Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
File:                     YgTQ-JHcR16nA-be89bq0ej3wtY.mft (raw, json)
Hash identifier:          Xn8q1PV7oU8wgUd+oCb3YmalCZd8X6v6JKkK9gT6cdo=
Subject key identifier:   DC:F0:38:95:FE:82:5C:69:F0:FC:CA:F2:28:4B:F9:F8:63:52:F0:9D
Authority key identifier: 62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6
Certificate issuer:       /CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
Certificate serial:       0196C53A235A5BC6071C53256EC070E87448
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
Manifest number:          1535
Signing time:             Mon 12 May 2025 16:00:43 +0000
Manifest this update:     Mon 12 May 2025 16:00:43 +0000
Manifest next update:     Tue 13 May 2025 16:00:43 +0000
Files and hashes:         1: YgTQ-JHcR16nA-be89bq0ej3wtY.crl (hash: 8vfO0fIWAlAfw+IkPwh++yY6von7d/+LGO3Qo0SluyA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 13 May 2025 14:31:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c5:3a:23:5a:5b:c6:07:1c:53:25:6e:c0:70:e8:74:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
        Validity
            Not Before: May 12 16:00:43 2025 GMT
            Not After : May 13 16:00:43 2025 GMT
        Subject: CN=dcf03895fe825c69f0fccaf2284bf9f86352f09d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:cc:f1:b0:9e:8b:43:01:b0:19:b8:a8:7d:87:
                    24:88:d8:41:d4:c4:e7:00:20:ba:00:6a:a9:ca:17:
                    d4:79:d6:1e:dc:31:bc:3d:1b:74:fe:8b:d5:33:10:
                    e2:30:91:51:28:f6:67:89:38:96:10:d6:ab:52:41:
                    cf:0e:9b:81:02:44:73:52:8c:55:8b:fa:00:30:47:
                    cd:15:65:80:30:11:60:8c:eb:af:f0:09:63:42:00:
                    90:60:99:de:8e:ea:48:95:d9:22:f3:6b:f9:a1:de:
                    18:4e:b3:b1:6d:fb:f4:d7:42:73:b9:70:24:ba:24:
                    f7:42:b9:5f:a1:b3:d0:1e:8b:80:98:dc:56:01:66:
                    9d:12:2a:23:50:6c:03:15:63:cc:ad:5f:d7:33:4d:
                    48:16:07:59:59:0b:af:37:ac:57:8a:4d:de:08:59:
                    7b:e3:7c:07:2b:14:f0:83:e3:fc:fa:67:2c:40:71:
                    bb:ca:39:80:61:6c:a0:69:98:09:2f:c6:36:b6:ce:
                    f3:cf:e8:36:d3:10:49:46:fe:69:a4:9d:31:1f:10:
                    51:04:9f:a1:a9:c9:bd:90:36:ca:e3:a2:a4:32:e8:
                    77:0b:e4:d0:45:3a:f0:49:b0:d3:3f:35:af:b1:bc:
                    17:08:76:06:7e:27:63:13:5d:21:3d:87:2e:42:49:
                    ff:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:F0:38:95:FE:82:5C:69:F0:FC:CA:F2:28:4B:F9:F8:63:52:F0:9D
            X509v3 Authority Key Identifier:
                keyid:62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:5a:b2:2b:84:0f:64:a8:3a:49:7d:32:e3:65:ca:07:c0:62:
         7c:3d:28:73:cf:1f:d9:3f:99:52:ff:90:93:c0:96:27:4d:54:
         e8:8e:59:c9:fa:0f:59:14:31:94:67:ec:f0:43:b3:22:55:2f:
         1f:c7:89:c9:09:37:67:af:7f:70:a0:25:e7:59:a8:ae:73:8e:
         3c:f9:98:a6:f1:2b:3f:58:d0:5e:8d:c7:be:5a:ce:12:00:95:
         a6:9a:3f:12:a7:61:37:79:a8:af:e9:99:26:d7:df:8d:3a:e9:
         51:1c:71:4f:93:96:9f:a3:98:3d:a9:89:d7:9e:77:94:f2:61:
         e5:98:fb:99:86:15:e7:6b:2e:59:12:fb:eb:bd:73:cd:6e:ed:
         75:19:aa:04:3d:6e:4f:ad:41:b1:39:37:12:30:f3:ee:67:b8:
         8a:91:2b:ed:19:5f:22:20:dd:79:0b:32:d7:fb:cc:5b:73:0f:
         58:89:37:d5:fb:2a:2a:f3:a2:2a:c7:75:ca:0e:6b:03:db:6b:
         6c:f4:f1:b6:77:53:fa:c3:68:3b:70:19:4a:d9:05:4e:f4:17:
         ef:da:e6:02:13:4a:ea:e8:61:be:d6:5f:7e:4d:49:b6:85:34:
         01:a2:e0:16:bd:5e:b0:17:7e:02:2e:2f:88:d5:d4:df:a2:e1:
         ca:92:16:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----