Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
File:                     b_rHiuobz0OKYe-RUCRI9glkHS0.mft (raw, json)
Hash identifier:          FWb9pHsnk4YlfyAHxbScTpwNm4MOX/ZoR04Joo9EiHE=
Subject key identifier:   48:48:8E:7E:1E:71:94:F5:CE:04:83:6D:AB:EF:AF:E1:68:C5:01:1D
Authority key identifier: 6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D
Certificate issuer:       /CN=6ffac78aea1bcf438a61ef91502448f609641d2d
Certificate serial:       01901D4635369C719735A9FA903C6AFC5965
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
Manifest number:          0E57
Signing time:             Sat 15 Jun 2024 19:00:58 +0000
Manifest this update:     Sat 15 Jun 2024 19:00:58 +0000
Manifest next update:     Sun 16 Jun 2024 19:00:58 +0000
Files and hashes:         1: b_rHiuobz0OKYe-RUCRI9glkHS0.crl (hash: Ly+TNsy1gc0YaMKQhjr62Hun3i2pR5Q8Xuwa8S+QAlg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 19:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:46:35:36:9c:71:97:35:a9:fa:90:3c:6a:fc:59:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ffac78aea1bcf438a61ef91502448f609641d2d
        Validity
            Not Before: Jun 15 19:00:58 2024 GMT
            Not After : Jun 16 19:00:58 2024 GMT
        Subject: CN=48488e7e1e7194f5ce04836dabefafe168c5011d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:6a:5a:30:43:ff:59:66:be:ba:6e:2a:0a:db:
                    04:e6:f8:07:1c:55:95:29:b3:41:53:f3:63:4a:85:
                    dc:0f:02:2e:a3:8d:94:2a:db:a3:a0:f9:be:1c:80:
                    74:93:9b:12:71:09:a9:66:1e:f0:5e:3b:05:b4:44:
                    d2:38:00:b7:c9:b2:6d:0b:27:93:e1:06:a6:45:73:
                    a9:9c:89:f7:f0:38:03:8e:28:98:b0:a9:c6:3e:7b:
                    20:24:95:a8:68:18:0b:eb:2e:82:8f:d6:d7:cd:28:
                    cc:8c:56:13:4b:45:d4:25:de:2b:3f:8e:44:e3:5f:
                    2c:88:67:38:73:1e:7b:97:d5:6f:65:ca:4e:8f:1b:
                    e1:50:2d:8d:db:77:44:6d:e1:be:3d:02:47:98:30:
                    1b:d8:06:6b:f2:df:3e:e2:89:57:33:a4:ff:21:1d:
                    e7:9f:cd:74:11:8d:f9:df:57:b1:38:cb:6e:ad:c8:
                    c1:f4:4f:89:94:8b:4e:83:77:60:4b:c4:c6:c0:0f:
                    65:d0:b3:39:ff:a3:89:9e:d0:10:6b:4c:21:ef:40:
                    73:37:f1:81:2b:b2:b4:5f:8b:9f:3a:93:e4:10:8a:
                    75:d6:ca:b5:30:57:e8:1d:8f:5b:9b:72:bc:b7:80:
                    ed:2d:0a:66:9a:f5:a4:4f:08:93:38:98:fe:7e:63:
                    fd:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:48:8E:7E:1E:71:94:F5:CE:04:83:6D:AB:EF:AF:E1:68:C5:01:1D
            X509v3 Authority Key Identifier:
                keyid:6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:bc:4d:68:2a:fa:17:83:08:15:e4:09:ae:fd:7f:81:01:a0:
         f4:2c:bc:4a:fa:e7:db:77:1b:8d:eb:4c:b6:c8:c4:e8:7a:bd:
         cc:73:24:6e:05:91:91:07:1e:76:3b:69:f2:62:26:0a:6c:d3:
         3c:44:fc:18:29:d8:23:09:ba:5b:c1:2c:41:a8:25:c0:8a:e3:
         92:d6:71:8f:b6:f0:25:89:81:e4:e0:14:6d:de:2f:08:f7:a4:
         c9:6b:34:84:5f:93:bb:1c:54:cd:c4:52:ed:cc:0a:29:14:e1:
         f9:7b:5f:8b:13:f7:82:5c:d8:82:0c:b7:82:b9:b3:cf:68:6b:
         fa:68:ed:d9:79:19:84:a7:e3:32:3e:0b:08:a7:f9:5e:7c:f7:
         d4:f7:7d:cd:9a:ef:a6:d8:40:a0:b6:94:e1:57:48:86:89:59:
         db:a3:e0:64:57:ae:79:44:c7:f4:e8:0b:54:a3:17:06:c2:b7:
         d7:e8:03:5e:55:44:40:a1:49:18:be:7e:eb:b1:b2:c3:8a:a4:
         90:31:d3:0e:33:fa:ba:4e:61:77:b9:c6:80:91:78:21:61:da:
         85:47:1b:73:f7:47:df:fd:6d:eb:ce:a1:37:9c:04:5c:6a:38:
         00:67:9f:b9:25:73:a9:cd:a6:b2:d4:3f:7f:92:80:69:39:b9:
         a3:1e:91:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----