Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
File:                     rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft (raw, json)
Hash identifier:          Np5dDB8Mn/cmtuzUfqPKIJA5JR9pdMPIYa03UZ3PTIQ=
Subject key identifier:   78:92:B2:E1:1C:00:E9:3B:18:68:50:08:AB:B4:0D:7E:4D:78:CD:DF
Authority key identifier: AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78
Certificate issuer:       /CN=ad30fb4388ee67144ae04ddc86812d63e028f478
Certificate serial:       018F874AABCB4765DE36DDD8474A62CD798A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 16:02:48 +0000
Manifest this update:     Fri 17 May 2024 16:02:48 +0000
Manifest next update:     Sat 18 May 2024 16:02:48 +0000
Files and hashes:         1: rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl (hash: CBhZ2dF+Dd0rXopF9k9F1TnURfQ8IvxIbTDsBmwEcOg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:02:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4a:ab:cb:47:65:de:36:dd:d8:47:4a:62:cd:79:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad30fb4388ee67144ae04ddc86812d63e028f478
        Validity
            Not Before: May 17 16:02:48 2024 GMT
            Not After : May 18 16:02:48 2024 GMT
        Subject: CN=7892b2e11c00e93b18685008abb40d7e4d78cddf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:ef:63:7c:00:ed:b5:b5:5f:50:5b:99:48:e1:
                    57:9a:07:8d:6c:c3:d6:97:fb:32:46:28:d3:64:16:
                    f8:34:e2:af:d7:d5:b5:ae:07:ea:81:67:a2:88:36:
                    06:ba:ef:a9:99:e6:0d:bc:1e:aa:b3:18:7a:e9:d1:
                    73:2e:94:c1:6e:7e:55:21:26:9d:10:1f:af:57:83:
                    27:38:b7:77:51:d7:61:e1:fb:41:4e:08:0e:40:ea:
                    92:bd:5b:cb:f7:c7:9f:52:c9:02:3e:08:d0:65:42:
                    0a:12:c1:75:fc:b5:0d:be:a7:fd:08:8a:0c:0b:81:
                    af:fc:2b:11:dc:e7:9f:fb:1c:b8:bb:83:dc:f2:da:
                    af:dd:ae:01:84:b9:ee:fa:b6:bb:4e:e1:de:63:9e:
                    e7:93:09:04:ab:f6:0d:7b:0c:e0:37:86:f1:09:a9:
                    f8:a9:65:0d:61:c0:a6:4c:17:12:92:e2:9a:fb:ac:
                    82:a9:bf:53:d7:5a:38:10:5e:c9:ee:fd:b1:bf:da:
                    e9:6e:c6:ac:fe:22:e3:ac:8c:2b:bf:ea:88:27:32:
                    a1:7f:e9:64:4f:87:40:74:ff:75:f8:65:72:10:11:
                    24:2c:bd:c4:33:40:3b:eb:56:8a:eb:10:11:63:37:
                    cb:7e:b7:ac:c3:dc:1f:ef:81:0b:10:3c:db:41:ac:
                    d6:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:92:B2:E1:1C:00:E9:3B:18:68:50:08:AB:B4:0D:7E:4D:78:CD:DF
            X509v3 Authority Key Identifier:
                keyid:AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:e0:00:80:72:78:27:e1:d7:5b:d7:6c:0c:93:a5:ab:26:3b:
         d3:55:45:de:a6:27:77:39:23:95:35:9b:52:35:89:71:9f:b1:
         17:a2:26:f9:58:63:28:4d:94:3b:b9:71:3a:6a:01:af:3d:f6:
         86:84:02:66:e2:47:8f:47:4c:45:5a:9d:34:a7:3d:a3:38:06:
         82:f7:8e:9a:82:95:1c:20:95:09:fa:2d:0c:0a:bd:d4:30:44:
         45:93:66:cf:2a:1d:6f:c3:3c:38:f6:8c:62:c9:02:3d:c9:d9:
         49:d5:45:83:58:e2:1b:16:b8:bc:0e:f1:af:7f:48:9a:8b:3f:
         74:b5:2b:ea:94:7a:27:fb:fe:46:90:43:8e:07:74:10:ee:3a:
         6a:d6:fd:22:ef:a9:23:1f:e3:c1:c9:81:5b:29:3e:02:49:87:
         6f:a0:97:91:91:c2:65:a1:ce:92:17:9c:17:b2:a2:f5:b8:85:
         83:bb:3f:4c:27:c2:1e:c1:ce:37:9f:ea:0d:ce:e7:80:17:4d:
         78:4e:44:0f:eb:f1:6c:d2:77:3b:f1:52:20:96:74:f9:25:b9:
         1e:d7:c4:de:ec:6c:05:b8:74:48:31:1c:b5:79:63:c2:8e:57:
         da:56:81:75:56:53:db:7f:c7:26:31:62:72:e9:cc:07:11:0d:
         c2:45:9e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----