Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft
File:                     OYk2YD7bhVi2GYI8B36euGlHWLI.mft (raw, json)
Hash identifier:          me2gh68kS6HVbFvRHW/cU+WgorSo79QEG1gkmPb779M=
Subject key identifier:   93:37:F0:7E:74:C6:55:1C:68:93:0D:FA:B1:9E:FC:C1:11:FD:F2:E2
Authority key identifier: 39:89:36:60:3E:DB:85:58:B6:19:82:3C:07:7E:9E:B8:69:47:58:B2
Certificate issuer:       /CN=398936603edb8558b619823c077e9eb8694758b2
Certificate serial:       018F882473CD49911AC7A93A76FEF90F37FB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OYk2YD7bhVi2GYI8B36euGlHWLI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft
Manifest number:          75
Signing time:             Fri 17 May 2024 20:00:41 +0000
Manifest this update:     Fri 17 May 2024 20:00:41 +0000
Manifest next update:     Sat 18 May 2024 20:00:41 +0000
Files and hashes:         1: OYk2YD7bhVi2GYI8B36euGlHWLI.crl (hash: /jEMF4CbDwpI7PKhs40U52ura3n5Oc9L650kAl8hy2g=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OYk2YD7bhVi2GYI8B36euGlHWLI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:24:73:cd:49:91:1a:c7:a9:3a:76:fe:f9:0f:37:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=398936603edb8558b619823c077e9eb8694758b2
        Validity
            Not Before: May 17 20:00:41 2024 GMT
            Not After : May 18 20:00:41 2024 GMT
        Subject: CN=9337f07e74c6551c68930dfab19efcc111fdf2e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:c9:02:6a:27:3c:66:3a:e1:49:2a:a6:bf:a9:
                    9f:cd:fc:ec:9f:62:e7:38:b4:e7:c2:47:30:37:53:
                    ba:65:9c:7c:5b:98:83:e2:3b:b8:4c:6a:65:ef:8e:
                    4d:b3:a5:f5:61:c6:5d:ad:49:11:87:be:4a:29:ce:
                    2d:d6:ba:4e:4a:48:4c:50:26:88:23:16:24:55:db:
                    a6:43:33:7f:fe:cc:ec:88:f5:0e:1e:c4:04:1c:66:
                    04:a5:f2:b0:d4:1c:90:21:b5:13:69:1b:2b:5a:bf:
                    1a:67:b7:c4:5b:70:94:e9:26:cc:3f:b9:5d:c3:19:
                    05:44:c5:4d:4d:89:b3:65:ab:b1:c2:ba:e0:0b:f0:
                    c6:71:72:e5:38:2d:22:e0:2d:e0:a1:2e:e0:34:99:
                    eb:f8:59:e6:c8:f7:62:42:9c:6b:bd:97:a3:aa:c5:
                    16:80:70:29:10:0d:7d:1a:c4:4b:88:40:3c:f9:33:
                    0b:17:64:47:54:ca:69:5e:03:1e:f5:e3:24:1b:9d:
                    7c:a8:aa:bb:5d:02:4f:dc:f1:af:04:ab:40:4e:ad:
                    33:1b:37:c4:76:db:f7:58:9e:14:95:8c:f8:75:4b:
                    65:7e:1a:10:6c:b0:6b:3a:a2:91:fd:15:e1:37:a5:
                    0f:b7:f6:25:15:b2:84:2d:24:21:46:e2:84:de:5b:
                    74:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:37:F0:7E:74:C6:55:1C:68:93:0D:FA:B1:9E:FC:C1:11:FD:F2:E2
            X509v3 Authority Key Identifier:
                keyid:39:89:36:60:3E:DB:85:58:B6:19:82:3C:07:7E:9E:B8:69:47:58:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYk2YD7bhVi2GYI8B36euGlHWLI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/dd70a4-1ce5-4048-a106-20b1e2e5be48/1/OYk2YD7bhVi2GYI8B36euGlHWLI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:1e:c8:ce:a6:be:5b:d7:65:a8:35:dd:da:7d:e0:35:71:1a:
         df:b9:8f:87:de:d3:55:74:02:64:b0:df:d1:b1:a4:87:fa:1d:
         a5:da:d9:f1:8b:3f:ce:04:65:29:64:25:7d:46:c6:bd:8d:d5:
         31:36:13:aa:ec:27:93:b6:8f:ce:0a:5b:8b:db:54:a2:97:1c:
         6e:7c:8d:2d:e1:e8:ee:53:80:f5:2e:e1:66:61:0f:39:86:7c:
         9e:49:82:e1:e6:34:47:b8:82:f4:2b:bf:51:80:22:3b:a7:9e:
         1e:91:78:5b:02:ec:6c:1f:3f:b8:23:42:8b:c9:84:d0:bd:82:
         c2:ca:5c:0a:fc:6e:2e:74:dd:36:29:a1:1e:4a:43:e8:04:d0:
         fb:e9:4b:42:95:89:71:00:0c:68:b5:36:8b:91:e9:6e:a2:c4:
         3d:c3:0d:5f:5d:a1:9b:e2:fd:c5:da:b2:c5:d5:66:e1:dd:a4:
         36:d9:8e:ab:c8:fd:c6:b0:25:31:f5:75:ad:75:c0:81:02:8e:
         50:3b:ef:a2:32:6b:73:16:c6:6f:17:f0:24:96:69:7b:62:cc:
         1e:68:00:2e:c2:38:30:f3:31:74:77:02:86:1e:c0:c5:90:75:
         6a:78:a6:91:60:32:af:3e:ad:7e:16:03:2c:d5:9f:45:8d:23:
         db:d0:d1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----