Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
File:                     urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft (raw, json)
Hash identifier:          Ju73/gW/LfNmBeQR1R0QWl8K6LUiDWD/+91/z8Q25zY=
Subject key identifier:   1E:2C:D1:B0:C1:2F:99:B1:24:F1:5E:C7:07:76:18:3A:4E:CE:90:F6
Authority key identifier: BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B
Certificate issuer:       /CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b
Certificate serial:       0193549BFEFD9571F983E9C2420D71F99609
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
Manifest number:          088D
Signing time:             Fri 22 Nov 2024 16:02:09 +0000
Manifest this update:     Fri 22 Nov 2024 16:02:09 +0000
Manifest next update:     Sat 23 Nov 2024 16:02:09 +0000
Files and hashes:         1: urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl (hash: hPcHAhheGztEkWgSvQremuT69bOQQw2wqrWSlvqmbQM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 23 Nov 2024 16:02:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:54:9b:fe:fd:95:71:f9:83:e9:c2:42:0d:71:f9:96:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b
        Validity
            Not Before: Nov 22 16:02:09 2024 GMT
            Not After : Nov 23 16:02:09 2024 GMT
        Subject: CN=1e2cd1b0c12f99b124f15ec70776183a4ece90f6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:88:5d:f9:c8:6d:ab:1e:3e:56:94:da:7a:63:
                    33:0c:e3:79:3c:ff:39:63:0f:3c:11:88:cd:50:c9:
                    30:b1:6a:48:fe:64:72:56:f7:76:80:e8:f1:bf:c1:
                    fd:cb:4b:b6:c7:91:3d:83:31:98:87:18:2c:c3:32:
                    cc:40:1d:81:55:b3:22:89:d0:aa:38:c7:63:a1:f6:
                    12:a2:e4:67:f3:5d:75:41:4b:f8:b1:14:7b:62:1d:
                    e9:d9:51:f4:c7:9b:17:3b:49:98:75:16:08:2f:fd:
                    ba:1a:42:13:18:89:c9:36:22:e2:8b:6c:98:bd:72:
                    bd:6e:56:56:96:72:ce:3c:a0:f9:c2:20:b5:0e:8d:
                    f5:45:3d:9c:ec:30:25:b7:af:ab:5e:f9:18:23:88:
                    4f:27:ad:a0:a9:8d:4a:66:b9:ab:8c:e8:8c:da:0c:
                    cf:dd:56:2e:f1:c8:ed:4c:e4:b6:6e:50:bc:d5:8c:
                    dc:9a:7b:ba:4a:49:e3:16:a0:9e:94:23:c4:51:88:
                    04:9c:0d:44:67:c2:9b:1b:11:3c:52:98:9a:ba:36:
                    af:cf:bb:e5:3f:65:42:69:5d:80:28:2c:fd:e2:60:
                    25:20:6a:25:19:c9:fd:88:bb:d0:27:52:e9:d3:80:
                    b6:91:85:02:62:95:41:00:ff:d7:cc:8e:c0:1f:69:
                    de:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:2C:D1:B0:C1:2F:99:B1:24:F1:5E:C7:07:76:18:3A:4E:CE:90:F6
            X509v3 Authority Key Identifier:
                keyid:BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:f8:35:42:2d:cc:0e:14:53:fa:b2:1c:4b:a8:0a:1f:cd:3f:
         a6:1a:61:2c:d5:6a:4d:4d:de:2f:62:03:99:6f:79:64:c5:94:
         3b:12:4f:a3:81:25:39:15:56:2b:c5:f7:ed:af:4b:10:15:55:
         51:d7:d8:6d:35:20:a4:1d:78:21:f9:70:fe:b3:6b:97:37:eb:
         40:d4:d7:31:90:fe:23:82:de:13:01:ed:d5:f4:3e:23:68:1d:
         64:bf:e6:f3:cb:5b:78:ad:6f:b5:a0:5b:9d:85:46:b5:fe:9d:
         7d:ff:f8:bc:6a:da:d7:28:92:b0:e9:09:57:61:eb:80:36:b1:
         2b:6e:d2:d8:2f:24:9e:8a:06:f3:f4:6f:dc:da:7b:e7:4c:f0:
         2e:82:c1:b2:f5:8c:01:34:eb:8e:a7:f9:7c:3f:30:80:5a:6f:
         3d:f4:06:ca:9b:9c:b1:33:4c:8f:f4:ce:7c:87:f7:45:7b:12:
         12:54:d7:a9:cb:e4:59:49:1e:66:f6:71:81:b1:95:76:b0:bd:
         59:18:d0:33:8f:eb:e8:82:39:9a:de:e4:b0:14:43:b8:ab:40:
         6e:97:6d:ee:4f:d5:6a:e4:33:78:2c:ce:4c:a4:79:e3:db:72:
         f6:60:da:16:61:2f:4d:92:ce:d9:01:0f:65:cd:09:b0:a6:5b:
         9f:96:6f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----