Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/c5674e-db61-4722-b922-535be275e6f5/1/TaktycvByBxzpp8xWlMbR_ROPFQ.mft
File:                     TaktycvByBxzpp8xWlMbR_ROPFQ.mft (raw, json)
Hash identifier:          qOtK/AkVDoo+B1iBbs6KANgKtQgBr+ceY7X6mwEWqa4=
Subject key identifier:   1C:27:AC:B7:C1:F2:40:0E:DD:CE:85:9C:0F:98:CC:D8:06:74:0A:06
Authority key identifier: 4D:A9:2D:C9:CB:C1:C8:1C:73:A6:9F:31:5A:53:1B:47:F4:4E:3C:54
Certificate issuer:       /CN=4da92dc9cbc1c81c73a69f315a531b47f44e3c54
Certificate serial:       019369DACFC64BBF6C65B0AD84197D1C1162
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TaktycvByBxzpp8xWlMbR_ROPFQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/70/c5674e-db61-4722-b922-535be275e6f5/1/TaktycvByBxzpp8xWlMbR_ROPFQ.mft
Manifest number:          0492
Signing time:             Tue 26 Nov 2024 19:02:47 +0000
Manifest this update:     Tue 26 Nov 2024 19:02:47 +0000
Manifest next update:     Wed 27 Nov 2024 19:02:47 +0000
Files and hashes:         1: TaktycvByBxzpp8xWlMbR_ROPFQ.crl (hash: kA123PUPBrqCuZGxAflTK+cYJ/6erpFez+sNc6SQZaE=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/70/c5674e-db61-4722-b922-535be275e6f5/1/TaktycvByBxzpp8xWlMbR_ROPFQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/70/c5674e-db61-4722-b922-535be275e6f5/1/TaktycvByBxzpp8xWlMbR_ROPFQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TaktycvByBxzpp8xWlMbR_ROPFQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:da:cf:c6:4b:bf:6c:65:b0:ad:84:19:7d:1c:11:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4da92dc9cbc1c81c73a69f315a531b47f44e3c54
        Validity
            Not Before: Nov 26 19:02:47 2024 GMT
            Not After : Nov 27 19:02:47 2024 GMT
        Subject: CN=1c27acb7c1f2400eddce859c0f98ccd806740a06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:86:64:d4:48:d4:3a:ae:82:be:af:59:91:57:
                    fc:61:3f:e5:37:b7:22:f9:57:84:a4:d2:09:79:21:
                    4d:7e:af:df:4b:01:7d:ce:70:d5:96:cc:57:45:51:
                    07:30:4a:0a:cd:18:b0:81:8d:19:10:76:1e:5a:ea:
                    35:d3:8b:4c:45:80:1c:8d:06:ff:d8:35:42:42:56:
                    5a:06:c0:29:fc:90:04:ca:0d:bb:ef:04:a8:9f:e4:
                    a0:79:73:33:8e:ea:81:9d:6f:c8:d0:ac:c2:21:18:
                    fa:3a:9c:05:a6:50:a8:bd:bc:7a:d5:48:66:2d:ed:
                    59:05:8e:eb:2b:f5:a2:83:a0:69:c5:3e:56:6f:75:
                    38:89:8d:29:3c:ef:77:82:92:22:55:1d:14:eb:09:
                    36:b0:f4:69:c9:c3:11:23:e0:aa:36:b7:df:b7:5b:
                    2e:ab:d3:43:f1:f7:7a:e9:56:ad:d3:36:1a:6a:26:
                    a3:df:04:16:10:d1:85:98:18:30:4b:f8:b7:7e:22:
                    ef:b0:b7:0b:fe:b9:e1:2d:9f:66:c5:19:aa:6c:0d:
                    36:ab:6e:ed:74:32:29:a6:8e:c1:51:b9:32:02:31:
                    7e:cd:d1:40:c0:d7:5b:d0:66:0d:2c:dd:c5:9e:74:
                    25:11:77:9a:3e:d2:33:9c:42:8c:c8:a0:24:ee:26:
                    ec:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:27:AC:B7:C1:F2:40:0E:DD:CE:85:9C:0F:98:CC:D8:06:74:0A:06
            X509v3 Authority Key Identifier:
                keyid:4D:A9:2D:C9:CB:C1:C8:1C:73:A6:9F:31:5A:53:1B:47:F4:4E:3C:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaktycvByBxzpp8xWlMbR_ROPFQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c5674e-db61-4722-b922-535be275e6f5/1/TaktycvByBxzpp8xWlMbR_ROPFQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c5674e-db61-4722-b922-535be275e6f5/1/TaktycvByBxzpp8xWlMbR_ROPFQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:d6:92:31:e3:7e:83:bf:3d:2a:90:ad:53:12:26:72:7c:2a:
         6f:f5:6b:ab:de:c7:7f:a1:36:de:13:5c:16:15:49:97:38:6f:
         91:d7:2d:1c:1b:99:35:02:d4:a4:f8:42:69:ce:89:69:cc:88:
         5b:b3:ec:12:78:d7:b6:07:13:56:02:d5:db:aa:49:6a:d6:8d:
         c4:1c:d9:02:db:22:43:c5:ac:bc:fd:da:f1:09:86:90:a2:e4:
         80:f8:c9:ea:53:f5:f2:81:c5:0c:c3:b6:a9:d1:b5:c7:bb:38:
         c8:46:f6:fc:18:4e:b6:b1:cc:72:2a:64:07:95:ee:8d:1a:20:
         7e:2c:87:9e:82:06:e5:08:64:34:4c:2b:1f:c7:f4:05:21:f7:
         4c:c0:c8:b6:8b:ee:1a:0e:33:a9:eb:16:ab:6f:41:c2:5b:9c:
         fd:0f:0f:ae:4f:6c:93:1d:40:c9:bd:31:83:81:ed:0f:94:60:
         30:95:2b:11:55:df:7f:bb:c5:96:01:d4:16:c7:ee:da:c0:60:
         ec:66:3f:4d:52:fb:40:1a:56:85:59:c2:3b:df:bc:e9:77:1a:
         4a:a0:a9:6e:76:8f:a7:88:be:05:1d:17:75:d9:25:fa:56:a2:
         c4:64:64:a9:4c:fb:e0:88:f1:e1:fd:a8:7c:c4:c3:e6:5c:f5:
         32:11:e9:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----