Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
File:                     JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft (raw, json)
Hash identifier:          1UNrhlj393to+DwZoNSycybGOliDa48r64WmMpiu+68=
Subject key identifier:   FB:D0:99:12:92:8F:3A:BC:79:B7:BB:B3:E0:D6:3C:4A:A2:D9:5E:8C
Authority key identifier: 25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E
Certificate issuer:       /CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
Certificate serial:       018F89375164B014EA73D5DEF29CB3021250
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
Manifest number:          1173
Signing time:             Sat 18 May 2024 01:00:54 +0000
Manifest this update:     Sat 18 May 2024 01:00:54 +0000
Manifest next update:     Sun 19 May 2024 01:00:54 +0000
Files and hashes:         1: JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl (hash: ADiJY0cY7aOXLwh+MVH1LCc6XeR2iMVPv8d0zkaop1U=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:89:37:51:64:b0:14:ea:73:d5:de:f2:9c:b3:02:12:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
        Validity
            Not Before: May 18 01:00:54 2024 GMT
            Not After : May 19 01:00:54 2024 GMT
        Subject: CN=fbd09912928f3abc79b7bbb3e0d63c4aa2d95e8c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:98:14:7d:d9:69:ed:ca:0e:65:b2:ff:68:7e:
                    b3:1c:69:6c:ba:d4:e6:aa:1f:8e:6c:b1:c4:20:58:
                    f2:77:c4:9b:0a:26:25:d0:3e:8c:60:f9:ae:08:02:
                    e9:86:e7:9e:bf:05:59:e2:9b:a7:8c:1a:70:e0:3a:
                    25:d7:75:4b:60:45:26:f8:5a:0c:b2:5f:37:91:44:
                    42:08:25:3d:0c:59:a2:41:bc:72:1e:14:ed:7f:c3:
                    d3:84:f8:2c:2a:d3:b8:bf:7e:24:42:db:a4:87:8e:
                    70:83:6c:0e:2d:a4:0a:4e:93:c3:b5:c2:de:ac:91:
                    3b:51:91:b8:bd:5f:6e:44:f9:2c:80:f1:3f:47:27:
                    ed:44:af:f5:f6:53:54:f4:de:fb:ef:49:4c:9c:67:
                    4c:e2:1b:a4:f8:62:1f:05:79:36:d7:53:a3:6c:12:
                    0c:92:86:2a:67:6d:86:a3:92:19:46:81:9d:e4:84:
                    3e:d6:75:6d:d2:e5:30:b2:b1:2c:4d:79:32:e1:5a:
                    66:0d:e2:1b:fb:ae:04:82:95:28:5a:3f:bc:ed:4f:
                    72:e8:77:3a:50:3d:4d:9a:f9:0d:9e:e5:29:6a:73:
                    1e:e9:f1:62:99:13:cf:45:8b:e2:47:a7:57:72:64:
                    0f:f5:20:65:b6:71:b6:e5:a0:b0:f2:77:4d:39:52:
                    b2:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:D0:99:12:92:8F:3A:BC:79:B7:BB:B3:E0:D6:3C:4A:A2:D9:5E:8C
            X509v3 Authority Key Identifier:
                keyid:25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:21:99:44:fc:6f:48:cd:17:fa:82:1b:2d:f6:3d:e5:28:5a:
         38:ae:b9:2b:14:15:6a:05:54:a0:fe:55:87:b1:6f:56:ef:3a:
         81:78:37:5e:7a:ec:b1:e6:cf:6c:71:d4:bd:04:08:94:2b:2f:
         8a:bc:a6:c7:36:89:11:a0:9e:50:3a:a5:9f:94:54:a1:1d:92:
         23:7c:8b:36:88:aa:31:45:7b:36:9f:f4:f5:10:52:30:96:61:
         b0:6e:e0:f4:9c:bc:1b:ac:99:3e:59:a6:36:7f:ba:88:62:8d:
         1b:b1:60:00:f3:01:a8:b2:84:62:72:e3:5c:97:99:e6:d4:48:
         d9:ae:87:d1:cc:c8:79:6e:4e:20:61:23:e8:3e:3a:87:3b:7a:
         12:6e:02:94:78:a2:35:13:4c:f5:e0:6c:27:66:57:70:29:39:
         1c:78:59:59:86:ba:7f:09:64:2f:fd:50:e0:d3:3a:a3:4c:a6:
         da:05:2a:77:4b:4c:df:96:4f:b5:a3:fe:40:73:cc:43:d8:4d:
         be:46:27:c0:20:f1:3a:fc:27:fe:25:19:51:b4:c4:c6:e9:13:
         65:3b:a4:0a:f2:f6:28:27:25:d3:5b:08:11:83:f2:8b:86:f4:
         ee:b0:b9:83:7c:c4:89:8d:8f:fc:9c:6a:f2:c7:18:50:d6:2e:
         ce:70:2b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----