Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
File:                     FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft (raw, json)
Hash identifier:          68KVSKqwJyzXj2NG1yadBpTXMFuNFYL85oru17OnDHg=
Subject key identifier:   F2:FC:DF:F3:64:F0:DD:66:8B:15:72:D3:DC:95:9A:A1:2B:82:C3:D8
Authority key identifier: 16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08
Certificate issuer:       /CN=16536fc756a5864aaa2c1e77bb764248dabe2608
Certificate serial:       0196B82334CA47341E12A1EC0732A057F789
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
Manifest number:          0583
Signing time:             Sat 10 May 2025 03:00:37 +0000
Manifest this update:     Sat 10 May 2025 03:00:37 +0000
Manifest next update:     Sun 11 May 2025 03:00:37 +0000
Files and hashes:         1: FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl (hash: Ya9F7OsfVP77k0nAczPVj7dSbTHaSXsIrA2KRyQdx2w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 10 May 2025 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b8:23:34:ca:47:34:1e:12:a1:ec:07:32:a0:57:f7:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=16536fc756a5864aaa2c1e77bb764248dabe2608
        Validity
            Not Before: May 10 03:00:37 2025 GMT
            Not After : May 11 03:00:37 2025 GMT
        Subject: CN=f2fcdff364f0dd668b1572d3dc959aa12b82c3d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:2d:c2:0e:a1:75:e3:13:88:34:c8:83:4c:1b:
                    6b:6e:56:52:38:4d:c2:cd:9d:79:c2:b7:d8:5e:68:
                    58:46:75:1a:22:35:88:49:ee:b6:ba:95:ee:ee:d1:
                    0d:9d:48:f0:97:30:1e:4a:58:cc:4c:23:ff:33:2f:
                    b2:a6:fd:c4:c4:b8:49:41:e6:05:ba:5d:e8:66:77:
                    aa:c4:4e:a4:a4:35:4e:fd:0f:fa:11:c1:bc:a0:4c:
                    78:76:98:04:d0:c3:01:dd:80:f8:19:cf:4c:cb:7b:
                    7a:77:d1:a5:02:27:5c:9b:ed:02:66:db:0b:40:16:
                    f3:ef:a3:5e:d2:38:f1:7d:e6:d3:86:cb:33:8d:56:
                    03:fa:ee:3c:68:80:a0:b8:08:b4:66:5f:15:45:23:
                    46:95:2e:85:ac:4f:9f:18:ba:ba:9e:58:50:4c:a7:
                    a3:ac:a7:13:2f:73:bc:5b:c5:07:52:6e:9d:c1:8c:
                    62:35:cd:31:3b:c7:5e:90:17:ef:4e:fd:1a:a6:d8:
                    46:bf:ac:5b:6c:49:1c:12:93:6d:4d:e2:38:92:83:
                    48:28:2e:4c:0a:aa:2d:09:1e:8a:06:62:13:42:c5:
                    d8:8c:d5:5b:b1:67:48:b8:ef:0b:47:b6:02:95:5d:
                    2a:6b:c6:8c:47:c6:64:ec:b2:41:56:f1:eb:71:8f:
                    26:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:FC:DF:F3:64:F0:DD:66:8B:15:72:D3:DC:95:9A:A1:2B:82:C3:D8
            X509v3 Authority Key Identifier:
                keyid:16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:df:71:07:6b:47:15:e1:0d:a4:c7:b3:4b:f0:46:7d:d7:59:
         f2:73:77:b1:25:26:63:13:85:a6:95:bd:9d:2a:75:ab:a5:3d:
         49:24:61:29:d7:77:d1:41:0a:1a:1c:72:d3:a9:a3:d6:35:71:
         63:7b:ba:1a:6d:c3:5e:a9:08:ec:cb:6c:f2:3a:d3:19:6e:71:
         f9:8e:93:28:7b:dd:3e:a8:11:4e:1a:71:71:d6:78:b9:a8:13:
         2c:38:97:a0:7e:2d:5b:0b:20:4a:86:b8:33:7e:7c:96:61:bc:
         ee:d6:90:0a:b8:59:26:4c:b8:6f:e5:a1:68:5d:a6:39:67:d8:
         96:37:73:3f:7e:50:b9:bc:d9:83:33:53:7d:1a:31:44:82:53:
         d4:f2:04:75:2d:79:18:71:cb:77:ea:e4:76:50:5f:cd:26:f5:
         0c:91:80:de:7d:41:e3:86:03:de:7c:41:7f:88:7d:4d:36:a5:
         52:a7:05:70:71:d1:32:eb:27:9f:cb:2a:4b:fc:d5:c9:b9:c6:
         93:49:6d:c4:4f:82:e4:d1:93:24:76:68:ed:2d:d7:36:29:d5:
         6a:03:2d:ec:af:01:40:e0:eb:70:ac:b6:e1:d5:e5:36:66:6a:
         c8:49:64:ea:83:75:fd:20:71:70:18:b5:2a:26:f2:c2:16:23:
         4a:34:28:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----