Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8d2ba7-c6b7-470b-85aa-0c47a41f3a90/1/COKNBckBhf5-Yq8c7iXIg7b-IjY.mft
File:                     COKNBckBhf5-Yq8c7iXIg7b-IjY.mft (raw, json)
Hash identifier:          wtn6Layi2riEjNWf2sCxPAPUTwDYPxJh2cGca9FONZ0=
Subject key identifier:   F7:3C:6B:B0:90:F4:CC:28:16:F6:B6:FF:33:E8:F9:51:BD:F1:3E:84
Authority key identifier: 08:E2:8D:05:C9:01:85:FE:7E:62:AF:1C:EE:25:C8:83:B6:FE:22:36
Certificate issuer:       /CN=08e28d05c90185fe7e62af1cee25c883b6fe2236
Certificate serial:       0196A5AF243B76C749C2576EDC0C3F0A7E1E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/COKNBckBhf5-Yq8c7iXIg7b-IjY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/8d2ba7-c6b7-470b-85aa-0c47a41f3a90/1/COKNBckBhf5-Yq8c7iXIg7b-IjY.mft
Manifest number:          0483
Signing time:             Tue 06 May 2025 13:00:40 +0000
Manifest this update:     Tue 06 May 2025 13:00:40 +0000
Manifest next update:     Wed 07 May 2025 13:00:40 +0000
Files and hashes:         1: COKNBckBhf5-Yq8c7iXIg7b-IjY.crl (hash: 4vnawcWx05SaBdPXJyYwcsSXhSjqi5f0DIOFOLbzWXI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/8d2ba7-c6b7-470b-85aa-0c47a41f3a90/1/COKNBckBhf5-Yq8c7iXIg7b-IjY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/8d2ba7-c6b7-470b-85aa-0c47a41f3a90/1/COKNBckBhf5-Yq8c7iXIg7b-IjY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/COKNBckBhf5-Yq8c7iXIg7b-IjY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 07 May 2025 13:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a5:af:24:3b:76:c7:49:c2:57:6e:dc:0c:3f:0a:7e:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08e28d05c90185fe7e62af1cee25c883b6fe2236
        Validity
            Not Before: May  6 13:00:40 2025 GMT
            Not After : May  7 13:00:40 2025 GMT
        Subject: CN=f73c6bb090f4cc2816f6b6ff33e8f951bdf13e84
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:69:38:da:28:cd:e3:dc:6e:28:58:5f:3e:19:
                    81:7d:f4:ac:76:88:56:11:92:88:ec:32:a5:4d:2d:
                    15:f8:7b:27:e5:9e:e9:28:64:3e:8c:b0:92:4e:7b:
                    ef:3a:d4:7f:8c:4a:8b:dc:e7:68:e9:6a:57:d0:df:
                    85:52:61:d2:33:2b:b7:15:ae:4c:9d:62:c3:19:8e:
                    23:16:28:6c:c0:e8:07:67:88:b4:d7:5e:d0:33:00:
                    74:d0:0a:df:e1:3a:b6:93:a3:b3:c0:48:9b:f7:19:
                    73:2e:5e:78:74:85:ac:f3:ca:a5:d8:4b:34:83:95:
                    7d:04:40:8a:8e:d5:7f:c7:af:02:9e:29:c2:df:b1:
                    31:39:b5:ff:2f:80:f7:f6:c8:75:0e:5d:8c:1d:0a:
                    c8:f9:df:c8:db:ff:ab:72:42:ff:cc:fd:96:57:c1:
                    96:ef:f5:b3:44:31:59:03:d9:1a:ad:29:8e:cb:54:
                    20:69:3c:83:85:0d:f6:b0:eb:43:b5:58:ff:23:b4:
                    72:05:3d:d9:45:7b:63:2d:d5:54:a0:63:2b:ed:3a:
                    a7:e4:bc:4f:b6:16:24:2c:cf:27:f6:16:53:0f:a0:
                    b2:65:2b:eb:2f:e3:11:26:30:57:09:b3:73:0c:83:
                    2d:c9:9b:81:fc:04:e0:3c:9a:b8:97:b4:8b:6c:e9:
                    fd:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:3C:6B:B0:90:F4:CC:28:16:F6:B6:FF:33:E8:F9:51:BD:F1:3E:84
            X509v3 Authority Key Identifier:
                keyid:08:E2:8D:05:C9:01:85:FE:7E:62:AF:1C:EE:25:C8:83:B6:FE:22:36

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/COKNBckBhf5-Yq8c7iXIg7b-IjY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8d2ba7-c6b7-470b-85aa-0c47a41f3a90/1/COKNBckBhf5-Yq8c7iXIg7b-IjY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8d2ba7-c6b7-470b-85aa-0c47a41f3a90/1/COKNBckBhf5-Yq8c7iXIg7b-IjY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:8b:d3:0f:9d:91:41:52:0f:d6:90:34:8c:c1:2a:86:3b:61:
         63:ae:95:c2:cb:42:35:7b:fb:d1:d5:13:65:f0:b9:1b:b9:0e:
         ec:d3:d1:7c:99:e1:75:18:7d:a2:f0:fd:3d:30:d5:c6:58:6c:
         3f:08:f4:f9:32:eb:04:95:ad:5e:53:72:83:8e:25:41:75:21:
         eb:ee:4e:9e:15:9d:22:4a:16:b9:4f:f7:33:a8:94:67:d4:e9:
         98:eb:31:f4:83:b4:2b:9b:55:fd:de:25:7a:97:87:49:26:df:
         87:77:a5:51:15:ec:87:29:3e:61:da:56:64:52:4f:02:82:d4:
         5a:07:23:a2:24:41:91:7a:7c:3c:79:f6:c6:fa:6d:69:a1:9c:
         6f:40:29:12:bb:d0:3a:92:b1:fc:bf:f3:80:d0:25:05:b4:e0:
         ec:01:3b:e0:c8:4a:0b:6c:02:1a:10:db:77:9e:22:1e:d1:1b:
         36:45:68:8e:0f:4c:0b:fd:1f:b9:48:8a:5c:88:1a:3c:f2:78:
         4f:ef:b3:aa:c5:9d:3b:4a:f0:24:b5:77:90:0d:ea:1f:42:2a:
         27:24:8b:2a:c0:41:73:b8:01:9b:66:eb:1b:38:50:7d:ce:6b:
         47:b4:5c:30:a3:f0:e7:68:73:1d:a7:06:62:d6:bb:d7:42:b3:
         91:06:d9:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----