36 +0000
Manifest next update:     Tue 06 May 2025 22:00:36 +0000
Files and hashes:         1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: H8OYyYAv8JUN7TLknZIXyGxlNnRsfafelvoMafIsPx0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 06 May 2025 18:19:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a2:77:1b:c8:9f:8d:72:03:ca:0c:af:f6:94:c3:27:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
        Validity
            Not Before: May  5 22:00:36 2025 GMT
            Not After : May  6 22:00:36 2025 GMT
        Subject: CN=fa12213b6a64c15f596b6a8639628dedd3c9c4de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:6a:65:48:23:8a:4a:37:60:3f:66:55:d8:21:
                    8e:40:2d:2a:2d:96:d3:a6:4f:ff:2f:f3:4c:b1:2c:
                    34:ac:f6:bb:a2:86:ff:e3:19:fe:d1:a4:27:8f:c6:
                    9b:86:fa:f9:14:da:fc:2d:09:3b:c3:44:15:95:79:
                    1e:31:0f:8a:1d:72:77:57:ab:0b:4a:3a:b8:bc:60:
                    6e:5b:53:fb:50:73:09:69:ee:6b:77:1d:ee:23:c7:
                    4c:2c:02:e8:9f:3f:7c:e6:d9:0c:f7:84:84:ae:57:
                    32:95:6e:b8:e7:f1:62:e5:b3:9b:52:c1:bb:85:09:
                    c7:b6:22:f5:cd:b5:58:00:1d:7d:f0:a5:4d:9f:c6:
                    bd:0d:4c:d9:63:22:ff:11:ce:69:e4:c0:fe:ec:3c:
                    e8:32:df:0a:17:0d:be:4b:76:54:02:49:c1:1d:5e:
                    77:61:36:09:9b:8b:59:6f:c1:ce:d4:8f:a6:70:06:
                    b9:9a:0e:0b:5a:7b:0f:dc:a9:51:35:ca:b4:8a:82:
                    fd:86:af:4e:0a:fc:42:da:51:20:32:94:d5:1f:9d:
                    e0:8e:ee:6c:8d:72:bb:25:94:c2:be:b3:17:af:ef:
                    cf:4d:25:ea:50:62:71:5d:15:b5:42:18:cd:5b:34:
                    35:be:ae:d7:ec:3f:7d:fc:29:b6:b3:f8:c5:5b:c2:
                    a4:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:12:21:3B:6A:64:C1:5F:59:6B:6A:86:39:62:8D:ED:D3:C9:C4:DE
            X509v3 Authority Key Identifier:
                keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:27:98:23:45:07:ad:cc:1a:85:11:9e:88:ec:f7:5c:90:60:
         20:4b:ec:f3:c5:12:ba:6a:bd:dd:e0:ff:96:fa:97:bd:96:13:
         18:cb:fb:0c:41:5d:a7:56:ab:4b:1a:f3:e1:b5:5e:12:41:8f:
         32:48:7a:dc:30:e8:5d:fe:7f:cf:ba:98:39:82:8c:09:0d:e2:
         7a:58:28:53:5b:77:ce:97:01:2c:af:c0:b1:2a:bd:ab:b9:44:
         33:65:41:73:df:83:b3:d2:e8:e5:ff:b5:a7:b5:b3:c4:0c:64:
         03:28:d6:e8:3f:64:1a:3d:4b:3c:2e:fd:86:14:47:88:85:cc:
         11:04:ff:bc:b6:27:09:00:bb:08:81:3a:94:9a:9c:5b:aa:e5:
         b7:5e:68:8f:b1:3a:83:da:e6:84:60:3a:81:75:30:85:90:d2:
         e3:ff:b4:31:9b:e2:ae:57:13:ca:2a:f9:e3:2f:97:bd:5d:c2:
         4f:89:4b:02:6e:7c:48:6f:e0:97:cf:0e:c2:48:15:b8:f7:15:
         3b:58:75:a9:e2:bc:17:69:eb:fb:03:16:b0:74:bc:23:98:0b:
         87:8b:57:12:ad:ad:ef:ed:e1:3b:f4:c7:1d:37:05:ef:fb:7f:
         eb:a7:c0:ea:55:7e:2c:c7:06:ca:71:8b:9b:27:f9:3e:57:1b:
         4f:8b:06:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----