Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
File:                     dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft (raw, json)
Hash identifier:          43yG18ky0CiVj8LOtt5emhkUHD8l+thC/aXKwIuE8YM=
Subject key identifier:   C3:C0:1D:93:75:E2:19:40:5B:85:C1:64:5A:0B:9C:E9:25:F9:AF:F4
Authority key identifier: 74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96
Certificate issuer:       /CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
Certificate serial:       0193572DBE8FE3A5330318ABE65F5B4FF0A5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
Manifest number:          0E43
Signing time:             Sat 23 Nov 2024 04:00:35 +0000
Manifest this update:     Sat 23 Nov 2024 04:00:35 +0000
Manifest next update:     Sun 24 Nov 2024 04:00:35 +0000
Files and hashes:         1: dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl (hash: jCaRV8lg5pjvnxqwGAtQsprfLKydA3dYdQ4dF0+Dcrg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 04:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:57:2d:be:8f:e3:a5:33:03:18:ab:e6:5f:5b:4f:f0:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
        Validity
            Not Before: Nov 23 04:00:35 2024 GMT
            Not After : Nov 24 04:00:35 2024 GMT
        Subject: CN=c3c01d9375e219405b85c1645a0b9ce925f9aff4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:29:d3:f5:c6:6b:95:51:d9:41:73:1b:e8:35:
                    a4:c8:f0:8e:28:88:27:94:49:c8:93:e9:af:0c:03:
                    b1:26:b5:bf:bb:cc:25:bf:c1:82:90:c8:53:79:e6:
                    33:16:6b:ac:1a:a5:ea:d6:07:3b:14:42:37:84:84:
                    54:cf:93:0e:98:6d:a2:8c:75:00:b2:36:5d:79:25:
                    38:de:39:8b:fd:16:ad:3b:13:72:3f:36:0c:01:d4:
                    84:37:ac:9e:dd:e5:e5:5b:b1:74:a1:36:d1:11:b3:
                    6f:2e:82:fd:e7:0a:95:3e:d5:92:2e:5b:86:2b:f8:
                    5f:53:97:ee:a3:77:79:5e:c9:f5:d3:68:3a:da:4d:
                    7f:ac:17:a9:62:7f:a2:24:51:fd:e0:84:73:69:be:
                    48:9b:a8:fc:ac:f0:ce:1a:8a:06:17:e8:b6:bf:c0:
                    bb:1c:36:f4:dd:58:6f:8f:fc:26:68:a3:f6:15:5b:
                    5e:a1:90:60:fa:19:1e:ab:72:bf:6f:5f:7e:ed:42:
                    9d:fb:56:ac:b3:c1:f9:e5:14:06:40:10:03:21:4e:
                    e3:44:af:f7:4f:5e:7a:04:7e:ce:73:2a:41:d8:25:
                    eb:da:6d:e5:67:86:4b:75:f2:85:51:63:e6:43:b1:
                    f2:3e:c1:19:e1:ee:e4:f9:45:a8:1e:be:d9:07:be:
                    1d:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:C0:1D:93:75:E2:19:40:5B:85:C1:64:5A:0B:9C:E9:25:F9:AF:F4
            X509v3 Authority Key Identifier:
                keyid:74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:13:7d:9e:87:61:d0:2e:44:b3:6e:5a:66:c4:a6:77:ef:8a:
         65:38:ec:b4:0e:08:8e:8c:f0:99:03:67:a0:be:ea:d9:68:19:
         3c:19:71:00:56:dd:5b:22:44:b6:af:96:e0:c1:4c:67:0a:b2:
         d9:2e:6f:f0:7d:be:10:9f:c9:3c:65:da:02:e3:6b:e2:2c:1c:
         5e:a0:be:b5:cb:f9:bb:46:fb:04:b2:f7:14:91:5c:48:61:32:
         87:af:a0:c5:6f:7d:6e:33:64:a5:93:42:7c:e6:77:48:c0:8e:
         c2:7c:d5:e2:ef:92:3c:73:9b:2c:8c:50:47:a9:c5:58:37:60:
         27:64:d3:0e:af:51:d7:c1:5b:fe:5f:ac:e5:b8:00:2f:b4:61:
         f8:d6:78:74:35:98:f6:1f:21:4d:0d:d9:26:45:5c:69:32:f4:
         4b:5a:63:4d:9d:29:72:a7:c2:8c:df:a8:b8:93:d6:bc:96:27:
         79:f4:6b:db:52:46:e5:bd:47:c1:71:5d:f7:cf:7e:e2:80:bc:
         11:04:0a:d8:76:a1:55:f2:95:0a:b1:f1:3a:25:d5:44:06:83:
         c5:31:fb:42:a6:ab:2b:e1:17:37:a7:d5:dd:ae:ff:4a:8f:32:
         bb:27:78:2a:73:0f:48:cf:e8:14:e3:5f:e5:63:9d:66:eb:2d:
         b3:50:0c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----