Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
File:                     Y31k1HJWO36HP1t5-RydP__D2_k.mft (raw, json)
Hash identifier:          FJY4TMqSTdD008oHiCCr/qrKibp15dUBJGYHPP9VJbM=
Subject key identifier:   3B:61:97:5F:83:60:CF:F6:14:C8:E2:B9:F2:10:B8:4D:A4:25:A0:83
Authority key identifier: 63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9
Certificate issuer:       /CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
Certificate serial:       01901C6A9B0421C57BF8080A4E2F0067AF4C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
Manifest number:          0A80
Signing time:             Sat 15 Jun 2024 15:01:06 +0000
Manifest this update:     Sat 15 Jun 2024 15:01:06 +0000
Manifest next update:     Sun 16 Jun 2024 15:01:06 +0000
Files and hashes:         1: Y31k1HJWO36HP1t5-RydP__D2_k.crl (hash: 27EubeByz4jFHAu5egmklbgGhH6Ty46FnKiHY/TfZyA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 11:16:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1c:6a:9b:04:21:c5:7b:f8:08:0a:4e:2f:00:67:af:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
        Validity
            Not Before: Jun 15 15:01:06 2024 GMT
            Not After : Jun 16 15:01:06 2024 GMT
        Subject: CN=3b61975f8360cff614c8e2b9f210b84da425a083
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:72:5e:c6:c3:42:48:1a:c9:b6:81:86:07:84:
                    87:2e:7f:a4:b8:10:42:13:61:39:75:40:60:8a:30:
                    48:45:07:fc:38:e1:8c:ff:da:23:72:f7:db:8f:34:
                    51:12:c1:f9:a2:6a:89:57:ea:a2:38:bd:46:04:9f:
                    00:f3:7b:60:06:c1:93:96:d8:0f:be:28:8a:f4:ca:
                    e4:0f:60:69:99:79:77:22:0a:57:20:92:2e:d4:03:
                    86:2a:6a:d9:20:57:ff:0f:1d:04:4c:3e:2b:2b:b8:
                    0a:2f:7a:80:c9:e8:a4:22:86:e6:62:4b:b4:74:94:
                    02:ca:d2:46:9d:08:d7:e6:fb:e4:25:c6:d1:e9:a4:
                    28:fd:d1:67:07:ea:9b:55:5f:ae:2d:d0:93:7a:08:
                    4e:a5:d9:14:3e:4c:db:04:54:50:23:4b:08:6a:5f:
                    41:31:58:29:03:d6:32:30:27:68:4b:0f:8b:4a:a9:
                    64:cc:39:23:7e:83:33:fc:71:82:10:73:3e:08:5d:
                    3a:9a:f2:7e:56:dc:af:03:ab:3b:e8:e2:aa:71:13:
                    3a:b0:41:ce:e1:2c:8f:5f:c4:d6:cc:a0:ba:84:fc:
                    41:b2:21:b1:94:8b:ed:a7:8e:71:e6:ca:e7:7d:96:
                    02:b6:b7:f0:f8:b1:cc:47:79:ab:34:f1:e6:de:54:
                    eb:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:61:97:5F:83:60:CF:F6:14:C8:E2:B9:F2:10:B8:4D:A4:25:A0:83
            X509v3 Authority Key Identifier:
                keyid:63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:76:79:d6:89:d7:15:59:43:dd:72:2b:05:ae:ea:35:47:3e:
         8e:a2:4f:2e:10:b0:ab:42:61:02:12:40:61:15:8b:1c:b4:03:
         e2:7b:f6:ec:bb:54:88:a6:1f:9a:7b:80:ff:67:2e:88:1e:a0:
         bf:9d:22:c7:bf:18:b2:53:e0:3d:28:e0:74:66:e9:ce:db:00:
         02:fe:be:e6:08:1d:66:fa:cd:94:7a:9b:9c:51:2d:b9:a8:0a:
         4e:9b:9f:64:ca:bf:33:7d:25:d6:cc:82:ca:ab:ba:55:bc:a1:
         02:77:09:24:22:b6:91:6a:0f:8b:0d:d1:f2:72:4a:9d:7f:01:
         86:eb:94:97:f3:42:e3:f2:59:97:e7:32:56:54:35:11:14:11:
         9c:2d:e8:89:18:ac:9c:95:3a:e7:ee:32:32:e6:0b:f7:07:81:
         18:e3:f0:33:81:60:c8:99:8e:d2:aa:e1:82:ec:d2:09:9f:f0:
         14:0a:9c:19:bc:3e:11:f5:ea:bd:73:99:b2:6c:cf:08:de:d4:
         d8:c3:49:93:67:02:3a:fb:a1:3d:89:97:02:12:44:32:b1:9f:
         83:ef:40:07:5b:61:b7:8e:2e:d7:4c:a2:4c:8f:9b:f8:d3:e8:
         58:2f:74:c6:58:fa:c5:d1:2d:ce:ac:e3:95:0d:b8:64:3e:fb:
         59:b0:b4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----