Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
File:                     pyiF7ybebTsiYKtj0sXKD4Y33wM.mft (raw, json)
Hash identifier:          6eIoFP2rxJW5UCL9LvGcI25Jeiqn7KWQWF9B3xpnfAk=
Subject key identifier:   8D:01:54:66:5D:24:BB:F1:F7:3D:93:73:11:8B:E8:33:8E:7F:D3:53
Authority key identifier: A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03
Certificate issuer:       /CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
Certificate serial:       018F8936F9E4AB079E27527975B93E9256EE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
Manifest number:          108C
Signing time:             Sat 18 May 2024 01:00:32 +0000
Manifest this update:     Sat 18 May 2024 01:00:32 +0000
Manifest next update:     Sun 19 May 2024 01:00:32 +0000
Files and hashes:         1: pyiF7ybebTsiYKtj0sXKD4Y33wM.crl (hash: 0qw9lt44fPoZlnBju3rLXH5TQcYBXhgXicA45UcWUWM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:89:36:f9:e4:ab:07:9e:27:52:79:75:b9:3e:92:56:ee
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
        Validity
            Not Before: May 18 01:00:32 2024 GMT
            Not After : May 19 01:00:32 2024 GMT
        Subject: CN=8d0154665d24bbf1f73d9373118be8338e7fd353
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:9a:6a:9c:7c:3e:4e:6f:63:c2:66:0c:aa:e9:
                    b7:80:c1:a8:b2:6e:e6:3c:c1:0c:60:1c:70:47:f3:
                    63:d4:d9:bc:b9:52:70:a7:0d:56:36:cd:16:7d:f6:
                    76:62:4e:83:f6:9f:26:19:b3:6c:0b:71:1b:1d:8b:
                    1f:6e:51:6b:b4:a4:8e:8e:61:46:b0:3b:56:a7:8a:
                    1d:ad:0a:3a:9a:2a:72:f9:b8:09:dc:6d:70:c7:02:
                    06:aa:61:9e:15:35:ab:23:69:d1:03:63:3e:f7:0c:
                    0b:4a:fd:11:9a:38:a7:d6:ae:24:02:55:88:b5:90:
                    52:0e:f6:bc:8c:b3:d8:75:79:a4:20:16:67:ba:a6:
                    77:08:1e:f6:63:27:d3:1d:dc:14:cc:80:b5:ed:49:
                    98:ec:1a:b2:e0:62:a0:56:b9:39:34:27:6b:19:24:
                    66:dc:2c:df:83:65:1e:93:1e:8c:85:ed:0f:dd:d7:
                    b1:ee:02:0b:22:0c:e9:a5:ff:c4:c0:7e:63:72:35:
                    7f:bc:50:d2:ee:0b:4d:a8:07:5d:b8:74:8b:7d:e4:
                    54:0c:f6:e2:85:dc:32:4e:dc:9e:4e:cc:f6:d4:e2:
                    c0:4c:7c:d7:d4:b7:9f:d5:4c:16:93:45:ce:8e:5b:
                    85:cb:e9:22:b5:37:a9:c5:a1:53:07:b6:ac:c4:47:
                    59:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:01:54:66:5D:24:BB:F1:F7:3D:93:73:11:8B:E8:33:8E:7F:D3:53
            X509v3 Authority Key Identifier:
                keyid:A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:3d:0b:b1:54:6f:59:b2:b1:d7:51:d8:0f:10:c5:87:9a:58:
         21:cc:93:e4:52:40:19:c4:81:cc:f7:86:cc:ed:96:07:93:d1:
         f0:12:58:70:60:93:d9:9e:31:a0:6f:9d:76:27:0e:26:ef:1e:
         9c:5d:d4:5f:77:fe:e2:48:c3:3f:7d:2a:3d:3b:bd:d4:a0:5f:
         9c:33:6b:22:02:6c:da:33:39:ee:a3:04:9d:a4:84:3b:9f:b4:
         78:50:db:e1:11:79:db:e4:6e:d4:fa:b2:a4:29:f2:d9:4e:7f:
         8f:da:9f:ba:4c:3e:54:ea:49:a0:dd:68:b2:93:a6:31:73:fd:
         ca:55:51:f4:70:ba:95:60:ab:52:72:6b:54:74:93:11:49:e6:
         51:fa:7e:aa:35:e1:1a:18:49:37:45:8e:63:9d:d1:ce:8c:97:
         84:bf:70:75:e4:94:57:1f:df:b4:1b:65:e8:34:e2:c8:75:b8:
         93:40:47:1e:17:ad:eb:00:16:bb:a7:ae:b6:f6:81:67:05:f2:
         04:a8:a5:4b:94:d7:36:b1:89:e8:54:b8:01:0c:91:27:b0:e0:
         e3:27:e7:ee:95:ce:35:0e:00:06:8f:18:a0:33:95:e6:37:aa:
         ba:b7:71:cc:63:38:5e:06:54:35:da:fa:dd:62:bc:9d:bc:68:
         78:4e:95:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----