Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft
File:                     uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft (raw, json)
Hash identifier:          /v1PYTz0tQBbeA+TxdnGMf/WwOEzg6w3eiYCJBIG2JU=
Subject key identifier:   AE:91:9D:1A:74:BF:2B:40:33:69:D9:69:7C:B1:EC:6F:24:43:B5:8E
Authority key identifier: B8:8F:F8:6C:47:17:E0:E3:66:F2:90:CD:0D:62:8A:FC:46:A3:8F:0D
Certificate issuer:       /CN=b88ff86c4717e0e366f290cd0d628afc46a38f0d
Certificate serial:       01901DEC51680A36FD8853F1138F2B720F09
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uI_4bEcX4ONm8pDNDWKK_Eajjw0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft
Manifest number:          0B2C
Signing time:             Sat 15 Jun 2024 22:02:24 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:24 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:24 +0000
Files and hashes:         1: uI_4bEcX4ONm8pDNDWKK_Eajjw0.crl (hash: V5i3fc90rO3RCWRWAC+rvIYiCb+jIEmNJbqfIPOs9Ng=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uI_4bEcX4ONm8pDNDWKK_Eajjw0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:02:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:51:68:0a:36:fd:88:53:f1:13:8f:2b:72:0f:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b88ff86c4717e0e366f290cd0d628afc46a38f0d
        Validity
            Not Before: Jun 15 22:02:24 2024 GMT
            Not After : Jun 16 22:02:24 2024 GMT
        Subject: CN=ae919d1a74bf2b403369d9697cb1ec6f2443b58e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:b8:2f:29:e8:42:ca:0e:d7:15:cc:57:74:0b:
                    9a:ad:7d:85:e0:56:5a:d3:aa:61:4a:2c:23:05:9e:
                    fc:fe:20:e9:f9:95:c6:38:13:9c:90:b7:55:30:82:
                    e7:1f:d7:be:6b:89:24:2e:ad:69:05:1d:e4:0f:76:
                    45:0f:6a:84:81:4f:c7:8e:9c:6a:a6:fd:bb:82:40:
                    fa:a1:a6:e4:8a:0f:34:39:29:06:e7:2f:c6:e3:a3:
                    be:7a:ea:98:5e:59:ea:de:f8:ef:a2:4a:5d:6a:b8:
                    f9:e0:f0:90:e8:37:a9:fa:fd:b4:54:b2:10:eb:c0:
                    87:63:98:28:25:17:b7:19:82:db:e0:1b:19:7b:2a:
                    6a:59:1b:05:78:fc:ab:41:8b:a4:0c:c6:91:53:92:
                    4c:92:f5:25:71:09:5a:56:2d:e1:18:88:f5:14:d8:
                    3a:17:6b:ba:f4:e9:af:2c:52:88:69:2a:37:82:4c:
                    09:be:59:71:a6:74:2e:5e:a3:25:78:55:c4:c8:3d:
                    e0:69:38:91:9b:f8:da:2f:8a:0b:7f:23:76:45:b1:
                    64:1d:53:fd:b4:bf:f9:5f:5a:7d:9b:cf:e0:68:a1:
                    6b:c6:cd:c5:dd:b7:5b:af:82:70:50:8b:d5:a0:e2:
                    c7:c1:62:2b:e0:59:e3:0c:6d:32:81:08:e7:fd:12:
                    d0:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:91:9D:1A:74:BF:2B:40:33:69:D9:69:7C:B1:EC:6F:24:43:B5:8E
            X509v3 Authority Key Identifier:
                keyid:B8:8F:F8:6C:47:17:E0:E3:66:F2:90:CD:0D:62:8A:FC:46:A3:8F:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uI_4bEcX4ONm8pDNDWKK_Eajjw0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:2a:f7:63:15:3e:c7:bd:0e:51:c5:46:11:0a:1e:b5:cd:0f:
         70:23:57:28:ab:4b:56:e6:c0:56:fa:97:cd:96:53:3e:27:02:
         b3:3d:4b:02:53:07:2e:cb:44:72:53:56:ae:b1:7f:be:5b:92:
         a0:45:75:98:8b:f2:52:d0:ed:ef:2f:35:40:d9:23:81:2e:0b:
         68:bb:32:59:91:f0:5b:e0:75:c5:2c:a0:20:ac:52:fd:cd:42:
         fd:d8:41:f1:50:e1:b2:4f:a0:ac:eb:f7:de:f1:a9:86:f9:c7:
         04:23:ae:85:9c:cc:ae:30:a9:47:44:dc:04:7f:57:de:7e:34:
         06:13:b2:1e:9e:fb:ea:6d:a0:5e:aa:32:60:84:ad:4d:5c:56:
         41:c3:24:67:b4:68:18:ef:54:b6:1e:c1:e0:ec:ac:3c:23:7e:
         83:2a:d7:c8:03:b4:bf:6b:84:d5:e0:57:6f:93:13:23:db:61:
         5a:4b:75:98:5d:36:1c:78:d7:74:30:0d:57:9c:c5:48:73:aa:
         23:46:e4:be:c8:4f:22:2d:0c:fb:6d:18:21:f9:52:95:99:c8:
         05:5d:ed:3a:19:44:27:ef:9c:59:2b:d4:30:6d:86:22:f3:8f:
         49:97:92:74:55:ed:84:7f:dd:77:db:7b:b3:55:8a:dd:06:2a:
         4f:43:46:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----