Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
File:                     3C8IdW9U7NcoDR6sz4eK6z8orE8.mft (raw, json)
Hash identifier:          0Qfe/VVusthm7u8ygVISib8hITZdoeXLnDmmQWa3mus=
Subject key identifier:   4B:51:11:62:0E:9C:B5:72:D0:7D:D2:5E:36:4B:9E:4E:3A:8A:65:BE
Authority key identifier: DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F
Certificate issuer:       /CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
Certificate serial:       0190411C0037B5F8A03963545EA44E841321
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
Manifest number:          0EE6
Signing time:             Sat 22 Jun 2024 18:01:12 +0000
Manifest this update:     Sat 22 Jun 2024 18:01:12 +0000
Manifest next update:     Sun 23 Jun 2024 18:01:12 +0000
Files and hashes:         1: 3C8IdW9U7NcoDR6sz4eK6z8orE8.crl (hash: 6nvfhY9jd+L1TzN2XNxmtyt37JLodvZXE6Y7rMJIGfM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 18:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:1c:00:37:b5:f8:a0:39:63:54:5e:a4:4e:84:13:21
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
        Validity
            Not Before: Jun 22 18:01:12 2024 GMT
            Not After : Jun 23 18:01:12 2024 GMT
        Subject: CN=4b5111620e9cb572d07dd25e364b9e4e3a8a65be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:ee:39:61:38:99:a7:cc:03:43:75:5c:04:3a:
                    00:d3:e9:83:53:c8:34:b0:81:f1:62:53:82:2b:a3:
                    cb:63:f2:f0:75:e5:1c:45:5f:71:bb:c0:e7:ca:12:
                    eb:ec:67:aa:09:f4:85:97:a9:c0:38:fb:e7:ce:a9:
                    9c:b4:cb:89:d1:bf:cd:6e:46:2c:fe:fe:14:1c:e5:
                    5e:d9:4c:8f:d4:82:b2:73:5a:98:c3:55:d8:fd:f9:
                    64:d5:67:e3:5b:0f:b6:91:39:0f:b4:da:40:05:7f:
                    f1:58:fc:8f:f3:0a:97:a7:83:47:03:d9:79:93:3f:
                    c5:18:c8:51:49:60:7b:95:1a:9d:d3:b7:12:75:c0:
                    70:e9:3a:73:cf:73:8b:40:c1:3c:ed:33:06:27:3e:
                    4f:45:f2:29:4c:b1:eb:5f:64:18:34:9b:50:6b:90:
                    a1:e9:64:45:8a:f1:07:2f:0d:fc:73:22:3a:b8:c6:
                    3a:64:11:db:71:6f:70:c0:d4:88:9f:c4:c7:90:97:
                    1d:ba:69:19:64:1d:0a:7f:12:17:fe:e9:70:cb:5e:
                    ce:fe:cb:9e:dc:c5:57:de:68:6d:4b:c6:3e:86:0e:
                    d0:c8:67:cf:6a:d3:82:fe:bd:5a:78:5c:3e:0c:37:
                    f7:50:63:14:23:19:91:10:d8:3a:5c:42:4c:a4:bb:
                    65:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:51:11:62:0E:9C:B5:72:D0:7D:D2:5E:36:4B:9E:4E:3A:8A:65:BE
            X509v3 Authority Key Identifier:
                keyid:DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:85:c9:73:9d:d4:9b:94:6a:d9:c0:f4:5c:8c:02:3d:f8:1b:
         3d:9e:fb:4c:13:c4:86:04:b3:39:89:9a:1e:bb:4b:3e:35:d8:
         0d:b1:c4:0e:5e:32:ae:af:e7:9c:83:86:e1:8c:11:ce:8a:24:
         5e:70:37:71:7e:e7:f6:75:70:0d:02:19:61:d7:e2:0a:1b:98:
         37:2d:8d:6c:a4:9b:46:2d:14:c5:b4:db:00:35:be:f5:92:88:
         0d:38:f4:eb:c3:45:47:19:8b:c2:b6:d4:f7:f7:32:23:ad:68:
         2b:44:da:8c:55:bb:e5:73:7e:b8:40:4e:b5:a9:52:26:ad:17:
         8a:99:2b:09:62:46:cb:6b:b5:c8:ea:d9:a8:98:f9:7a:88:af:
         bb:5b:ea:cb:77:05:76:85:57:4d:f2:c7:3f:0d:5a:83:ce:97:
         0c:24:0d:ca:81:c4:03:13:4a:ce:8d:0b:ef:5c:c2:6b:f6:e2:
         9a:41:77:a2:f4:10:f5:a9:3b:3e:91:97:35:72:9e:23:a7:17:
         dd:4c:01:e2:fb:ae:98:7c:81:60:9e:c4:4e:0a:75:2e:fc:e3:
         f8:e7:35:d3:a0:7d:94:c9:57:28:68:7b:49:ff:1d:36:b4:2a:
         f1:45:46:e7:1a:f6:db:55:9f:9f:5b:2d:18:a9:e4:ee:50:50:
         45:8d:f7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----