Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft
File:                     AZYrnNLlVrWW_HJDVlgHueLchoo.mft (raw, json)
Hash identifier:          I7hOCfQ/0G+c8v7BNkbm7KvVvvZUKmIhDsG8r7XLlOo=
Subject key identifier:   76:A2:3F:CB:BB:CB:C6:98:6A:28:AD:9C:2F:42:5B:C0:38:AF:83:32
Authority key identifier: 01:96:2B:9C:D2:E5:56:B5:96:FC:72:43:56:58:07:B9:E2:DC:86:8A
Certificate issuer:       /CN=01962b9cd2e556b596fc7243565807b9e2dc868a
Certificate serial:       018F874A2817C52CDD5E423DE2258C360B65
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AZYrnNLlVrWW_HJDVlgHueLchoo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft
Manifest number:          0281
Signing time:             Fri 17 May 2024 16:02:15 +0000
Manifest this update:     Fri 17 May 2024 16:02:15 +0000
Manifest next update:     Sat 18 May 2024 16:02:15 +0000
Files and hashes:         1: AZYrnNLlVrWW_HJDVlgHueLchoo.crl (hash: jJJA1huFOPE7rgpP9yAsdO10sDfUPa1xzIrU/0OUwY0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AZYrnNLlVrWW_HJDVlgHueLchoo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:02:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4a:28:17:c5:2c:dd:5e:42:3d:e2:25:8c:36:0b:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01962b9cd2e556b596fc7243565807b9e2dc868a
        Validity
            Not Before: May 17 16:02:15 2024 GMT
            Not After : May 18 16:02:15 2024 GMT
        Subject: CN=76a23fcbbbcbc6986a28ad9c2f425bc038af8332
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:0f:e7:88:2c:f1:eb:50:a7:d0:38:80:a5:f9:
                    a8:47:73:2d:63:87:0f:f6:51:05:71:d1:37:b4:75:
                    01:54:05:35:ec:61:cc:09:68:85:13:57:85:85:28:
                    d6:b4:26:9a:11:f5:8b:09:3a:4a:4b:77:c8:5d:94:
                    1c:7c:f4:2e:9a:91:67:6e:de:d9:9b:2e:78:43:e3:
                    3f:6c:d8:28:ee:7a:bf:08:55:8f:f4:a8:e9:bd:d8:
                    17:48:c8:da:ef:b4:df:7c:64:52:f5:d4:18:98:30:
                    0f:b8:4f:b5:35:e1:df:b5:e2:f0:9c:4d:62:8d:4a:
                    ca:d5:a0:de:ea:bb:b0:70:ca:a7:fb:69:18:22:93:
                    e1:05:d2:98:bf:a5:c6:63:57:e7:dc:4f:53:5a:b0:
                    75:e5:01:98:7e:59:3f:ba:b5:fd:2f:fd:e0:3d:a4:
                    f7:65:9d:3e:95:16:cb:0d:4c:be:34:50:69:bd:c2:
                    dd:17:cb:c9:74:c3:a5:ae:0d:03:32:42:09:05:f0:
                    1b:50:56:e8:19:b4:47:59:56:79:bf:63:75:9f:c3:
                    15:12:95:4e:dc:86:65:3a:f1:6f:46:aa:99:dd:2f:
                    f7:a5:ff:cf:a1:9e:aa:69:50:97:35:74:ad:82:06:
                    8d:a6:ab:69:05:4f:e8:22:d0:db:c8:ae:4f:51:e0:
                    54:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:A2:3F:CB:BB:CB:C6:98:6A:28:AD:9C:2F:42:5B:C0:38:AF:83:32
            X509v3 Authority Key Identifier:
                keyid:01:96:2B:9C:D2:E5:56:B5:96:FC:72:43:56:58:07:B9:E2:DC:86:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AZYrnNLlVrWW_HJDVlgHueLchoo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:19:f8:49:ae:6d:4a:80:72:a6:ee:31:97:8c:9f:75:d0:6c:
         e0:80:be:08:cb:83:ea:99:7b:6a:47:48:c3:10:11:11:61:f3:
         b6:0c:bf:db:f3:5a:8c:f8:59:ec:91:09:15:95:60:fc:12:df:
         b7:01:29:a4:0c:5e:93:94:52:9a:9b:37:64:8e:09:57:f7:30:
         a7:1e:38:5a:c5:fa:0c:18:a7:35:9e:67:79:ae:e5:58:ac:58:
         f7:d6:0e:f5:b0:0a:14:ca:ab:68:e7:7b:4c:52:04:c9:20:c8:
         6e:df:91:13:04:c1:b8:de:9f:5f:bc:b2:54:be:6d:23:c1:61:
         a4:c2:03:6e:84:f1:3e:6c:b7:df:6c:4f:2b:8d:06:cd:0a:a6:
         00:96:e9:c5:f7:07:21:75:12:63:80:fe:fc:40:c8:10:fa:13:
         fd:73:77:da:67:cd:a3:df:98:6f:06:c1:cc:aa:f6:f1:ea:10:
         51:68:4f:e2:54:7f:16:d8:04:e3:f3:24:25:8a:a5:b0:07:75:
         ba:77:03:a9:fd:5f:1b:56:f5:48:aa:7a:b7:6d:45:5e:4c:f0:
         56:57:de:f9:8d:55:c7:2e:da:81:4e:db:87:b6:3e:46:b9:f6:
         be:dd:37:fc:a5:7c:5b:08:cf:e2:14:87:16:05:b5:5a:59:59:
         96:af:8c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----