Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f0c914-e83f-493a-8b07-19b2d41bea79/1/Y-ftmpXgsiN2kMdL_njP7eLETnw.mft
File:                     Y-ftmpXgsiN2kMdL_njP7eLETnw.mft (raw, json)
Hash identifier:          XKIdnUIIiaY8FtqQ2Kct2gpvaBZZ50InKM+XMr/MRf8=
Subject key identifier:   F5:08:EA:3A:98:D8:E0:DA:06:9B:DE:8D:4F:37:BC:39:C3:25:19:9B
Authority key identifier: 63:E7:ED:9A:95:E0:B2:23:76:90:C7:4B:FE:78:CF:ED:E2:C4:4E:7C
Certificate issuer:       /CN=63e7ed9a95e0b2237690c74bfe78cfede2c44e7c
Certificate serial:       018F8748E58F2115E239C9D5B4C43849A342
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y-ftmpXgsiN2kMdL_njP7eLETnw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/53/f0c914-e83f-493a-8b07-19b2d41bea79/1/Y-ftmpXgsiN2kMdL_njP7eLETnw.mft
Manifest number:          04CE
Signing time:             Fri 17 May 2024 16:00:52 +0000
Manifest this update:     Fri 17 May 2024 16:00:52 +0000
Manifest next update:     Sat 18 May 2024 16:00:52 +0000
Files and hashes:         1: Y-ftmpXgsiN2kMdL_njP7eLETnw.crl (hash: 2+9k8X0GPpiAXoytj2jb+9duCiGuRrMsonvTf3Rh3Hc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/53/f0c914-e83f-493a-8b07-19b2d41bea79/1/Y-ftmpXgsiN2kMdL_njP7eLETnw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/53/f0c914-e83f-493a-8b07-19b2d41bea79/1/Y-ftmpXgsiN2kMdL_njP7eLETnw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y-ftmpXgsiN2kMdL_njP7eLETnw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:e5:8f:21:15:e2:39:c9:d5:b4:c4:38:49:a3:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63e7ed9a95e0b2237690c74bfe78cfede2c44e7c
        Validity
            Not Before: May 17 16:00:52 2024 GMT
            Not After : May 18 16:00:52 2024 GMT
        Subject: CN=f508ea3a98d8e0da069bde8d4f37bc39c325199b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:a4:05:e4:c3:2a:05:83:14:db:d9:78:e1:78:
                    11:1a:06:5b:97:5b:5c:68:3a:95:67:5e:32:3f:65:
                    b1:35:f3:dd:d6:d9:a5:1f:e1:1d:5d:1d:5b:c5:91:
                    49:3f:2f:92:e2:7e:ff:d8:68:1a:9e:17:cb:0e:7a:
                    2b:f5:19:89:d9:68:dc:b9:8f:1f:40:2c:dc:51:10:
                    12:ee:c8:ce:ec:3e:c5:83:7e:ab:3c:98:a6:af:6b:
                    01:05:de:f0:91:fc:97:4c:c5:4d:49:db:2d:02:f0:
                    10:93:01:b7:eb:2e:f3:a8:dc:f5:94:49:c8:b2:37:
                    20:29:02:63:7b:49:6e:1b:17:86:27:3d:46:cd:48:
                    ef:51:78:29:a4:a4:01:cc:04:e4:2b:58:eb:a6:25:
                    c4:2d:1f:2a:aa:bc:54:67:27:71:22:d2:16:3c:71:
                    fe:90:dc:2d:3c:56:f1:3f:da:1c:3e:a4:4e:bd:4d:
                    26:5e:bf:c2:56:32:f6:c3:f3:5a:a3:df:c9:bb:43:
                    b2:dc:04:4a:b4:ff:6f:fd:20:f5:11:29:87:04:cf:
                    ab:e3:58:ac:59:c0:46:c4:5b:8b:27:eb:72:1a:4a:
                    6c:00:67:2e:26:6f:86:f9:86:f4:b7:4c:ce:61:38:
                    e2:c8:f6:c9:44:42:be:94:ad:a2:e9:2a:66:5f:3f:
                    b3:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:08:EA:3A:98:D8:E0:DA:06:9B:DE:8D:4F:37:BC:39:C3:25:19:9B
            X509v3 Authority Key Identifier:
                keyid:63:E7:ED:9A:95:E0:B2:23:76:90:C7:4B:FE:78:CF:ED:E2:C4:4E:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-ftmpXgsiN2kMdL_njP7eLETnw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f0c914-e83f-493a-8b07-19b2d41bea79/1/Y-ftmpXgsiN2kMdL_njP7eLETnw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f0c914-e83f-493a-8b07-19b2d41bea79/1/Y-ftmpXgsiN2kMdL_njP7eLETnw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:2c:8a:75:3f:7f:e0:e7:42:f0:60:67:5b:d5:ae:3b:a1:37:
         9c:09:ee:2a:ab:68:69:11:c4:cd:0a:b5:3b:59:40:e6:ba:eb:
         6f:f5:eb:26:ec:02:eb:fe:18:da:1b:55:16:2d:7a:97:e1:91:
         39:32:23:77:a3:e7:df:20:17:3c:ae:e4:34:5f:fc:6f:d5:76:
         07:32:8b:e5:8d:1c:4b:41:44:50:6d:8c:e5:c8:c5:6b:68:7c:
         2f:87:c4:37:17:30:fc:93:e2:25:8d:0d:5b:64:9d:20:70:f9:
         7b:9a:73:c2:f2:98:ec:e5:cf:30:70:ac:5c:cb:f0:23:6f:3a:
         f3:f9:86:24:72:49:d8:67:18:d9:41:b9:d0:99:69:e1:4e:17:
         e5:b8:38:85:20:65:7c:5a:07:93:81:1c:36:61:d4:87:b8:c7:
         b1:bb:73:cd:8c:cd:52:c7:7b:a8:d5:33:3f:02:fa:43:f6:0e:
         67:53:39:65:fb:10:a8:ae:f2:90:78:d5:a1:38:85:8c:e3:67:
         4a:6d:60:df:b8:2d:0a:b4:38:96:9f:ad:cd:02:28:4a:69:4f:
         c0:e3:64:bf:0e:f0:53:b3:6c:da:e6:da:85:b2:bc:ae:ab:2a:
         9d:52:b4:83:51:17:3a:59:c1:b2:fd:cc:f3:c0:f0:94:46:15:
         fe:27:57:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----