Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
File:                     HRAqymzxNRE4UpTnfb4nN2jAoEs.mft (raw, json)
Hash identifier:          vMlMZVZLK9hBOx6j1JJe+tp+q6+Zet97V22JvAxLgA0=
Subject key identifier:   F5:76:2C:88:75:DC:0C:5E:01:03:42:64:B2:0D:86:08:69:35:32:5D
Authority key identifier: 1D:10:2A:CA:6C:F1:35:11:38:52:94:E7:7D:BE:27:37:68:C0:A0:4B
Certificate issuer:       /CN=1d102aca6cf13511385294e77dbe273768c0a04b
Certificate serial:       019356898D9FB8B8A7537CA1C329665357CB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
Manifest number:          084E
Signing time:             Sat 23 Nov 2024 01:01:15 +0000
Manifest this update:     Sat 23 Nov 2024 01:01:15 +0000
Manifest next update:     Sun 24 Nov 2024 01:01:15 +0000
Files and hashes:         1: HRAqymzxNRE4UpTnfb4nN2jAoEs.crl (hash: RvCJ72C4Ae4bjf1/gz+Ony8P4PEM2y5uHD/nJcHKyIA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 01:01:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:56:89:8d:9f:b8:b8:a7:53:7c:a1:c3:29:66:53:57:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d102aca6cf13511385294e77dbe273768c0a04b
        Validity
            Not Before: Nov 23 01:01:15 2024 GMT
            Not After : Nov 24 01:01:15 2024 GMT
        Subject: CN=f5762c8875dc0c5e01034264b20d86086935325d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:0c:00:46:68:6b:21:5a:04:a8:44:af:8c:29:
                    20:ed:62:6f:31:c4:30:07:a8:3d:ef:a9:2f:ec:fb:
                    34:2b:a8:41:82:9f:88:3e:a1:02:92:9b:52:e9:3d:
                    0a:0e:4c:1d:1a:de:ba:7f:cb:c7:fd:9d:0b:9f:05:
                    ff:f6:4a:82:4a:d6:a9:95:fe:ff:cc:76:2c:92:1f:
                    b2:4a:8a:94:64:31:51:eb:5c:47:d1:40:e1:41:bb:
                    10:58:a9:36:12:7b:e1:c2:bb:d7:b7:b1:e8:14:b9:
                    04:bf:98:6a:8f:e2:d6:fc:ec:77:48:fc:22:7f:6e:
                    29:b6:7d:50:55:21:da:42:1c:94:f2:9d:55:9f:2c:
                    8f:65:4c:9f:76:05:ee:30:d6:bc:d6:78:a3:f2:d8:
                    b0:5a:94:44:ad:84:1b:88:6e:42:e1:cf:46:0d:96:
                    d5:5a:73:dd:46:0f:97:7a:1e:13:6b:da:4e:ad:a0:
                    ab:01:76:58:62:2c:ca:e2:1f:bd:c1:65:51:d4:53:
                    a2:9e:63:c1:ea:56:fc:a9:9e:67:d8:97:57:59:aa:
                    47:7e:ff:6d:b8:d8:20:27:39:76:0a:1d:96:59:28:
                    f5:2e:9d:38:c3:22:27:29:ef:d1:23:d4:59:9e:71:
                    64:f4:28:5e:13:94:e5:94:9a:27:9e:5e:ff:bc:28:
                    fe:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:76:2C:88:75:DC:0C:5E:01:03:42:64:B2:0D:86:08:69:35:32:5D
            X509v3 Authority Key Identifier:
                keyid:1D:10:2A:CA:6C:F1:35:11:38:52:94:E7:7D:BE:27:37:68:C0:A0:4B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:6e:f4:8e:45:60:19:97:62:f9:a2:f9:08:4c:12:fe:78:05:
         fb:2d:53:08:0d:4e:32:fb:d9:95:9a:17:d6:30:4e:0b:2c:30:
         cd:d7:47:00:b1:c4:df:e7:1b:a9:e1:1f:ba:56:5e:e9:bd:a7:
         3b:ad:d1:34:5d:84:90:8c:dd:3f:bd:dc:b7:8c:52:7e:74:5a:
         4d:e0:63:f5:7e:b5:2a:07:03:03:1d:de:4f:cc:b1:57:a8:d9:
         b7:95:19:15:b3:04:5e:e5:7c:7c:21:39:69:51:a1:d8:d7:75:
         3e:1e:2b:a5:ef:35:7a:16:b3:ed:24:7b:51:ff:77:00:b7:ce:
         32:66:20:ba:ee:d5:42:49:96:d7:af:40:eb:3d:3d:8f:03:6b:
         34:5d:4a:62:8b:08:ab:eb:b6:77:e5:2c:43:91:56:85:fe:26:
         67:a7:c5:9a:9a:e4:2a:07:ea:fd:5f:5b:4f:71:19:c7:15:f1:
         dd:41:8a:be:3b:c5:23:d7:d0:35:46:97:de:76:67:8a:79:58:
         6e:fb:36:68:0b:7a:b7:f0:fa:b6:27:32:13:29:86:a0:6f:47:
         ca:ea:d4:53:c7:08:26:ce:20:8e:9c:59:ab:ad:88:79:38:c1:
         9e:9f:26:9a:52:6e:a8:89:44:b6:02:c0:26:55:bf:ea:f9:10:
         63:8b:18:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----