Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
File:                     Ad0iu63J75fJwaOGG21rTE3dhoc.mft (raw, json)
Hash identifier:          XYYo+pJGTsr5R6kVHONM3OrlAc6OfQHkNba9DvIMHEA=
Subject key identifier:   0B:02:B7:0D:54:B9:82:60:9A:FD:63:18:36:62:77:1F:33:68:DC:75
Authority key identifier: 01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87
Certificate issuer:       /CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
Certificate serial:       018F324FBE6FAE0482E5CB53A495C6EDDFB7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
Manifest number:          0B3D
Signing time:             Wed 01 May 2024 04:00:37 +0000
Manifest this update:     Wed 01 May 2024 04:00:37 +0000
Manifest next update:     Thu 02 May 2024 04:00:37 +0000
Files and hashes:         1: Ad0iu63J75fJwaOGG21rTE3dhoc.crl (hash: pybbOltvV0us/26xDF1rseeHv0/ZQfKEW5fLqYZ0ZDk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 02 May 2024 04:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:32:4f:be:6f:ae:04:82:e5:cb:53:a4:95:c6:ed:df:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
        Validity
            Not Before: May  1 04:00:37 2024 GMT
            Not After : May  2 04:00:37 2024 GMT
        Subject: CN=0b02b70d54b982609afd63183662771f3368dc75
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:6b:b7:a2:09:44:3f:f8:06:f8:15:9c:c8:e8:
                    71:29:20:a0:ac:15:b3:9c:f4:a8:4a:07:dc:9a:2c:
                    5d:62:0c:29:8d:81:15:a5:75:aa:aa:23:28:40:88:
                    b2:fc:2e:95:96:37:9e:f8:72:6f:f5:6f:32:9b:1b:
                    e0:17:5b:56:ba:a9:59:e9:a2:a3:27:57:3b:3a:a9:
                    81:a5:93:6d:3f:d4:9b:b0:ad:25:b7:ef:c3:e2:ef:
                    0d:5c:1c:02:a2:96:95:f6:67:13:dc:ea:fe:a0:04:
                    88:bd:47:96:44:ec:fe:62:63:83:68:8c:b2:95:34:
                    05:2c:e9:43:14:74:7c:e3:eb:12:25:e8:a9:21:5c:
                    0b:f9:d1:0d:90:26:4f:5e:67:82:5d:d0:b2:57:73:
                    d1:27:3c:e0:1b:70:58:0e:7f:64:af:fc:69:e1:9c:
                    6f:dc:62:83:b4:10:be:b5:d4:d5:e2:0f:36:fa:23:
                    fa:2c:5f:32:5b:81:36:a0:f4:50:7d:b7:a9:76:1a:
                    e0:7b:1c:c4:36:f2:52:75:c7:f2:70:78:7b:35:5f:
                    be:8d:f2:66:15:d1:73:be:9b:87:4a:48:24:75:7e:
                    ec:aa:59:4e:cd:1d:7a:60:bc:be:e1:d6:e1:fa:b0:
                    e5:7c:5c:87:03:dd:2e:73:72:1e:51:cc:08:8c:b8:
                    2a:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:02:B7:0D:54:B9:82:60:9A:FD:63:18:36:62:77:1F:33:68:DC:75
            X509v3 Authority Key Identifier:
                keyid:01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:d1:f3:7d:f4:c7:e1:5e:fa:c2:0a:f9:13:9a:d0:73:7a:0e:
         3e:49:fd:55:93:8e:0d:79:df:8f:1b:56:e9:60:ac:8f:1a:7d:
         b7:3f:26:1a:a6:8c:87:33:61:b5:87:e0:1c:da:57:d1:65:6a:
         3f:6f:a2:14:12:0d:c1:3d:41:d5:cf:c0:bd:e0:3c:ce:7b:1b:
         f3:4e:1f:91:66:34:9b:5f:80:13:ab:bd:eb:f9:74:0a:0b:e0:
         e6:7b:62:f7:21:e6:af:41:f1:50:ca:aa:ba:c0:69:06:7b:0d:
         5f:fc:26:85:f5:0b:5c:f0:a8:8a:06:a5:b2:39:49:a3:82:30:
         41:6d:c8:06:d9:c9:f5:ec:51:1c:01:aa:ed:2f:2c:d3:18:4d:
         c0:0d:0e:d3:a8:17:14:1d:1d:e6:a6:f0:6e:a6:74:73:50:51:
         5b:c2:d6:e9:a9:ab:24:be:c4:83:75:25:d1:b9:6c:cc:87:c0:
         85:d1:aa:cd:77:ab:af:6c:f8:73:3e:a2:3c:25:31:d3:eb:8a:
         a1:04:c7:22:ee:9e:d1:73:3f:17:34:11:46:69:aa:b5:68:be:
         47:29:7f:26:32:9c:72:80:0f:24:e6:53:3c:5c:d2:65:6a:f6:
         67:5e:78:b4:68:4f:41:48:90:cf:4a:b2:8c:12:6c:21:5a:b0:
         22:ee:4e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----