Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/d96b82-58dd-4dda-bfd3-da05b37c8e24/1/rkyfGKFH6zVjDiNFxUAOFop8icE.mft
File:                     rkyfGKFH6zVjDiNFxUAOFop8icE.mft (raw, json)
Hash identifier:          Jc+QgoWetcXs7dWVnyPMcswUxtwMMt9nv2IXI9tHEEA=
Subject key identifier:   BB:9B:2F:60:AB:DC:EB:BC:50:FE:CB:CA:2F:66:2A:F8:03:5D:80:0F
Authority key identifier: AE:4C:9F:18:A1:47:EB:35:63:0E:23:45:C5:40:0E:16:8A:7C:89:C1
Certificate issuer:       /CN=ae4c9f18a147eb35630e2345c5400e168a7c89c1
Certificate serial:       018F874B01A2BFCB31AF335747F12C79B81A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rkyfGKFH6zVjDiNFxUAOFop8icE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/d96b82-58dd-4dda-bfd3-da05b37c8e24/1/rkyfGKFH6zVjDiNFxUAOFop8icE.mft
Manifest number:          06BF
Signing time:             Fri 17 May 2024 16:03:10 +0000
Manifest this update:     Fri 17 May 2024 16:03:10 +0000
Manifest next update:     Sat 18 May 2024 16:03:10 +0000
Files and hashes:         1: rkyfGKFH6zVjDiNFxUAOFop8icE.crl (hash: m7P52TphYqkBA+NgmhchTQ7CLTOyZyJJ2thJw7MmLYM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/d96b82-58dd-4dda-bfd3-da05b37c8e24/1/rkyfGKFH6zVjDiNFxUAOFop8icE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/d96b82-58dd-4dda-bfd3-da05b37c8e24/1/rkyfGKFH6zVjDiNFxUAOFop8icE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rkyfGKFH6zVjDiNFxUAOFop8icE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:03:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4b:01:a2:bf:cb:31:af:33:57:47:f1:2c:79:b8:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ae4c9f18a147eb35630e2345c5400e168a7c89c1
        Validity
            Not Before: May 17 16:03:10 2024 GMT
            Not After : May 18 16:03:10 2024 GMT
        Subject: CN=bb9b2f60abdcebbc50fecbca2f662af8035d800f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:c2:41:b7:42:0c:3b:e9:0f:2b:c4:38:b5:8d:
                    36:34:4b:ee:25:85:5a:c3:58:68:45:2a:44:37:c7:
                    2a:8b:07:5a:27:f0:39:12:eb:57:99:fb:ca:f5:d6:
                    4d:0e:97:aa:fa:76:24:3b:c4:6d:28:72:48:cf:1c:
                    3f:2d:5a:74:ea:68:5a:35:ae:58:20:b0:24:0f:bb:
                    1d:97:2b:10:f5:17:e8:ef:43:ca:01:b9:30:fc:71:
                    67:45:e8:86:44:e8:6b:e2:f1:54:65:df:81:d1:09:
                    00:b1:64:86:84:3e:4e:83:a4:6e:c7:1c:9e:54:ea:
                    48:f3:1f:a1:ae:38:2d:b7:cb:ca:2d:c9:43:4a:ee:
                    d1:1b:eb:03:56:9e:8d:cb:3c:1d:4c:86:cb:dc:6c:
                    44:a6:7a:ed:a0:c6:80:53:24:c0:e7:af:60:05:eb:
                    4d:cc:ce:cd:69:0e:92:db:58:df:24:5e:04:62:7a:
                    06:8b:db:24:1a:b3:e7:bd:d4:c0:27:19:fb:e5:4d:
                    b2:7f:ee:27:33:70:5d:5b:f0:95:03:ed:4f:cb:27:
                    05:e6:f2:b8:dc:1b:97:66:ee:85:ee:08:46:e3:99:
                    79:77:b1:d3:b0:41:7f:d3:6e:07:9f:b8:14:a1:7f:
                    23:c7:00:e0:ce:7f:00:f8:4f:97:27:ee:f3:00:08:
                    de:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:9B:2F:60:AB:DC:EB:BC:50:FE:CB:CA:2F:66:2A:F8:03:5D:80:0F
            X509v3 Authority Key Identifier:
                keyid:AE:4C:9F:18:A1:47:EB:35:63:0E:23:45:C5:40:0E:16:8A:7C:89:C1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkyfGKFH6zVjDiNFxUAOFop8icE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d96b82-58dd-4dda-bfd3-da05b37c8e24/1/rkyfGKFH6zVjDiNFxUAOFop8icE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d96b82-58dd-4dda-bfd3-da05b37c8e24/1/rkyfGKFH6zVjDiNFxUAOFop8icE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:0e:8d:7a:1f:6e:b9:f6:da:36:2c:04:3c:b0:69:22:8b:2a:
         d3:3c:8c:72:75:1f:54:de:dc:d4:3b:d1:06:00:6e:29:d9:30:
         e5:91:32:d8:24:48:38:84:99:ec:f2:b7:1c:71:2d:bf:ee:2f:
         ce:e6:74:ef:ca:04:6c:89:4c:a3:1f:f9:fa:66:60:f2:52:25:
         64:95:e6:20:4f:cd:6f:06:f0:e7:dc:da:58:fc:4b:bf:3f:1c:
         c2:1c:b4:ea:67:f1:a6:f6:79:8d:05:32:57:f3:6c:73:2c:36:
         f8:89:14:46:9c:c5:52:9e:4f:9a:00:20:4e:2a:c3:dc:e5:5f:
         81:d5:28:fa:93:23:4d:63:75:76:8a:03:a6:16:7f:0f:a9:bf:
         00:ff:83:ae:92:39:9e:f5:d2:19:e7:f5:f8:0a:37:66:23:b7:
         d7:d1:ed:55:ca:d6:95:5d:59:4b:6f:49:28:fd:97:d0:e7:01:
         2a:cb:16:07:b9:a3:0f:ae:30:de:ac:59:e9:75:76:95:5c:31:
         60:43:d7:1f:33:d5:df:b3:de:20:bf:49:ee:51:bf:5f:41:d0:
         81:9f:2a:69:4c:ad:06:50:39:64:bc:0d:87:0f:88:83:d6:a8:
         84:61:01:3c:71:42:c5:3c:dc:d5:50:e9:07:bc:9a:0a:ae:27:
         ac:db:0a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----