Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File:                     5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier:          2gSbvD4OfjALmZwgBa97+FjA1T0i2tfvF7pNF5YG+0A=
Subject key identifier:   50:45:A9:0A:08:96:7E:26:6C:55:88:CF:9B:77:62:34:27:7F:78:0F
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer:       /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial:       0193584043C8579B05B26CF5B71910957C3F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number:          0156
Signing time:             Sat 23 Nov 2024 09:00:26 +0000
Manifest this update:     Sat 23 Nov 2024 09:00:26 +0000
Manifest next update:     Sun 24 Nov 2024 09:00:26 +0000
Files and hashes:         1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: 2LD1SKBWvB1wUDsJFoZw5OgavxkqbND3JZKPbfauIU8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:58:40:43:c8:57:9b:05:b2:6c:f5:b7:19:10:95:7c:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
        Validity
            Not Before: Nov 23 09:00:26 2024 GMT
            Not After : Nov 24 09:00:26 2024 GMT
        Subject: CN=5045a90a08967e266c5588cf9b776234277f780f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:d5:02:6c:b6:95:b3:79:25:5a:66:64:a3:c8:
                    c2:5f:4d:c9:95:81:2c:81:40:f3:6a:65:03:8a:af:
                    78:c3:53:5b:a4:f4:37:35:a5:05:2c:54:78:a4:02:
                    bb:f1:f7:d5:84:06:73:8f:96:11:ae:4e:b6:37:15:
                    d1:21:06:3f:bc:0a:61:ec:c5:58:63:94:eb:3d:59:
                    ce:28:c5:26:c2:ca:ed:ad:e9:ef:b7:99:19:bc:9a:
                    9a:6a:5a:b5:1f:68:20:a2:39:72:5c:f0:3c:84:71:
                    eb:e3:7a:3c:a5:db:75:e8:b0:b7:b5:71:07:d3:03:
                    ff:0b:8f:f4:88:2f:d9:c5:61:77:36:5d:21:3f:3a:
                    63:c4:19:aa:4e:a4:c0:06:a4:bc:51:e8:2f:06:61:
                    5b:78:cf:2b:dc:3a:53:81:e3:c4:f1:00:f5:5f:f6:
                    49:f3:f8:47:47:c6:60:d6:70:b2:06:16:d7:2f:66:
                    f1:bd:ee:e8:b8:bd:b4:37:3c:0b:b1:c0:fd:f2:a8:
                    4d:a9:4e:c9:d7:95:47:14:4c:bd:f9:07:9b:de:35:
                    28:39:25:9c:7c:7d:6e:bd:46:bf:2f:98:f2:4a:86:
                    5f:e1:73:fc:fc:1a:c8:62:d7:b5:d6:3c:8e:52:af:
                    ea:78:79:df:19:fb:cd:f9:2c:98:05:ac:84:18:32:
                    86:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:45:A9:0A:08:96:7E:26:6C:55:88:CF:9B:77:62:34:27:7F:78:0F
            X509v3 Authority Key Identifier:
                keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:50:27:b4:de:56:40:af:65:64:7b:f4:dc:93:ec:85:84:55:
         b3:76:cf:20:40:30:2d:54:1e:a6:b9:99:75:4b:5b:e4:6a:95:
         f2:3c:b4:5c:b4:04:d6:cb:18:ae:34:f0:4b:57:c0:2f:eb:aa:
         53:be:97:96:49:cf:b4:ac:b9:9a:24:8b:c1:a3:c4:36:c2:5f:
         d5:ac:4f:53:11:04:73:37:e2:2a:25:61:63:bf:57:51:87:36:
         17:4a:d8:08:c6:4f:36:fb:d4:33:db:7a:6a:cf:c1:29:3f:5b:
         dd:70:fe:22:08:41:aa:5c:10:70:81:2d:fb:03:1f:6c:c4:f3:
         87:87:81:2b:53:77:5d:be:9b:35:f2:f1:0f:00:1f:16:9b:78:
         9a:79:f2:fe:c1:ec:17:3f:7d:86:85:8a:03:62:f4:03:82:9f:
         04:0f:a1:51:ae:b8:7f:45:1d:76:0e:ca:b5:31:2e:e6:b9:eb:
         75:b0:fe:b9:59:4b:00:68:1e:80:77:51:fb:22:70:12:37:84:
         ff:f2:5b:26:0c:eb:f4:5e:c3:38:e8:6a:af:ed:1e:a1:4e:fc:
         94:4b:7b:c1:52:14:92:03:6b:d5:3d:c2:06:71:41:a2:38:a0:
         e8:4a:1d:ec:d6:a2:9c:89:80:65:b3:96:49:cb:57:7a:b0:9c:
         8a:4b:eb:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----