Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft
File:                     V3l3onVhz5BYpS5GDJSZSAVb3T0.mft (raw, json)
Hash identifier:          8Sz9nSQewygArzcn+CMNPY8NsaU7PKG/0nOogRpStmw=
Subject key identifier:   F2:79:DF:C6:3D:9A:64:9C:0F:06:FE:E8:69:E8:21:FC:C8:56:53:54
Authority key identifier: 57:79:77:A2:75:61:CF:90:58:A5:2E:46:0C:94:99:48:05:5B:DD:3D
Certificate issuer:       /CN=577977a27561cf9058a52e460c949948055bdd3d
Certificate serial:       0196A84257BE53B49F3B05073CA0250B2770
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/V3l3onVhz5BYpS5GDJSZSAVb3T0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft
Manifest number:          0737
Signing time:             Wed 07 May 2025 01:00:42 +0000
Manifest this update:     Wed 07 May 2025 01:00:42 +0000
Manifest next update:     Thu 08 May 2025 01:00:42 +0000
Files and hashes:         1: V3l3onVhz5BYpS5GDJSZSAVb3T0.crl (hash: O7U3EE4mKCt1znVghW1AGE7huz2hbq7hL7iVhJ3h+4c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/V3l3onVhz5BYpS5GDJSZSAVb3T0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 07 May 2025 23:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a8:42:57:be:53:b4:9f:3b:05:07:3c:a0:25:0b:27:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=577977a27561cf9058a52e460c949948055bdd3d
        Validity
            Not Before: May  7 01:00:42 2025 GMT
            Not After : May  8 01:00:42 2025 GMT
        Subject: CN=f279dfc63d9a649c0f06fee869e821fcc8565354
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:1e:27:d7:94:c3:05:e7:0b:9d:7c:f1:97:9f:
                    ce:20:1a:b8:2c:07:de:92:05:af:19:5f:89:4f:c7:
                    3a:42:e3:a1:53:84:24:fc:71:0c:6d:1b:0a:ad:67:
                    cf:a0:ce:71:59:66:51:4b:34:fd:23:8f:6b:d3:53:
                    0b:a4:8e:f6:4a:df:37:50:1a:11:2c:63:5f:38:7e:
                    c2:bf:aa:4c:69:eb:cf:f9:e3:df:0b:d0:8b:fe:f3:
                    2e:46:37:55:f7:0a:97:a3:34:ee:18:e1:8e:d4:38:
                    b0:62:e7:6a:81:bf:01:57:26:08:f9:e8:69:ae:e6:
                    c0:91:34:26:6d:bb:20:42:aa:5d:63:52:90:22:a8:
                    d6:68:6b:85:64:d2:a1:77:d2:0e:ad:7f:bf:30:c0:
                    0f:c9:7f:62:04:6e:eb:3d:39:9a:1d:9b:a2:56:f6:
                    39:8d:3b:ff:20:63:96:5f:7b:c6:d9:7b:ef:8a:b8:
                    9f:01:c8:13:5c:df:a2:6d:08:2d:1c:c5:c6:18:ed:
                    bc:3b:8f:31:6d:b5:fc:13:5b:49:19:1f:b8:3e:0d:
                    63:2f:c5:e6:67:5d:0f:22:c6:79:8e:e8:20:8d:25:
                    8f:f0:ba:53:4f:65:58:ca:84:db:89:d8:a6:a2:23:
                    5e:f7:16:dc:24:34:49:19:d9:cc:d9:ea:c7:a8:f9:
                    6e:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:79:DF:C6:3D:9A:64:9C:0F:06:FE:E8:69:E8:21:FC:C8:56:53:54
            X509v3 Authority Key Identifier:
                keyid:57:79:77:A2:75:61:CF:90:58:A5:2E:46:0C:94:99:48:05:5B:DD:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3l3onVhz5BYpS5GDJSZSAVb3T0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/de78c9-a5fa-4385-9edf-54f72d7f5c20/1/V3l3onVhz5BYpS5GDJSZSAVb3T0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:c2:27:24:82:bc:51:a0:39:80:a0:3c:80:b5:89:a2:77:25:
         46:90:7d:a8:0a:0f:2a:77:d8:0b:f6:8b:b3:33:f7:af:ca:62:
         57:32:ff:be:01:f8:52:b8:a6:dd:3d:c3:f9:f9:12:ea:cd:d0:
         43:f9:d8:46:e3:0d:9f:d1:08:75:3d:39:46:9d:3d:a2:82:9b:
         17:a5:81:69:63:c9:d2:ed:ab:f4:f0:67:01:e1:5b:95:08:3a:
         1e:c8:88:03:7c:b4:da:d5:71:e0:55:d7:22:ea:bc:6f:6f:89:
         9b:0c:73:ba:af:05:fe:d2:a1:ad:e3:76:a2:46:27:05:c2:05:
         ff:d8:63:b2:73:5a:4d:a2:a5:ef:4e:b0:c5:bc:7a:db:d5:14:
         a9:a4:d8:ac:3a:03:8e:41:41:7e:6e:10:84:3b:73:ec:53:d5:
         7c:a1:b0:ac:62:bb:32:08:d2:64:e8:3a:12:e8:b0:5f:a5:41:
         5a:2f:60:2d:8b:ce:d6:5b:8b:f0:88:65:73:3b:3c:9c:33:5f:
         85:73:7a:37:77:3b:8a:a3:b5:18:53:8a:b7:15:05:ae:34:13:
         a9:c1:88:d8:3d:4b:c2:e0:b2:fd:cc:31:ae:b2:40:a9:af:ce:
         34:0a:a0:3c:07:de:5c:80:cd:65:07:69:4a:f6:08:28:57:4d:
         66:f2:12:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----