Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
File:                     yS0-Y6HAGI17pgy4TXDk64m4rlE.mft (raw, json)
Hash identifier:          ODRRjA8y7oPxVU9y3tQfT2KGnMPdTxA9ItDPBLrxcWA=
Subject key identifier:   11:1D:85:8D:3E:42:45:74:7C:57:DE:3F:C4:1E:3B:36:6C:B5:85:AF
Authority key identifier: C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
Certificate issuer:       /CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Certificate serial:       01936BC8E27D4D1C68B30CAE0C4C49A0537D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
Manifest number:          0404
Signing time:             Wed 27 Nov 2024 04:02:27 +0000
Manifest this update:     Wed 27 Nov 2024 04:02:27 +0000
Manifest next update:     Thu 28 Nov 2024 04:02:27 +0000
Files and hashes:         1: yS0-Y6HAGI17pgy4TXDk64m4rlE.crl (hash: Rum8mZN5k6n/4zWifGrMx477fQl81VhuNdPTcNoJ960=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 23:02:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:6b:c8:e2:7d:4d:1c:68:b3:0c:ae:0c:4c:49:a0:53:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
        Validity
            Not Before: Nov 27 04:02:27 2024 GMT
            Not After : Nov 28 04:02:27 2024 GMT
        Subject: CN=111d858d3e4245747c57de3fc41e3b366cb585af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:98:4d:d4:11:95:5e:2b:f6:25:41:98:d2:e3:
                    28:8a:bf:3b:87:6b:35:90:fa:ae:ff:01:a6:b9:9d:
                    c1:cd:ce:65:2c:06:fc:3f:7a:a7:92:c8:b1:89:71:
                    c9:8b:37:dd:b9:da:a5:ff:a6:4d:45:ab:3e:99:5f:
                    90:42:cd:9d:37:37:a6:3d:5e:5e:60:60:33:ff:8b:
                    e9:f5:71:fe:9e:f1:76:bc:dd:a9:e2:2c:ec:dd:a4:
                    23:72:70:c0:75:d9:4d:b2:2d:59:a8:22:d4:7a:22:
                    0d:74:c8:b5:4b:70:f9:c1:5e:b2:a9:17:c2:6c:3c:
                    18:ce:98:62:56:6b:5a:35:e0:40:e0:63:00:40:c7:
                    74:62:66:4e:33:cf:05:96:d5:6f:dd:69:40:05:17:
                    74:9e:97:3a:ff:68:88:86:23:c9:89:c6:95:d8:8e:
                    23:b2:6e:78:0b:1f:70:27:5f:8c:4d:d8:14:de:b5:
                    6f:cf:aa:cc:d9:ab:db:d0:cd:32:14:db:46:62:7a:
                    15:4e:8c:24:f3:0c:2d:21:ea:17:6a:5d:b3:bf:7a:
                    69:78:2c:8a:b8:b6:22:2d:ae:dd:e7:10:fe:5f:30:
                    e2:2e:37:73:94:54:52:2e:2b:56:0a:ca:dd:55:ef:
                    b5:65:d0:23:7f:97:0c:f3:a7:9e:aa:93:77:4e:17:
                    89:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:1D:85:8D:3E:42:45:74:7C:57:DE:3F:C4:1E:3B:36:6C:B5:85:AF
            X509v3 Authority Key Identifier:
                keyid:C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:4f:7d:c3:2e:b2:55:04:ce:15:d1:da:24:a6:7c:47:04:66:
         7c:12:0b:ac:f9:07:1c:17:0f:36:7f:17:3b:82:6f:99:94:4c:
         e4:c5:28:c4:08:db:49:19:f4:d5:6f:a9:f3:8e:d0:d1:12:11:
         86:5c:6b:e0:76:d5:75:71:e6:63:e9:e1:f5:19:d3:1d:4f:d3:
         14:c1:e8:2a:df:53:1d:51:a7:d8:bb:b3:c2:5c:ec:a8:b6:04:
         cf:1c:b0:14:f9:18:2a:31:16:94:be:ec:08:3f:85:64:8d:a6:
         64:3c:fa:3a:e4:2a:d2:48:08:22:ad:40:24:c8:ac:01:0a:36:
         68:8f:79:9c:c1:4f:bf:49:10:8a:57:d1:68:c0:07:0a:73:ba:
         c0:eb:ed:6f:02:40:e8:30:f6:5d:53:0b:e5:a6:f7:80:db:15:
         a4:f0:07:44:08:13:a4:da:fa:36:8c:f2:8e:b4:63:9e:39:3d:
         e1:bd:9e:79:8c:f3:1c:89:06:32:18:4b:d7:fa:2d:b8:f8:6e:
         fa:83:b8:0d:93:35:a9:d0:1d:27:10:6e:c4:8a:40:36:98:55:
         3d:7a:49:82:9a:82:f6:76:4b:68:13:a8:d4:1c:bf:93:bc:32:
         f0:d2:49:71:a6:f0:c0:43:21:09:ce:62:da:ad:9a:27:24:42:
         22:22:00:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----