Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
File:                     HR3nlQkjqWQxniwzg0m9Emh75K4.mft (raw, json)
Hash identifier:          F3uprZLklSjEwTRvMl6A7XtXEGQxepBqcv/WPnv0EbI=
Subject key identifier:   AB:34:10:8D:57:1A:9E:18:7B:C6:35:F1:FD:A6:A9:A6:58:04:99:5E
Authority key identifier: 1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE
Certificate issuer:       /CN=1d1de7950923a964319e2c338349bd12687be4ae
Certificate serial:       0193549C51C3CE23EC746D5825CCC365C1D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
Manifest number:          07E6
Signing time:             Fri 22 Nov 2024 16:02:30 +0000
Manifest this update:     Fri 22 Nov 2024 16:02:30 +0000
Manifest next update:     Sat 23 Nov 2024 16:02:30 +0000
Files and hashes:         1: HR3nlQkjqWQxniwzg0m9Emh75K4.crl (hash: sU4UITou4/t8L2q5F46qDxARS2AIBlFe+EROj0syLa0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 23 Nov 2024 12:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:54:9c:51:c3:ce:23:ec:74:6d:58:25:cc:c3:65:c1:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d1de7950923a964319e2c338349bd12687be4ae
        Validity
            Not Before: Nov 22 16:02:30 2024 GMT
            Not After : Nov 23 16:02:30 2024 GMT
        Subject: CN=ab34108d571a9e187bc635f1fda6a9a65804995e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:ae:a4:89:4e:f5:36:2c:00:89:3c:cc:bf:68:
                    dd:81:1e:8f:cd:16:24:67:5f:31:8c:9f:3d:22:7b:
                    bc:57:18:5f:88:dc:90:22:ed:e9:94:c2:a1:2c:ab:
                    d0:b0:8a:f5:db:71:45:f2:a1:23:fe:37:44:b4:7b:
                    3c:a6:d2:15:64:81:a6:a5:22:35:f6:f2:70:de:86:
                    2c:6e:c2:f5:f3:a1:11:c0:ce:98:a7:9e:d5:6b:f8:
                    c1:86:1c:a4:4e:fd:42:04:27:72:ec:69:10:0d:69:
                    af:a1:83:b5:e7:70:78:14:c5:fa:c1:d8:95:00:3a:
                    ef:b5:4a:57:dc:9b:f8:8f:be:33:f6:db:ab:4e:36:
                    c6:c9:c9:7e:79:46:fa:81:8c:1d:36:25:b8:42:4f:
                    e8:34:14:cb:c1:4d:cf:c6:bd:f9:a3:0c:39:51:f6:
                    e9:a7:b6:d7:6d:0c:c6:e8:58:2c:49:5b:46:0b:8b:
                    39:53:03:49:de:b2:29:98:20:6e:d4:28:c2:c9:e9:
                    d3:81:18:b0:91:6a:7c:1f:a9:60:ce:ea:85:75:a8:
                    58:d7:29:36:65:c7:ca:2c:97:6b:6b:93:75:00:1e:
                    67:e2:bf:8c:87:a8:ad:77:1e:d1:7c:95:9a:98:4a:
                    a6:6e:aa:d4:f3:a8:09:5d:44:2d:49:61:6c:2a:cf:
                    6a:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:34:10:8D:57:1A:9E:18:7B:C6:35:F1:FD:A6:A9:A6:58:04:99:5E
            X509v3 Authority Key Identifier:
                keyid:1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:64:e8:fe:46:2c:ed:00:64:02:71:95:a7:15:3d:9e:e3:22:
         1f:e3:d7:90:ef:9e:88:0b:df:4d:ab:a6:cb:dc:34:ed:16:44:
         45:61:5e:52:0d:0e:e4:53:cf:1e:a3:e5:87:f6:1d:39:43:2c:
         59:6a:8e:e6:39:f8:f5:17:0e:45:c0:12:20:d6:2d:6a:0f:30:
         24:c3:00:90:70:b6:07:e7:d1:dc:ff:bf:c4:3a:9e:90:b4:74:
         84:06:d2:e1:a2:f2:0e:0e:39:a0:73:33:ef:65:cb:91:c0:99:
         a8:00:1a:22:22:f5:7a:4e:8e:bd:24:89:be:4f:3f:68:8f:63:
         d8:4b:29:ba:58:27:88:24:2d:21:f5:69:e4:f6:bb:36:3c:75:
         66:a0:d1:76:0c:06:96:7b:11:9e:b3:58:bc:38:e2:a3:65:8d:
         5f:4b:6c:fc:d7:e6:b5:46:4d:a1:48:3a:65:b2:5a:ff:60:32:
         6e:f2:40:65:59:c9:b9:9c:51:13:61:db:9e:e7:d9:f4:1f:ea:
         19:2f:57:75:73:92:c2:ef:87:89:29:b6:a2:6e:6a:90:8f:a0:
         e0:3f:e6:60:93:5f:4a:49:7e:4b:c1:8f:81:68:09:5e:7d:bb:
         3c:e6:37:68:e8:eb:45:83:08:ec:5b:67:51:7d:24:8d:53:23:
         db:db:94:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----