Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
File:                     eYCaQAStlYNQpkbViavLPP3z7S4.mft (raw, json)
Hash identifier:          AxsD1N1V8zG382xa5gU4I18XIY92FU7l2A869TnfbKU=
Subject key identifier:   71:B2:2B:1F:DF:0A:8C:65:B1:FD:7E:53:7D:94:73:58:81:93:27:64
Authority key identifier: 79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E
Certificate issuer:       /CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
Certificate serial:       01969D8799D6CC74CD169186CC000C07E479
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
Manifest number:          06A6
Signing time:             Sun 04 May 2025 23:00:31 +0000
Manifest this update:     Sun 04 May 2025 23:00:31 +0000
Manifest next update:     Mon 05 May 2025 23:00:31 +0000
Files and hashes:         1: eYCaQAStlYNQpkbViavLPP3z7S4.crl (hash: fVcxHIYlLGl0LrXVwotZLvVBhGfAYQtprz+cAO6M9Gc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 05 May 2025 22:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:9d:87:99:d6:cc:74:cd:16:91:86:cc:00:0c:07:e4:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
        Validity
            Not Before: May  4 23:00:31 2025 GMT
            Not After : May  5 23:00:31 2025 GMT
        Subject: CN=71b22b1fdf0a8c65b1fd7e537d94735881932764
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:0e:84:50:11:a3:03:38:b2:94:d8:10:bc:c2:
                    7c:93:52:6e:bb:cc:bb:96:af:3f:78:fb:b7:e6:89:
                    70:97:97:9f:2d:14:5b:a3:90:37:3d:89:df:53:34:
                    c7:61:fe:a5:08:3d:5a:fd:dd:9c:25:73:24:94:1f:
                    a2:c1:bf:15:d9:39:de:7c:05:18:1a:41:3e:11:d8:
                    de:3d:2d:ec:db:df:1b:4f:ca:26:23:d6:d8:38:58:
                    b0:c1:b2:1a:ff:74:10:21:a3:f4:32:41:d2:a0:09:
                    2a:69:aa:db:9b:93:97:6b:38:6f:81:3a:2a:a3:ba:
                    11:c4:a9:ae:cf:f8:01:f5:c9:26:8c:dd:4b:ca:b4:
                    43:78:9f:a1:9b:0d:be:4a:36:15:58:0a:bc:c2:7f:
                    5f:e4:5e:a2:c6:78:84:06:94:f1:5e:d1:ec:35:11:
                    00:c5:d1:a8:37:b4:39:00:50:74:c6:dc:e1:30:ed:
                    c6:72:e4:c7:a6:0a:95:e9:ef:91:b5:ce:b6:1f:da:
                    e1:89:2a:3b:94:d6:d9:ae:74:b7:a3:52:8e:99:dd:
                    1c:7c:28:9c:fd:29:b7:18:ab:12:20:e0:f3:b3:6c:
                    da:cb:99:74:6c:6e:72:32:17:c7:7e:87:74:f9:44:
                    b1:2c:81:e2:bf:62:ed:01:ff:e5:29:45:b2:8c:59:
                    2f:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:B2:2B:1F:DF:0A:8C:65:B1:FD:7E:53:7D:94:73:58:81:93:27:64
            X509v3 Authority Key Identifier:
                keyid:79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:c8:f1:a6:e6:4f:89:0f:3c:b9:cd:09:46:6a:49:e1:10:d4:
         bd:05:e9:6b:23:0f:4e:cf:fa:8b:9d:32:ed:e0:63:78:dc:b5:
         b9:8e:60:90:d6:92:a5:0b:d8:6e:51:f2:76:af:ca:92:cb:37:
         4a:f1:d6:c7:d4:41:70:36:91:d4:48:84:74:b1:ea:ad:33:69:
         1c:d7:56:52:8f:e1:07:b1:5f:5a:f3:26:28:c3:5d:4d:b7:89:
         42:9f:dd:e2:fc:65:53:c4:75:63:16:c8:8b:6a:4d:9e:7f:34:
         e5:b1:d2:ad:75:35:d2:83:f2:bf:29:92:0e:8d:b8:f3:8b:13:
         be:1b:d7:07:27:57:9a:86:94:ae:5f:f0:7e:5d:88:17:31:c2:
         89:78:91:7d:89:fe:4f:fb:35:b5:7f:1a:d6:90:f1:e8:ae:40:
         47:fa:06:46:99:94:f4:ce:d7:82:c4:31:e0:84:e3:6a:23:98:
         15:ab:8a:74:08:a4:aa:1f:75:8f:1d:fd:df:64:15:1f:5b:ad:
         d3:54:b1:c2:49:c3:54:70:de:77:b3:42:c2:d8:26:fa:90:e7:
         85:55:0e:a5:a1:bc:fb:d5:4b:5c:cd:2b:c7:28:e0:57:2c:ec:
         e1:71:1e:31:c7:15:42:b6:b1:5c:19:71:9c:6a:a3:67:35:54:
         93:5a:fd:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----