Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
File:                     04G3AXBRkLnOnRsYRTU4TnHKMWU.mft (raw, json)
Hash identifier:          wPjcJh0zYbnTWGcT0OzXqgLN1PRIscxVCeWec2OBKMk=
Subject key identifier:   E4:A0:5A:E9:5E:A4:BD:8F:B6:D4:A2:D9:7E:85:88:8C:5F:A6:F1:C8
Authority key identifier: D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65
Certificate issuer:       /CN=d381b701705190b9ce9d1b184535384e71ca3165
Certificate serial:       018FC703DDE52A542B5F08506284BA403DCF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
Manifest number:          1197
Signing time:             Thu 30 May 2024 01:01:10 +0000
Manifest this update:     Thu 30 May 2024 01:01:10 +0000
Manifest next update:     Fri 31 May 2024 01:01:10 +0000
Files and hashes:         1: 04G3AXBRkLnOnRsYRTU4TnHKMWU.crl (hash: SJU3ynRaRmpqd/qItCUiIzCl/4wBXMxXCHgqXLCYhnU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 30 May 2024 22:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:c7:03:dd:e5:2a:54:2b:5f:08:50:62:84:ba:40:3d:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d381b701705190b9ce9d1b184535384e71ca3165
        Validity
            Not Before: May 30 01:01:10 2024 GMT
            Not After : May 31 01:01:10 2024 GMT
        Subject: CN=e4a05ae95ea4bd8fb6d4a2d97e85888c5fa6f1c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:95:41:30:91:b3:4c:d7:da:71:70:45:f0:f7:
                    9f:ba:ca:32:54:c9:8e:3d:71:7a:41:6d:1a:4e:b4:
                    ed:6a:89:49:d8:fe:1f:4e:01:1b:65:68:03:fe:92:
                    ab:f6:28:bd:85:e2:04:38:5c:5b:bd:30:7b:52:81:
                    4b:79:6d:db:bc:ce:c9:a3:92:2c:15:2e:a5:64:53:
                    0c:ba:df:79:85:4b:67:dd:01:f0:4c:0a:37:cc:65:
                    1e:ea:92:91:b4:8f:e6:a3:3e:e0:2c:43:7e:07:05:
                    10:20:97:dc:2f:ad:f2:22:c4:96:4a:89:0b:d0:1a:
                    42:39:bf:0e:df:64:82:f1:03:a0:7c:b1:f1:3b:9b:
                    7f:b2:07:be:9b:5e:09:73:ea:6f:3c:23:ed:da:35:
                    05:81:14:23:59:e6:55:a4:2f:10:06:1a:f4:c4:df:
                    84:f1:07:e7:b5:82:db:0a:04:2a:1b:e9:a3:4a:3b:
                    af:e9:4b:d9:48:e3:c2:b0:b5:16:2a:eb:b1:96:95:
                    cb:19:35:21:c7:1d:ca:b4:6f:4e:da:d4:04:33:89:
                    8e:d1:ec:f6:b3:2d:b2:9c:55:dd:76:2e:7d:56:fb:
                    b8:d4:c8:4d:44:33:48:19:ed:c3:fe:b1:04:a1:41:
                    5f:0d:b5:83:2d:f8:3e:b0:78:aa:f2:a9:d2:2b:df:
                    73:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:A0:5A:E9:5E:A4:BD:8F:B6:D4:A2:D9:7E:85:88:8C:5F:A6:F1:C8
            X509v3 Authority Key Identifier:
                keyid:D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c2:ff:c5:64:86:8d:ba:4a:2b:b2:b6:3b:a2:91:8b:93:f1:08:
         6a:b7:74:8a:33:d8:7e:bb:71:78:18:98:f2:2e:bf:42:c0:84:
         cb:95:94:90:3c:7b:51:e7:0a:40:f8:df:9e:55:84:e8:ae:62:
         39:18:71:a0:21:94:d2:d0:14:88:d5:6e:ac:02:52:34:14:90:
         89:d5:4f:14:67:c8:8e:a7:29:61:71:42:dd:b0:94:e9:56:e3:
         42:51:e4:29:04:28:66:26:8c:04:76:7c:80:76:29:19:98:61:
         46:99:c0:78:3d:4d:3e:69:17:49:be:a8:a1:5f:90:2b:20:92:
         75:98:78:0a:0c:02:b5:f3:de:9b:84:14:38:32:39:cc:7c:47:
         bc:6d:ec:12:75:91:47:a2:f7:ac:05:76:14:12:8b:5e:d5:f0:
         53:ef:91:e6:23:48:af:5c:8e:06:99:60:a2:bf:e0:f5:bf:c1:
         86:96:d6:e0:cd:64:ff:ca:09:f4:d3:09:11:a3:53:3e:08:e4:
         ee:d5:62:32:d1:94:f5:f0:12:8f:6c:30:97:b0:c5:16:c0:db:
         dc:21:99:c8:7c:00:75:5c:69:c6:e0:93:d9:1c:91:d4:8a:c9:
         5b:cb:b0:32:a9:ab:a0:22:1b:a4:a4:37:7c:18:bd:61:dc:5c:
         a3:34:04:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----