Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File:                     obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier:          InHmhYGJUprdEZT1XJ4RRGUfHzyDlGtpSq79avgEYX8=
Subject key identifier:   F1:17:30:37:C0:A4:B2:5E:70:0E:78:4E:04:93:65:92:38:1F:98:1D
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer:       /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial:       0196C8044F7267ECA19C17B7EC4429AB3ED6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number:          054E
Signing time:             Tue 13 May 2025 05:00:47 +0000
Manifest this update:     Tue 13 May 2025 05:00:47 +0000
Manifest next update:     Wed 14 May 2025 05:00:47 +0000
Files and hashes:         1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: 48YpCQcxN8Eq7ZEm4aygyehSDRdfPI/MeAbLGVJEYec=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 13 May 2025 23:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c8:04:4f:72:67:ec:a1:9c:17:b7:ec:44:29:ab:3e:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
        Validity
            Not Before: May 13 05:00:47 2025 GMT
            Not After : May 14 05:00:47 2025 GMT
        Subject: CN=f1173037c0a4b25e700e784e04936592381f981d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:67:df:93:9c:2d:8b:e4:9b:72:cb:5a:f6:15:
                    12:6f:ca:17:f2:89:6e:a0:36:2f:b6:70:4a:33:e7:
                    67:ba:a1:41:a4:d3:a6:7a:1c:e0:c2:cb:f2:c1:24:
                    46:40:f1:12:f5:a6:70:61:41:f9:7d:fc:78:a4:a9:
                    0a:03:be:c7:0b:9b:f3:9e:33:d1:ed:1c:22:9a:db:
                    c9:4b:60:bf:2e:2d:33:a7:6a:c7:dd:86:b2:ac:3a:
                    28:a6:ca:bc:4e:03:0f:12:7f:85:22:14:0c:b1:f8:
                    31:e2:8f:49:ad:ad:5f:f1:02:e5:6c:5a:ab:50:49:
                    9a:4a:83:56:09:2e:05:79:b5:df:50:74:df:0e:f0:
                    bb:a2:88:94:73:64:3f:d4:ea:76:41:a1:28:ed:14:
                    9b:53:49:8e:8a:a4:f6:64:5c:c5:4e:40:3d:c7:b5:
                    de:84:32:b4:88:6a:5e:cf:70:9b:e8:6d:7d:66:75:
                    05:4e:cb:c7:04:e3:46:df:f1:10:d8:e8:45:2b:21:
                    1a:c2:56:10:e6:d2:2c:2f:74:d2:80:ab:71:61:fa:
                    17:43:85:f8:bd:99:55:c0:79:b7:e2:31:ae:e3:1f:
                    d9:a0:c6:32:9a:4e:f3:8c:f3:63:14:1f:74:b6:80:
                    22:29:0f:9e:7b:61:ef:74:ee:52:8d:b5:cb:53:8a:
                    91:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:17:30:37:C0:A4:B2:5E:70:0E:78:4E:04:93:65:92:38:1F:98:1D
            X509v3 Authority Key Identifier:
                keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:27:b4:61:9a:14:79:41:de:7b:ff:83:ef:46:48:6b:a9:3b:
         fb:fd:f2:ab:90:34:78:7c:1e:8c:96:d1:c9:ac:1e:cb:18:11:
         bd:24:3b:da:9c:f6:9d:24:59:f0:24:2f:d6:c8:73:da:39:e8:
         74:8b:d0:e1:26:2c:7d:1d:74:72:63:c7:82:7c:ef:7a:5b:0d:
         e6:65:d3:01:0c:ac:c2:9e:19:f1:4a:86:5f:75:7f:bc:7b:cb:
         fd:89:a6:a0:ce:9b:2f:f2:74:a0:b0:9e:6c:4d:38:da:b7:bf:
         2c:be:24:1e:74:0e:f3:b8:e5:f3:86:b4:b1:3e:47:6b:07:8a:
         7d:4f:a0:db:32:b3:39:1d:45:f3:76:f6:af:88:a2:f5:6f:e7:
         b6:92:95:79:91:1c:71:2e:9c:d0:a0:0c:1f:9e:75:a8:1d:dc:
         03:be:4d:f9:d9:df:ec:c3:c3:10:0d:d0:04:9f:86:3e:8b:66:
         ab:71:50:be:1a:76:8f:0d:ad:01:07:eb:4f:4e:dd:22:c7:12:
         19:13:67:c6:5a:4f:19:0f:e8:f3:90:00:c5:8e:d1:3b:ae:b9:
         b3:fb:8e:fb:82:07:02:ba:b3:16:79:62:3b:bf:10:95:70:fc:
         a2:a9:06:22:45:7d:76:ba:ac:bc:e0:13:71:ef:84:2c:0e:2f:
         b3:21:b7:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----