Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
File:                     qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft (raw, json)
Hash identifier:          szZONWvywfWYfuyABKXUMouzS/X9t5Bpv1YuPTFr5wU=
Subject key identifier:   39:95:C5:3F:4F:41:6B:C0:C7:71:FD:07:74:66:A3:64:BE:5B:80:13
Authority key identifier: AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4
Certificate issuer:       /CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
Certificate serial:       019044F8561BE4CCF8B409A51B2A69612EAB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
Manifest number:          0A5C
Signing time:             Sun 23 Jun 2024 12:00:43 +0000
Manifest this update:     Sun 23 Jun 2024 12:00:43 +0000
Manifest next update:     Mon 24 Jun 2024 12:00:43 +0000
Files and hashes:         1: qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl (hash: 1HHu3a1D7BQRaWN9QgkhXNvyROok25g2IIS0MmQ++rU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 12:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:f8:56:1b:e4:cc:f8:b4:09:a5:1b:2a:69:61:2e:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
        Validity
            Not Before: Jun 23 12:00:43 2024 GMT
            Not After : Jun 24 12:00:43 2024 GMT
        Subject: CN=3995c53f4f416bc0c771fd077466a364be5b8013
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:44:f0:39:65:84:f1:83:8f:b7:c2:33:ed:92:
                    36:38:56:55:ee:95:8f:89:4a:a3:aa:9a:cb:0b:52:
                    8a:37:f1:bc:dc:49:70:21:70:40:09:48:c8:a0:d1:
                    72:f0:d4:a0:9b:89:fe:f4:91:59:7d:1c:d5:e1:30:
                    3a:44:ca:19:05:0d:24:23:87:d7:c6:6d:1b:cb:52:
                    b7:14:48:51:ca:25:7f:e6:ae:11:86:f7:cd:de:76:
                    fb:78:b0:8d:3b:27:e2:f4:a4:d3:3a:d3:22:07:26:
                    db:3b:40:67:62:82:89:ce:24:a4:f0:61:a8:b4:ef:
                    b5:6f:0b:7e:27:77:e6:ec:68:7e:09:4c:0d:b5:0c:
                    c5:e7:c4:c3:a6:8a:d1:bc:4d:d0:bf:7f:4a:24:03:
                    22:06:6d:e6:40:9f:eb:e8:20:59:e0:3e:d5:65:fa:
                    06:f2:4e:96:34:16:73:ca:21:96:0b:55:ac:d5:7a:
                    de:e7:c1:90:41:a4:31:71:6b:65:c2:12:6b:a8:17:
                    bd:cd:b7:cc:83:80:6e:7a:65:ee:e1:2c:fa:e0:12:
                    7c:db:8b:b3:c3:f1:93:53:67:c7:44:ea:34:45:92:
                    17:c2:1f:ec:b5:e2:c6:f2:c7:1f:86:6a:46:32:16:
                    a7:53:c0:c9:5c:6b:8c:0b:a3:68:89:3d:1f:53:84:
                    d7:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:95:C5:3F:4F:41:6B:C0:C7:71:FD:07:74:66:A3:64:BE:5B:80:13
            X509v3 Authority Key Identifier:
                keyid:AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:15:fb:ad:9a:61:30:31:1c:cf:52:71:c4:0d:5c:14:cb:2f:
         ba:81:2b:20:af:4c:a1:8c:ce:8c:98:20:75:6c:9b:10:6a:5b:
         9b:17:1e:aa:d4:e2:74:20:86:2a:41:ee:3d:e5:bb:38:2e:12:
         a8:b5:33:58:2f:c8:17:d6:81:25:23:53:83:0c:a4:a9:89:f4:
         d7:66:b3:ee:6b:86:26:11:af:a0:b3:f6:c4:7d:7f:36:c9:1b:
         78:65:39:a8:16:33:41:ed:39:b8:b3:2b:04:d1:6f:0b:35:76:
         ca:06:ac:7b:a6:fa:0d:61:d3:be:27:de:98:cc:c2:71:6c:03:
         f5:ec:5b:6a:e4:31:98:e7:73:dc:a8:74:3b:a8:aa:78:36:3a:
         0d:3a:ed:22:36:a6:6a:6a:0c:d0:41:34:a1:31:76:56:24:fd:
         28:d3:d2:54:f6:ea:c5:fc:c6:c9:e6:58:b4:e5:4a:00:a8:b7:
         5c:1f:5d:89:28:b9:77:f4:a2:2b:97:8f:30:a2:fd:c1:ee:61:
         6b:ed:6f:79:35:d6:31:e4:b3:86:ae:e7:37:7e:73:25:55:85:
         ef:20:ef:c8:ea:bb:10:50:30:f5:35:fc:68:b7:c6:f1:4c:8d:
         42:8c:be:db:03:ad:5b:9f:94:19:38:9f:a2:55:5a:12:74:b1:
         98:03:02:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----