Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/364d3e-a44d-446a-82ee-65d9e4611270/1/b7yr8HwZyKIKdpqoKQcaszgvWIo.mft
File:                     b7yr8HwZyKIKdpqoKQcaszgvWIo.mft (raw, json)
Hash identifier:          nIxxGRkr08ElqKxt54n3mj/kGgPDLo2UhR4Dr2QYpLk=
Subject key identifier:   60:83:EA:09:8C:7E:8E:9C:AB:05:E8:02:2F:FF:9A:34:28:F0:DB:97
Authority key identifier: 6F:BC:AB:F0:7C:19:C8:A2:0A:76:9A:A8:29:07:1A:B3:38:2F:58:8A
Certificate issuer:       /CN=6fbcabf07c19c8a20a769aa829071ab3382f588a
Certificate serial:       01901DEC8ABFCB2F14EF5E33AAEB629C7194
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b7yr8HwZyKIKdpqoKQcaszgvWIo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/95/364d3e-a44d-446a-82ee-65d9e4611270/1/b7yr8HwZyKIKdpqoKQcaszgvWIo.mft
Manifest number:          11C3
Signing time:             Sat 15 Jun 2024 22:02:39 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:39 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:39 +0000
Files and hashes:         1: b7yr8HwZyKIKdpqoKQcaszgvWIo.crl (hash: Z0XrW+0YqoRTzigAcYmYSZpzZ8VgU+xy6OtMfvQ2JWQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/95/364d3e-a44d-446a-82ee-65d9e4611270/1/b7yr8HwZyKIKdpqoKQcaszgvWIo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/95/364d3e-a44d-446a-82ee-65d9e4611270/1/b7yr8HwZyKIKdpqoKQcaszgvWIo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b7yr8HwZyKIKdpqoKQcaszgvWIo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:02:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:8a:bf:cb:2f:14:ef:5e:33:aa:eb:62:9c:71:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6fbcabf07c19c8a20a769aa829071ab3382f588a
        Validity
            Not Before: Jun 15 22:02:39 2024 GMT
            Not After : Jun 16 22:02:39 2024 GMT
        Subject: CN=6083ea098c7e8e9cab05e8022fff9a3428f0db97
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:64:a4:00:4a:b6:40:ac:a1:3e:06:f4:4e:7f:
                    95:4f:07:02:b8:58:bb:80:67:06:c7:16:98:0f:90:
                    69:50:c5:e1:49:07:fd:bc:1f:98:0e:0d:3c:8d:e0:
                    71:f5:c6:30:a8:34:ce:47:1c:d4:72:9c:1e:2c:dd:
                    5a:b4:d5:c3:40:05:ac:13:59:f2:a1:15:d0:c8:fd:
                    32:cf:df:37:92:6d:b9:f2:60:50:00:85:8f:5c:3c:
                    47:22:72:3e:e3:87:e4:4a:88:4a:14:8a:e9:85:85:
                    9d:01:55:22:bc:c4:14:70:04:5d:0c:ea:f4:91:99:
                    5b:bd:a2:ec:f5:38:27:33:ba:92:55:c9:2b:34:43:
                    8b:03:7a:af:da:66:58:29:0c:5a:d6:55:bd:25:56:
                    3f:d8:67:47:ea:d9:70:8c:d9:ad:49:8f:f4:b2:6a:
                    27:e0:34:f6:08:48:60:bc:ee:d5:5c:04:e2:e0:59:
                    67:91:70:df:5f:f2:4c:68:66:ed:80:f9:0f:70:4d:
                    80:35:b3:63:70:8b:0f:c3:6f:44:cf:58:b2:e4:41:
                    10:85:40:1a:63:cc:3c:b6:84:83:2b:4e:84:5e:25:
                    b2:1f:3c:6e:08:ec:8b:2f:6d:0d:f2:76:0b:94:04:
                    7f:58:f1:0d:cd:a9:bc:20:96:28:88:ca:a8:b9:1a:
                    60:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:83:EA:09:8C:7E:8E:9C:AB:05:E8:02:2F:FF:9A:34:28:F0:DB:97
            X509v3 Authority Key Identifier:
                keyid:6F:BC:AB:F0:7C:19:C8:A2:0A:76:9A:A8:29:07:1A:B3:38:2F:58:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7yr8HwZyKIKdpqoKQcaszgvWIo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/364d3e-a44d-446a-82ee-65d9e4611270/1/b7yr8HwZyKIKdpqoKQcaszgvWIo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/95/364d3e-a44d-446a-82ee-65d9e4611270/1/b7yr8HwZyKIKdpqoKQcaszgvWIo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:5a:40:f5:9a:4f:22:bc:8c:21:48:2b:29:d7:db:e4:83:03:
         d6:2e:ec:45:63:55:00:b5:46:b9:c0:3f:10:07:46:13:fd:3a:
         3d:26:cc:c9:f9:a6:28:cd:35:2a:19:68:76:a9:7b:bb:d5:a8:
         a4:f6:69:ed:5b:17:3b:cb:d7:c1:b5:42:c3:19:85:1a:df:4b:
         b5:b6:80:b0:7f:12:5f:9f:b6:dc:a5:2f:5b:81:43:52:bf:4a:
         44:7e:95:02:d8:ed:a5:28:b9:57:20:ae:42:7b:a5:0d:eb:30:
         23:71:c0:90:cc:15:7b:e8:33:85:c3:5a:b4:f4:be:48:d9:9d:
         d4:3e:e5:54:6d:0c:8d:7c:f0:35:57:3b:0f:8f:a8:65:f4:c1:
         86:b4:c0:bd:f4:3b:41:3e:eb:a4:37:37:d6:c2:aa:df:c7:a3:
         94:a1:0e:19:7c:a8:f3:2e:73:29:ee:ca:fb:1e:2d:e1:21:6d:
         4c:e6:71:06:35:76:79:e8:25:de:6a:e7:fe:be:88:82:18:11:
         40:79:4e:71:15:f1:a1:c2:e8:51:b7:61:b7:39:d0:8a:c1:71:
         c6:16:5f:45:e9:2a:eb:a0:15:de:8b:a8:69:5c:7b:87:9a:03:
         72:9b:06:5b:c8:be:3b:2f:c4:c3:b7:4b:77:cc:18:76:d1:b9:
         12:f1:6b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----