Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
File:                     qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft (raw, json)
Hash identifier:          oi9KBKqQaSF3ISHR52Pb21C+7rethZ20ShSqSuKj0lw=
Subject key identifier:   B8:A0:08:7B:EB:BF:38:67:76:C8:23:3B:EE:5F:9C:19:71:85:F7:6F
Authority key identifier: AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4
Certificate issuer:       /CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
Certificate serial:       01901E58F7FF5DA299B422E15F098CCCA047
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
Manifest number:          0A48
Signing time:             Sun 16 Jun 2024 00:01:05 +0000
Manifest this update:     Sun 16 Jun 2024 00:01:05 +0000
Manifest next update:     Mon 17 Jun 2024 00:01:05 +0000
Files and hashes:         1: qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl (hash: 2ECD9quclnEadwJf2RtL1Nu9FTpxEIjxocspyLJ5TDc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:58:f7:ff:5d:a2:99:b4:22:e1:5f:09:8c:cc:a0:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
        Validity
            Not Before: Jun 16 00:01:05 2024 GMT
            Not After : Jun 17 00:01:05 2024 GMT
        Subject: CN=b8a0087bebbf386776c8233bee5f9c197185f76f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:ef:b6:d0:9b:04:07:c8:0b:3b:83:5d:72:d2:
                    a4:49:14:0d:dd:5a:16:c9:9c:87:99:e9:5c:dd:a2:
                    40:40:ea:46:1e:fb:02:94:de:36:50:64:ca:a1:2a:
                    eb:a2:77:21:7a:5e:8f:7d:07:29:bb:bd:ee:bd:31:
                    f0:69:f4:0c:15:be:e6:e5:d9:a9:ce:c5:8b:db:df:
                    4c:85:05:8f:fe:b3:f1:b9:f3:73:84:87:7c:b7:25:
                    47:60:93:97:3e:dc:2d:73:62:c5:f8:ca:68:67:aa:
                    53:af:22:21:e0:58:28:6a:82:44:da:3d:d2:e9:bc:
                    df:83:ea:69:43:6e:48:1d:d6:dc:35:c8:c3:38:a9:
                    2c:3b:97:9b:87:b6:0d:21:4d:b1:25:4a:c0:d9:a7:
                    7d:be:4f:e7:c3:8d:fc:36:26:f0:bc:15:f4:64:08:
                    b0:1c:f4:53:23:bc:26:63:a4:c0:2f:6a:ef:4d:ba:
                    52:0d:a3:5f:70:8e:07:4c:75:19:fc:26:73:26:79:
                    4c:03:5b:47:b6:b4:ee:6f:1e:03:c6:04:13:dc:cb:
                    11:ef:93:ea:63:94:6e:06:79:e2:88:02:1d:78:ff:
                    8b:25:b1:09:31:c0:0e:bb:d5:6f:fe:30:92:96:1c:
                    dc:32:dc:4f:aa:42:57:37:2a:0a:5b:81:24:e1:11:
                    32:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:A0:08:7B:EB:BF:38:67:76:C8:23:3B:EE:5F:9C:19:71:85:F7:6F
            X509v3 Authority Key Identifier:
                keyid:AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:50:45:ed:e9:bf:f9:2b:cd:cb:c8:8f:3f:24:1f:1a:1b:fd:
         84:3f:11:1d:00:59:74:3e:60:f0:5b:b5:3e:b9:0d:e2:6f:8e:
         1b:41:f4:16:ac:31:e4:87:00:64:37:63:88:5c:f4:04:51:6e:
         01:10:d8:ef:4a:0d:d7:10:21:77:d7:39:e3:03:df:a7:97:e9:
         5c:78:fc:4e:be:88:c4:90:1b:eb:f6:aa:4e:90:de:2c:6b:f0:
         7b:2d:c0:92:58:b5:87:ec:6e:7d:16:1d:f5:62:19:78:da:a7:
         8e:a9:ed:9d:78:69:36:4b:a2:27:00:3c:96:e4:0a:8b:f7:c6:
         34:c3:d7:64:cf:d7:3d:06:2b:5b:50:74:1d:20:3b:c6:ed:28:
         02:48:a6:93:f2:92:50:64:9b:4e:d1:3e:79:45:d3:03:14:ac:
         c1:70:ce:67:d0:23:75:db:03:99:d2:da:6b:79:de:69:88:ab:
         b2:39:76:99:46:ee:ea:87:0a:d6:a0:e1:75:22:92:31:6d:ba:
         82:0e:09:3f:17:5e:1a:34:5d:0a:07:d9:3e:b4:93:e9:13:d4:
         db:39:5f:38:0e:31:7f:b2:d3:f3:24:9e:02:66:d1:05:b1:15:
         f4:39:10:28:30:02:80:7c:89:46:29:de:e9:af:cf:2f:d4:14:
         03:8e:03:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----