Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft
File:                     mXZKyKibCft4hQ10xo4dqo8-KvE.mft (raw, json)
Hash identifier:          zd7yJXhVidTeRryhQghMD8qVuHt5df5aAqMPqUtQKpk=
Subject key identifier:   87:46:44:D5:81:31:A3:37:97:41:00:D4:2C:81:B1:D7:FA:0E:56:74
Authority key identifier: 99:76:4A:C8:A8:9B:09:FB:78:85:0D:74:C6:8E:1D:AA:8F:3E:2A:F1
Certificate issuer:       /CN=99764ac8a89b09fb78850d74c68e1daa8f3e2af1
Certificate serial:       0196C79674AC4E6EBA7F52BD96AF6562572E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mXZKyKibCft4hQ10xo4dqo8-KvE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft
Manifest number:          074C
Signing time:             Tue 13 May 2025 03:00:48 +0000
Manifest this update:     Tue 13 May 2025 03:00:48 +0000
Manifest next update:     Wed 14 May 2025 03:00:48 +0000
Files and hashes:         1: mXZKyKibCft4hQ10xo4dqo8-KvE.crl (hash: mZNxwHkcXgwXdpR7cfBm/NPjrkSb4Uke8yUUfJ+iR8A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mXZKyKibCft4hQ10xo4dqo8-KvE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 13 May 2025 23:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c7:96:74:ac:4e:6e:ba:7f:52:bd:96:af:65:62:57:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99764ac8a89b09fb78850d74c68e1daa8f3e2af1
        Validity
            Not Before: May 13 03:00:48 2025 GMT
            Not After : May 14 03:00:48 2025 GMT
        Subject: CN=874644d58131a337974100d42c81b1d7fa0e5674
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:f0:6e:f2:26:90:11:90:6a:75:8d:83:6d:f3:
                    dc:17:88:db:89:da:06:b2:9e:f7:38:81:a0:44:4f:
                    08:82:bc:4a:57:29:b7:e4:e8:38:0c:4e:e2:9e:e5:
                    08:65:6b:dd:be:ce:22:50:09:00:12:05:91:1c:45:
                    8c:c0:9f:5c:95:27:f5:1c:75:b0:26:2b:28:bc:80:
                    11:4f:db:0e:e5:d6:6b:42:28:8b:e6:bb:a8:3b:b4:
                    7f:a6:c1:9d:bb:d5:c6:46:1a:91:d5:ae:52:9a:5f:
                    62:12:30:13:33:c1:20:b7:10:68:59:aa:39:f5:3e:
                    69:2c:30:2b:68:0c:3b:8e:c0:94:34:00:65:52:36:
                    d5:ba:68:ef:b2:62:cd:0b:89:f7:af:f8:24:d5:9f:
                    13:a4:b2:86:9d:08:6e:c5:27:0c:2b:4e:ef:db:83:
                    f7:45:d3:e6:be:55:5a:d9:04:9c:7d:1f:0d:2e:1d:
                    f0:70:63:ca:c8:b5:72:a3:07:ae:b0:66:2d:41:4d:
                    54:15:ff:0f:43:4a:16:06:6b:ec:97:17:c1:d0:0e:
                    8c:90:bb:5f:82:25:d3:f8:a7:96:f8:f0:4d:f2:03:
                    83:fb:93:9a:c0:3a:b2:f9:de:dd:e1:14:ae:6d:dc:
                    e4:81:9f:62:5f:b9:59:2d:40:7a:ed:57:4c:ac:fc:
                    68:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:46:44:D5:81:31:A3:37:97:41:00:D4:2C:81:B1:D7:FA:0E:56:74
            X509v3 Authority Key Identifier:
                keyid:99:76:4A:C8:A8:9B:09:FB:78:85:0D:74:C6:8E:1D:AA:8F:3E:2A:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXZKyKibCft4hQ10xo4dqo8-KvE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:d6:be:d8:c8:ec:4c:7f:eb:3a:f8:41:dd:61:63:78:f5:93:
         83:7e:43:ae:a0:ac:4c:7c:d2:a3:ec:57:1f:30:9d:05:ce:26:
         7e:2d:78:26:a7:1c:2a:71:e5:6d:b3:45:f0:5f:37:22:55:84:
         81:be:97:3e:8f:8b:e2:e1:5c:d7:9a:88:e4:36:2b:a9:1b:02:
         03:c5:81:42:52:f0:d4:9b:f3:d0:eb:4c:62:d8:d9:3c:e6:18:
         8b:e6:f4:6c:e8:25:a9:24:92:92:9c:bd:e6:91:31:58:4a:fa:
         fe:49:10:62:58:5a:9e:61:a7:1b:49:c9:34:97:47:e2:89:1e:
         6e:aa:91:7d:50:0f:79:56:ce:47:9f:5e:63:22:c2:17:4f:52:
         7b:55:c8:95:6c:02:e6:44:52:e9:3b:ad:93:ca:e1:73:f3:d4:
         eb:6e:f8:3b:5e:7c:17:1e:bd:12:e8:13:7b:97:b2:79:e1:cc:
         9f:07:67:17:53:a7:e4:2f:69:08:6b:d2:a8:09:c8:1b:a4:c1:
         02:e7:f4:c4:11:85:64:19:b9:1f:07:9a:db:5b:f1:b9:2b:a6:
         0b:59:f6:d8:fb:4a:89:34:73:77:f6:1e:04:7c:df:49:64:5b:
         cb:b1:50:03:ec:30:3a:41:a5:04:86:bf:0c:5e:3c:01:9d:60:
         60:05:4c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----