Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File:                     A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier:          69xkLFB2BNR8xfiY4lGp3gdutZ3C27AtjgMZrajSens=
Subject key identifier:   18:08:12:0D:22:5F:53:7A:79:3A:32:16:23:04:57:8A:ED:72:53:C3
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer:       /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial:       01935878065FC0E869E6FED183D11BE35694
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number:          1002
Signing time:             Sat 23 Nov 2024 10:01:21 +0000
Manifest this update:     Sat 23 Nov 2024 10:01:21 +0000
Manifest next update:     Sun 24 Nov 2024 10:01:21 +0000
Files and hashes:         1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: oPG10Hh4mexbGijz/aQYWbqUBkiomj1Eh9o+/mmlywQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:58:78:06:5f:c0:e8:69:e6:fe:d1:83:d1:1b:e3:56:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=036847b297235faf071686fed2c1e910bf600486
        Validity
            Not Before: Nov 23 10:01:21 2024 GMT
            Not After : Nov 24 10:01:21 2024 GMT
        Subject: CN=1808120d225f537a793a32162304578aed7253c3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:d1:32:24:a6:df:04:aa:e3:e5:a0:a2:4b:40:
                    cb:9e:70:57:88:21:92:7c:d7:17:ea:00:a4:35:a0:
                    d9:c2:38:f5:eb:0e:5c:6a:ab:41:13:5f:72:56:7f:
                    df:4e:51:1a:6c:8b:69:3a:7a:73:0f:df:ed:93:7a:
                    a4:90:df:fe:c9:57:70:62:9d:35:d5:dc:f6:ac:0e:
                    1d:cb:b2:d9:0b:12:06:89:05:3f:23:1c:e8:11:0a:
                    bb:ec:bb:27:36:6c:77:10:71:b8:d2:7e:1e:cf:8e:
                    b5:e5:ad:06:a3:92:c7:52:00:2e:f3:d4:80:79:be:
                    9c:80:05:5b:c3:7b:63:d5:07:22:1c:11:67:7b:55:
                    d0:89:54:ea:d3:2e:22:e3:01:6d:85:28:6c:56:3a:
                    4e:5b:07:10:5c:a4:cd:9f:46:04:33:c4:05:46:dd:
                    a1:a5:d5:db:b0:65:b2:2e:ea:b6:11:4e:76:21:ab:
                    d1:e6:ed:37:62:68:07:8e:8e:78:aa:3a:c6:1b:53:
                    e9:97:b7:65:6b:a0:7f:08:0a:ba:e1:c8:54:2f:67:
                    ef:8f:1a:d2:cf:01:dc:d4:ba:28:90:fb:df:b4:20:
                    71:d8:63:ba:c3:dc:85:fa:4c:fb:82:4d:98:5b:fe:
                    6a:b4:04:1c:c1:c2:e6:ed:73:63:56:34:fe:88:bf:
                    ef:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:08:12:0D:22:5F:53:7A:79:3A:32:16:23:04:57:8A:ED:72:53:C3
            X509v3 Authority Key Identifier:
                keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:c0:9d:c0:98:4b:b2:fd:09:b4:0e:7b:50:7c:b1:7f:e4:1e:
         6f:24:cc:78:8f:a4:8c:09:e3:40:01:40:0f:d0:42:06:76:ab:
         36:e9:c4:e6:6c:81:96:93:1a:6e:47:50:fb:56:ed:e2:e1:f1:
         09:5f:ae:1b:a9:82:ff:a4:b3:4e:32:1f:72:ed:48:88:60:7a:
         e3:35:11:d7:c8:e8:62:b3:37:a9:d5:b1:71:4f:8a:da:c9:bb:
         e5:1c:db:0e:a6:ff:4c:88:3e:1e:98:e1:75:e5:ca:9b:80:ef:
         01:ac:69:ea:82:3c:22:09:e9:23:0d:39:ae:7a:da:33:08:f9:
         91:d5:49:3e:af:35:c7:94:89:8a:a0:ba:a2:65:65:69:85:1d:
         dc:8e:59:51:9d:a5:6b:ce:e1:d1:77:92:64:50:1a:bd:d6:0b:
         66:09:70:de:7f:86:70:c0:c2:1b:c2:a1:7a:ec:f9:43:be:43:
         d2:b7:ca:43:e5:5c:7d:06:fa:19:ba:06:36:d1:7e:b3:34:bd:
         a4:cd:c2:18:a9:ae:94:bb:5c:98:c2:2f:86:9d:ac:c9:02:43:
         8e:0c:12:f9:24:8a:1b:67:83:b5:ec:ab:58:bb:a6:16:ce:eb:
         97:6f:8f:ab:6a:50:07:5a:dd:ec:05:51:5c:87:7f:ac:21:48:
         15:a1:e7:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----