Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File:                     6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier:          oTmafc88elzQ7LpvEO7WPeKbohSr4mZD8lBqSOGsfoY=
Subject key identifier:   D5:57:30:10:8A:55:76:59:11:EE:C2:59:0F:7B:75:49:9D:43:0B:91
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer:       /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial:       0196DA788B9FA8BA9EBCB656EFAEBE3FFEDA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number:          0192
Signing time:             Fri 16 May 2025 19:00:55 +0000
Manifest this update:     Fri 16 May 2025 19:00:55 +0000
Manifest next update:     Sat 17 May 2025 19:00:55 +0000
Files and hashes:         1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: 9Y2Y9Q0AtItAnmg9t8ba7jUoQ1YxP9a7kza2lSUbao0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 17 May 2025 17:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:da:78:8b:9f:a8:ba:9e:bc:b6:56:ef:ae:be:3f:fe:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
        Validity
            Not Before: May 16 19:00:55 2025 GMT
            Not After : May 17 19:00:55 2025 GMT
        Subject: CN=d55730108a55765911eec2590f7b75499d430b91
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:fc:ab:fe:da:4a:0f:d3:02:59:38:e8:97:90:
                    de:60:40:7b:e7:c5:33:27:45:40:1b:e6:67:f5:06:
                    a7:c1:d0:d6:8e:48:13:02:65:b8:d1:6c:11:d4:68:
                    eb:48:88:d3:06:41:96:e0:85:e2:25:4a:32:68:a5:
                    ff:fd:68:aa:c6:49:7b:f9:f1:5e:cd:9d:83:42:d3:
                    49:0e:de:5a:e6:14:df:77:2d:ce:30:b1:30:ad:1f:
                    09:4b:71:a0:f7:14:8f:8e:99:b6:03:22:5b:a8:fb:
                    04:b8:fc:54:da:e9:b4:c2:84:ff:57:6a:ec:da:fd:
                    11:90:8d:6c:13:16:09:90:78:46:a9:02:ab:32:78:
                    18:68:0e:f8:6a:aa:2f:b5:57:c8:62:d5:f2:fe:40:
                    19:a5:00:fc:bc:96:49:4a:9c:1b:e6:07:a8:0a:48:
                    94:4e:bf:f3:c0:6a:91:f8:2c:1c:cb:a5:04:a6:19:
                    da:68:a4:86:ad:8e:bd:e8:a3:04:49:a0:6c:8f:42:
                    36:c1:4e:7c:e7:99:3d:34:2e:40:90:49:40:bb:ae:
                    97:b5:dc:b3:c8:f3:37:ee:a9:3f:64:ba:4f:03:c8:
                    97:76:6f:df:59:1c:f5:37:33:76:41:92:f1:7c:32:
                    30:4a:4b:52:2e:00:d2:0a:2a:3f:33:f2:f3:66:ce:
                    a1:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:57:30:10:8A:55:76:59:11:EE:C2:59:0F:7B:75:49:9D:43:0B:91
            X509v3 Authority Key Identifier:
                keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:80:17:a2:ed:57:d1:3b:d1:c3:f8:63:23:d7:a1:1d:8b:63:
         8d:4a:2f:1d:8b:a3:82:76:8b:37:9d:fa:6e:e7:95:3a:3a:ee:
         fa:f6:93:c6:f5:5a:57:07:71:be:24:6a:7b:53:50:47:d5:73:
         bb:d0:93:17:00:24:73:83:1c:7f:07:a5:95:4b:cc:02:af:7a:
         2f:8f:92:13:42:25:90:49:cb:20:e5:40:ce:e9:7c:9a:56:b3:
         0d:72:2c:a8:8b:ee:b1:01:45:92:4f:84:cf:e6:e8:e3:e5:38:
         b5:b8:8e:12:41:11:6a:d8:5a:ba:64:d2:b8:d9:bb:94:a9:ff:
         07:76:13:6b:75:3d:f0:71:40:5d:cc:01:9f:92:c8:bc:e2:82:
         86:4e:bb:c1:a7:cf:15:37:03:84:a1:ed:1a:3d:0e:4a:13:19:
         2e:61:d8:11:c3:d4:73:25:e5:32:9f:86:bf:bd:17:15:ed:dd:
         72:73:4e:0c:3d:77:4d:92:b9:ed:73:86:22:ac:fc:46:06:99:
         9e:dc:b7:57:d9:49:bf:7e:cd:f9:af:d3:3b:8e:41:12:79:dc:
         d2:11:99:ff:74:ed:5b:3c:44:cb:b7:68:cf:4c:ce:a6:ba:c5:
         52:0c:8f:00:9f:94:54:83:57:91:5d:75:88:5a:e6:db:13:e3:
         5b:76:00:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----