Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
File:                     pyiF7ybebTsiYKtj0sXKD4Y33wM.mft (raw, json)
Hash identifier:          BiniFh6X5+0NrmHR365XR19gfvJmthwDEoo677Lcu0c=
Subject key identifier:   C0:BF:61:85:29:9B:EA:62:FC:BB:18:2B:CB:84:3D:94:55:63:DB:5C
Authority key identifier: A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03
Certificate issuer:       /CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
Certificate serial:       019369D971B8BA582D9284C5742E41825308
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
Manifest number:          128E
Signing time:             Tue 26 Nov 2024 19:01:18 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:18 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:18 +0000
Files and hashes:         1: pyiF7ybebTsiYKtj0sXKD4Y33wM.crl (hash: 9ajByK7CKY2+cUi3mXZJC3FQYud7A9vMi0Uqo32/Ir0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:d9:71:b8:ba:58:2d:92:84:c5:74:2e:41:82:53:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
        Validity
            Not Before: Nov 26 19:01:18 2024 GMT
            Not After : Nov 27 19:01:18 2024 GMT
        Subject: CN=c0bf6185299bea62fcbb182bcb843d945563db5c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:cb:e6:14:ec:d6:33:9e:af:74:96:9d:f8:5d:
                    8a:23:44:fc:d5:43:3c:73:34:f1:8d:49:11:63:7e:
                    e0:06:89:82:20:83:03:50:6b:8d:65:a7:c7:40:0e:
                    13:77:23:c0:11:7f:c1:99:d2:2e:c9:ac:2e:c4:51:
                    af:e4:de:23:d0:25:1d:82:e4:85:32:c8:1e:f3:45:
                    b1:49:e0:6a:2e:83:47:a5:47:5e:34:b3:b0:0c:9c:
                    49:87:72:4b:65:64:4f:71:8d:b6:8e:16:2e:c0:ba:
                    8a:ef:b7:8c:94:d2:1c:c9:c8:0b:2b:96:91:a3:76:
                    34:dd:80:31:39:89:25:20:ad:16:65:52:58:ed:4d:
                    dd:08:b6:19:62:35:62:26:d0:4c:e9:80:e6:a0:30:
                    0e:39:06:5e:97:c7:99:70:3d:58:3f:c2:32:cc:6e:
                    18:39:49:34:00:f0:18:a4:de:51:1b:e3:d7:79:80:
                    31:da:4a:58:1f:4c:17:1a:ca:15:6b:f7:bc:90:56:
                    d0:e1:88:d1:95:59:f1:cb:6d:7d:85:35:bb:d9:40:
                    4c:01:25:29:d5:fe:c7:41:f2:14:96:6c:66:8e:b3:
                    14:5a:cd:f3:4e:f0:01:28:6c:8c:fd:2f:7a:c0:38:
                    54:40:fb:85:18:9f:32:ad:39:7f:da:0b:35:d5:d9:
                    a8:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:BF:61:85:29:9B:EA:62:FC:BB:18:2B:CB:84:3D:94:55:63:DB:5C
            X509v3 Authority Key Identifier:
                keyid:A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:07:3b:b5:34:d3:ae:92:f4:c3:44:13:f8:65:77:26:b0:6c:
         0a:a9:92:e9:4e:08:6c:8b:71:54:dc:e3:86:19:53:21:7a:9c:
         73:8b:e6:93:14:89:d1:d4:19:6c:74:1a:e0:0d:2c:08:a3:f6:
         65:5f:b6:15:68:36:96:a8:ca:80:ed:d2:7d:83:7a:9a:19:a2:
         f8:6d:77:34:48:00:9c:df:4e:24:92:84:2b:77:13:06:94:df:
         1f:2e:87:88:6e:5b:9c:4f:6f:a1:4a:4f:d3:a2:d5:11:67:95:
         de:23:dc:9e:bb:c7:cc:41:71:b1:06:56:c2:bd:93:ee:d4:72:
         52:92:c3:95:44:09:48:03:ed:4d:95:5d:63:80:68:00:d2:23:
         c2:3c:20:f9:da:c2:fe:d8:2e:96:34:31:62:ef:d7:ac:91:70:
         57:a2:22:2d:09:f1:00:9c:67:cf:bf:e9:b1:a3:10:7d:e5:ec:
         cb:e6:0a:cd:d8:55:37:43:a3:f5:f4:eb:4e:68:29:e4:5a:ed:
         3b:62:fe:c8:d1:19:91:4c:ec:02:81:c4:2f:7e:fc:55:af:d4:
         37:33:22:98:2d:56:4c:57:29:69:fb:11:7a:15:28:75:73:4c:
         91:01:f5:f6:4d:48:75:d7:4d:e7:f1:c8:59:a0:af:f7:72:8f:
         b0:20:cc:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----