Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
File:                     daRvv8jeUjM5XHPeUflVO7doRgU.mft (raw, json)
Hash identifier:          vpboGkUD+SNVS5Mk8X9ClT2WPARGNaLbjyIwUGq6xBA=
Subject key identifier:   74:00:AD:ED:7D:24:D3:6E:AA:1F:1A:08:3A:AE:93:0C:6E:58:BE:A8
Authority key identifier: 75:A4:6F:BF:C8:DE:52:33:39:5C:73:DE:51:F9:55:3B:B7:68:46:05
Certificate issuer:       /CN=75a46fbfc8de5233395c73de51f9553bb7684605
Certificate serial:       018F893780C6E28D7A984C5F90727076D017
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
Manifest number:          1174
Signing time:             Sat 18 May 2024 01:01:06 +0000
Manifest this update:     Sat 18 May 2024 01:01:06 +0000
Manifest next update:     Sun 19 May 2024 01:01:06 +0000
Files and hashes:         1: daRvv8jeUjM5XHPeUflVO7doRgU.crl (hash: iontalCRnsliajsAnzRYzWRvdlR820I6Md6SAGkpy94=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:89:37:80:c6:e2:8d:7a:98:4c:5f:90:72:70:76:d0:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75a46fbfc8de5233395c73de51f9553bb7684605
        Validity
            Not Before: May 18 01:01:06 2024 GMT
            Not After : May 19 01:01:06 2024 GMT
        Subject: CN=7400aded7d24d36eaa1f1a083aae930c6e58bea8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:0f:64:37:96:08:c8:da:5a:9d:f0:f5:54:32:
                    61:1b:4b:af:fd:ce:8a:ca:b5:d9:02:44:d3:e8:01:
                    79:6b:57:bf:1a:2c:79:9c:81:de:47:88:63:30:e1:
                    30:c1:e0:78:2b:1c:1f:c8:43:f7:14:dc:2d:dd:1b:
                    33:9f:04:d7:9d:11:c7:d3:a6:f2:09:c5:90:a1:40:
                    5e:5b:71:f7:72:ba:5f:45:fe:c5:95:6d:b6:3e:67:
                    f4:db:bb:01:d3:8f:68:4e:e8:e6:be:4f:44:9e:31:
                    03:22:f8:d5:84:5c:91:19:31:61:89:0e:82:60:64:
                    16:f0:93:9f:7d:ca:f9:d3:99:4a:22:8b:a8:ce:9a:
                    25:0f:f0:25:68:f6:e4:e8:40:e9:38:5f:10:a3:49:
                    90:2e:b1:5c:02:33:d1:4f:04:40:e1:fd:93:33:99:
                    7c:69:a5:95:83:93:b1:53:3f:18:f6:c7:c5:f0:ea:
                    b4:f7:c8:4f:9c:cc:e9:a4:cd:57:42:cd:b3:85:20:
                    85:97:59:79:3a:07:18:8e:cc:68:70:a3:ea:1b:37:
                    47:b0:48:e0:37:22:f2:c7:c5:0f:6a:47:e0:d1:44:
                    9e:6b:92:01:dd:12:70:d6:84:35:bb:68:d4:c8:ef:
                    c4:c3:6b:29:33:da:03:ed:c4:57:d9:46:00:5f:3f:
                    c1:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:00:AD:ED:7D:24:D3:6E:AA:1F:1A:08:3A:AE:93:0C:6E:58:BE:A8
            X509v3 Authority Key Identifier:
                keyid:75:A4:6F:BF:C8:DE:52:33:39:5C:73:DE:51:F9:55:3B:B7:68:46:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:70:3c:78:69:6b:c8:40:1b:ed:d9:de:09:9c:bb:bb:a5:6f:
         11:2c:65:85:5b:e1:51:f4:b9:35:81:0c:09:3f:02:3a:dd:6e:
         56:81:b8:d9:fa:2e:58:d7:5c:c2:5d:94:84:f1:fa:69:3e:8f:
         72:44:9d:33:ae:f9:90:11:fd:4a:fd:64:6c:db:d7:50:b3:77:
         16:9d:25:11:a4:5c:cd:8e:a1:82:c8:54:2e:e4:aa:b0:c2:60:
         2c:7c:6f:07:70:9e:b1:8e:67:82:6e:76:a0:40:de:17:83:bf:
         a6:89:51:c9:f3:b6:28:e4:03:e2:41:a2:2d:e6:7c:f9:20:92:
         98:31:ff:cc:e7:62:35:ee:b3:d9:8c:67:6c:00:ca:bd:92:f5:
         6f:68:03:e7:c4:ca:3d:23:08:f4:22:7d:f7:58:7e:37:85:6a:
         c6:1b:d8:6e:8e:b6:d4:af:13:d7:5a:da:4b:c6:70:38:81:6b:
         d1:c6:ea:09:5e:8c:31:27:46:2d:11:f6:b3:13:67:15:82:0a:
         08:7b:a7:93:f2:71:99:32:dc:43:94:31:d4:28:b0:c9:2a:d7:
         af:0b:c4:f9:47:fa:3d:a6:3e:76:08:a6:8e:fa:57:d3:2d:f2:
         29:0a:c9:ab:52:d2:cf:ef:dd:c2:84:e8:57:14:96:c4:5c:a6:
         a8:a3:2c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----