Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft
File:                     RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft (raw, json)
Hash identifier:          CngtCewSGrEXrjUG++7f2FSMcuKA9k1UVDF3dWkLpDE=
Subject key identifier:   C0:C0:A0:37:AE:FD:CE:8D:5E:53:1E:50:0A:7F:61:C4:50:D4:E7:FC
Authority key identifier: 46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4
Certificate issuer:       /CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4
Certificate serial:       018F8824461563D47AEDE276F3AEDD614677
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft
Manifest number:          02BF
Signing time:             Fri 17 May 2024 20:00:29 +0000
Manifest this update:     Fri 17 May 2024 20:00:29 +0000
Manifest next update:     Sat 18 May 2024 20:00:29 +0000
Files and hashes:         1: RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl (hash: SuMs4mMLcKbIOAgLb2mABgA/JuMMiEZRl1cTMWl/Yu8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:24:46:15:63:d4:7a:ed:e2:76:f3:ae:dd:61:46:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4
        Validity
            Not Before: May 17 20:00:29 2024 GMT
            Not After : May 18 20:00:29 2024 GMT
        Subject: CN=c0c0a037aefdce8d5e531e500a7f61c450d4e7fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:01:76:35:d8:3c:a9:a0:c4:fe:c6:08:69:69:
                    3a:99:41:ba:26:de:6b:4c:21:25:ae:24:b5:a4:11:
                    35:83:ee:bb:ec:d0:7b:83:1d:d3:ee:0c:bf:3b:fb:
                    1f:5e:8e:38:9d:c5:fd:7e:64:0c:7d:73:ba:1e:3e:
                    10:71:0d:a1:14:06:e9:80:aa:9e:26:34:bd:5a:72:
                    bd:ab:86:2d:28:f5:a2:64:17:ee:99:3c:99:cd:ce:
                    54:f3:fb:83:9b:24:ba:cf:4c:91:58:c7:89:af:a0:
                    5c:ff:1e:5e:64:a4:e5:9e:c0:7c:a6:8b:7a:5d:bd:
                    fd:90:1d:48:15:06:1a:2e:67:44:a1:7d:7c:8b:be:
                    9e:d8:78:28:75:64:4a:60:52:be:f0:49:fa:36:19:
                    ad:ea:28:dc:49:6f:de:9b:4a:c4:57:72:24:2c:b8:
                    bf:d1:96:84:be:68:e2:6c:51:20:6b:0c:5c:a7:ef:
                    e3:e5:57:26:73:d9:6d:7b:27:0f:28:ee:66:35:bc:
                    16:b9:e7:e4:e3:db:b8:e4:4a:6f:56:6f:a2:02:33:
                    87:f4:63:a8:bc:6d:59:63:6a:10:ff:da:36:a3:9f:
                    0b:93:8f:00:bf:94:4d:1b:eb:43:ef:0c:04:e3:dc:
                    b0:6b:db:c6:c9:a6:89:71:93:86:c6:33:6d:45:bc:
                    59:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:C0:A0:37:AE:FD:CE:8D:5E:53:1E:50:0A:7F:61:C4:50:D4:E7:FC
            X509v3 Authority Key Identifier:
                keyid:46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:ea:a2:5c:48:81:3f:0d:74:b8:39:74:47:68:e3:f6:d6:cd:
         61:61:f1:23:2a:9f:f9:a5:73:c5:d1:56:2b:fa:91:82:e5:d8:
         6c:aa:9c:76:79:31:99:4b:81:8b:f1:eb:e3:45:68:6b:00:29:
         e6:42:12:76:5d:90:d6:db:fb:df:59:d3:65:12:38:c8:2f:15:
         66:90:cf:bf:b8:d5:d2:e8:86:36:c7:a9:e9:c4:93:63:dd:5a:
         56:3a:81:08:0d:65:82:f9:08:6f:fa:f1:36:96:29:be:57:13:
         e6:a5:d7:a4:93:e0:fd:8d:0a:22:e8:63:d9:3f:cb:6b:f8:48:
         70:59:7a:0f:60:6b:9a:3a:2d:a2:05:9d:93:93:46:13:f2:1c:
         ea:02:e3:15:5f:5b:01:7f:e6:bd:14:f5:b5:d8:d8:0b:90:eb:
         aa:56:68:86:5f:a7:12:01:b3:a8:56:fe:4e:a0:31:62:eb:54:
         8b:55:a2:8c:92:43:5d:8a:db:60:a5:97:42:f3:42:2f:89:54:
         be:31:97:10:1f:bc:4c:6c:6e:ce:45:c3:ec:51:b5:08:cf:97:
         be:31:7a:1e:9f:a3:61:b7:4e:c2:cc:93:7b:82:e4:0a:43:a0:
         a3:f3:ca:c3:dc:33:f1:3a:6a:74:49:2b:c9:e6:39:7f:4e:c2:
         30:62:78:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----