Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft
File:                     bIlKsevTD7N84imjdNPjE52QUY8.mft (raw, json)
Hash identifier:          5kJbDZs5MZ8DCc/hNyArBr5TvGyPFA8bOrtTNnxDl8U=
Subject key identifier:   C3:94:7A:96:9B:20:70:C0:13:18:F8:2B:DD:91:52:F0:62:36:A9:80
Authority key identifier: 6C:89:4A:B1:EB:D3:0F:B3:7C:E2:29:A3:74:D3:E3:13:9D:90:51:8F
Certificate issuer:       /CN=6c894ab1ebd30fb37ce229a374d3e3139d90518f
Certificate serial:       0196D1ACBE921BA25D80190BCD80551BF2CE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft
Manifest number:          057E
Signing time:             Thu 15 May 2025 02:01:21 +0000
Manifest this update:     Thu 15 May 2025 02:01:21 +0000
Manifest next update:     Fri 16 May 2025 02:01:21 +0000
Files and hashes:         1: bIlKsevTD7N84imjdNPjE52QUY8.crl (hash: YwygeqSUV4sIObyf2Y/I4OWFSL4C9565cjdHDXyu3+0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 16 May 2025 02:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:d1:ac:be:92:1b:a2:5d:80:19:0b:cd:80:55:1b:f2:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6c894ab1ebd30fb37ce229a374d3e3139d90518f
        Validity
            Not Before: May 15 02:01:21 2025 GMT
            Not After : May 16 02:01:21 2025 GMT
        Subject: CN=c3947a969b2070c01318f82bdd9152f06236a980
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:57:cc:12:b1:43:ad:49:a1:3c:8b:db:e3:70:
                    ad:3f:94:48:ae:c5:7f:47:8b:00:aa:a6:96:e4:11:
                    46:de:65:14:18:94:7b:07:a9:c1:33:75:64:93:5e:
                    97:bc:d5:2c:e6:fd:4e:31:b8:a4:92:ba:cf:6f:4e:
                    bb:e1:c1:e1:f7:d1:ea:29:91:23:37:9c:5f:05:0f:
                    ee:9c:93:16:11:5b:9b:8a:4e:0d:c5:9f:fd:b7:f5:
                    2e:02:4d:9f:bb:1d:72:8a:0b:29:c2:15:05:98:f2:
                    76:18:29:32:33:4c:a1:26:08:f9:f0:91:6d:e7:00:
                    67:a3:15:2d:48:bd:b7:be:f9:12:e9:fa:17:80:f7:
                    40:f7:b1:32:77:2b:42:b6:75:e3:44:e9:ea:59:88:
                    1b:a3:94:2b:6f:ab:af:cc:ca:e8:fe:91:14:5f:21:
                    32:01:0a:a4:ad:45:9d:02:ce:10:c7:74:05:07:f4:
                    b3:af:10:e2:b4:af:d8:67:64:41:89:00:3a:02:cb:
                    4a:f3:1f:5d:d0:ef:88:9b:72:94:0e:d4:2d:0d:89:
                    8c:ec:4a:3d:ab:40:2d:50:c4:f1:2e:94:b0:d4:5d:
                    db:57:22:e2:56:4c:61:50:f9:cd:b1:39:b2:77:a9:
                    31:68:13:2f:4d:b3:b3:2d:13:7a:a6:7d:19:8c:78:
                    86:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:94:7A:96:9B:20:70:C0:13:18:F8:2B:DD:91:52:F0:62:36:A9:80
            X509v3 Authority Key Identifier:
                keyid:6C:89:4A:B1:EB:D3:0F:B3:7C:E2:29:A3:74:D3:E3:13:9D:90:51:8F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:b1:f7:96:4e:39:39:e1:fd:42:4a:94:71:8c:ce:63:95:a5:
         20:26:03:0f:bc:26:33:78:a5:a7:b0:eb:ba:a1:26:3f:27:09:
         ed:05:dc:31:1b:bc:c8:c4:57:fd:b8:14:3f:cd:f7:e7:8e:11:
         24:b8:c3:ff:8f:34:9c:46:cf:93:0f:32:06:9f:2a:c1:f7:65:
         1f:59:cb:62:88:11:fc:0e:7e:c0:98:ab:bf:04:cf:ed:94:bd:
         f8:5c:4c:a3:d2:08:60:d9:16:61:c5:d8:c7:fa:75:b6:b1:f8:
         4c:7e:3e:4f:4c:58:e9:d6:5d:cb:98:a3:16:42:b6:df:3e:0e:
         63:d7:6f:1a:c0:96:5a:33:fc:ca:88:ef:58:7a:0c:4c:dd:e6:
         de:c0:db:2d:35:05:dd:af:dc:c3:41:0b:6b:b9:95:0b:58:5f:
         56:65:eb:0d:c2:88:6b:7c:8a:ad:9a:f3:9e:a9:f0:08:33:78:
         7d:59:28:8c:1b:55:31:b3:0b:b7:27:9e:88:b6:06:b9:c9:00:
         45:f7:40:25:98:36:6e:30:52:e6:c1:fd:b7:ae:f6:1c:01:be:
         98:ae:13:58:11:3d:d4:96:6a:22:c2:ec:55:69:2e:6a:a5:0e:
         f4:35:16:07:b9:68:85:9d:29:32:60:da:0c:a5:9d:40:67:bb:
         9a:96:6c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----