Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
File:                     Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json)
Hash identifier:          SSvXOvM7zm7fiSnP2/F/lLRKejiKW/4V5SliSq2wITA=
Subject key identifier:   9A:29:94:2F:65:7A:4F:51:23:8D:4B:71:94:89:FA:4C:20:F4:24:14
Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
Certificate issuer:       /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Certificate serial:       018F874A26965D9766B0533E0B61B0369CA1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 16:02:14 +0000
Manifest this update:     Fri 17 May 2024 16:02:14 +0000
Manifest next update:     Sat 18 May 2024 16:02:14 +0000
Files and hashes:         1: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: Rl11CYKOHWxpHRc558MLTPtZinpvO3Zu9HLdfsH4D/c=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:02:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4a:26:96:5d:97:66:b0:53:3e:0b:61:b0:36:9c:a1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
        Validity
            Not Before: May 17 16:02:14 2024 GMT
            Not After : May 18 16:02:14 2024 GMT
        Subject: CN=9a29942f657a4f51238d4b719489fa4c20f42414
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:1b:7f:01:cf:f7:df:66:c2:71:ce:18:97:e5:
                    40:85:32:45:7a:b8:9c:bb:c3:5f:c2:2c:cf:d7:46:
                    5e:91:f5:1b:5d:3e:22:7b:b6:e4:63:a2:12:43:6f:
                    c0:07:51:f4:a7:95:6b:11:75:72:f5:66:8a:06:b4:
                    a5:1a:19:b4:77:60:de:2b:b4:43:fc:a9:0b:62:fc:
                    08:75:41:27:2f:8f:69:17:66:ec:d4:24:05:17:b3:
                    84:a4:2e:c8:55:13:78:47:30:14:f7:c1:cb:07:e3:
                    72:9b:85:56:4a:96:b9:8c:9c:e6:c9:6b:ce:28:1d:
                    2a:5d:06:5c:ff:8d:c9:2a:7f:6b:65:a2:1b:d6:27:
                    e0:a9:fa:6a:71:22:d8:5d:0c:7a:07:1d:1b:d6:1a:
                    db:3a:ac:75:24:5b:8c:3e:6d:e7:bf:83:c3:32:ea:
                    f2:c9:b9:3a:88:f5:5a:1d:58:32:25:ae:92:78:7d:
                    2e:a1:db:90:a9:f8:60:ec:f8:49:43:f4:a6:82:09:
                    ce:07:b8:b2:2c:88:1c:fa:22:19:8d:48:41:3b:d8:
                    a3:40:e0:84:d7:e1:d5:93:13:19:5a:80:17:7a:5c:
                    77:f4:17:61:0d:e9:f2:ac:92:c0:31:04:aa:bd:f5:
                    5f:fb:62:44:e9:0b:05:3b:fa:8e:3e:9f:a1:d5:6b:
                    6b:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:29:94:2F:65:7A:4F:51:23:8D:4B:71:94:89:FA:4C:20:F4:24:14
            X509v3 Authority Key Identifier:
                keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:fe:b7:a8:55:1c:0f:22:e0:37:83:d4:b6:dd:8d:51:d7:11:
         ec:9e:0a:18:97:3b:6d:3c:bf:47:5c:67:b5:7c:59:b4:a9:fb:
         af:ef:95:1b:36:8b:67:26:60:7d:b9:76:96:78:83:e0:00:22:
         3a:c0:2b:ce:6e:7a:dc:4a:70:08:b0:8a:72:a1:f0:7c:a3:3f:
         55:e4:1c:b8:4a:8f:3b:6d:83:75:d8:0f:e5:21:bf:15:8b:96:
         96:66:15:56:09:64:eb:d6:17:2b:e5:9c:ca:50:43:f4:38:f8:
         a6:25:69:db:4f:a3:31:ab:96:33:bf:e9:ab:df:b8:9e:1b:ee:
         ce:c2:9f:66:6d:14:f9:93:ac:1c:d4:e2:35:84:b5:1c:8a:e5:
         a5:4a:b3:45:0f:ff:d8:f4:cf:29:f7:ee:67:61:52:c1:aa:88:
         63:6c:fc:7f:60:8b:f0:79:5e:87:ad:cb:de:8e:72:00:ef:02:
         8b:f5:bf:74:cb:23:d6:a2:1e:5d:62:83:a4:aa:20:6c:95:06:
         84:71:87:7a:e8:32:61:65:a8:f3:65:f4:7e:57:33:1f:70:c3:
         f6:a1:c1:57:9b:27:30:07:ea:61:06:1b:0f:a2:12:4d:b8:e8:
         cd:ad:38:ff:2e:10:0e:60:fd:10:69:13:1b:7f:5f:bd:94:99:
         2f:0d:70:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----