Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File:                     cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier:          co2avOXKa+CoyQlswClRFS+JtW/HJGz6e+MIdqSmPhM=
Subject key identifier:   3A:4E:C4:DD:27:B7:71:23:E7:54:A6:5F:84:82:64:29:61:6B:06:3E
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer:       /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial:       019357D238DA9E155B0DF0521A913F03938D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number:          011B
Signing time:             Sat 23 Nov 2024 07:00:15 +0000
Manifest this update:     Sat 23 Nov 2024 07:00:15 +0000
Manifest next update:     Sun 24 Nov 2024 07:00:15 +0000
Files and hashes:         1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: cjhUer3BUqtPt5N0tguqt4SpuSz45bjLU6OCbblUxv8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:57:d2:38:da:9e:15:5b:0d:f0:52:1a:91:3f:03:93:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
        Validity
            Not Before: Nov 23 07:00:15 2024 GMT
            Not After : Nov 24 07:00:15 2024 GMT
        Subject: CN=3a4ec4dd27b77123e754a65f84826429616b063e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:88:06:9a:f7:22:6b:8d:a1:5d:4f:cc:3a:d7:
                    7b:f0:b2:95:3c:0e:6b:18:92:14:71:4f:af:25:ed:
                    89:1b:1c:d7:e9:33:f1:dd:59:58:d9:2d:ef:2b:3b:
                    24:b6:11:73:21:5f:90:a4:89:f0:23:37:c1:1d:64:
                    86:77:d8:5d:6a:4b:60:b2:54:36:f2:03:72:88:5f:
                    cd:87:0c:a8:b2:5a:22:5f:4f:22:79:08:65:a3:bd:
                    97:0c:1f:a4:44:58:32:de:4c:f7:db:68:7b:c5:57:
                    6d:57:01:02:1b:3b:58:8b:99:28:b1:1f:e6:15:7c:
                    d6:e9:4b:91:6a:99:09:17:70:b4:10:59:0f:3e:60:
                    fc:b8:c3:3a:a7:4d:31:0b:f0:6e:3b:af:1f:8c:fe:
                    e7:37:d1:4d:78:ad:24:b8:0b:38:4a:4c:39:fe:7d:
                    b6:b3:f7:30:9e:97:51:b8:7b:14:27:c5:62:b1:e0:
                    06:cb:9d:e5:7b:52:6a:19:fd:ec:84:8b:1f:aa:ff:
                    81:1c:00:2a:ad:86:e6:23:bb:22:49:a0:de:ea:56:
                    cf:92:2f:7f:e7:9b:35:91:c5:62:0b:c4:b7:59:7f:
                    b4:35:33:8e:80:2e:e5:c4:6d:50:7d:2e:3a:86:60:
                    be:a9:72:c3:3d:d8:d5:40:45:06:c7:ec:92:c0:6a:
                    f0:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:4E:C4:DD:27:B7:71:23:E7:54:A6:5F:84:82:64:29:61:6B:06:3E
            X509v3 Authority Key Identifier:
                keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:fc:09:46:c3:f4:3a:c6:b1:21:bb:7e:b2:83:cf:4a:66:a0:
         82:53:ec:70:d4:9e:46:61:40:84:3b:7e:0c:92:ae:28:d3:c2:
         ad:45:83:e0:c7:37:91:e6:04:d1:df:5d:d1:8f:15:bb:35:92:
         ce:da:a7:3d:01:11:b4:44:c0:02:c3:e8:f9:78:db:4a:6c:4f:
         4a:5a:c0:2e:c0:8b:02:5f:f8:d7:6b:82:00:d4:45:ad:e4:21:
         a5:2d:24:58:f5:ce:cc:58:5e:64:39:4f:76:f0:4e:c8:11:e0:
         f2:88:79:83:2d:07:f1:64:80:57:e1:e4:e6:dc:de:38:83:01:
         11:5a:1d:4a:c1:e0:b1:c9:19:dd:47:0b:53:c9:e9:a2:34:a8:
         5c:a0:a3:df:0f:85:55:fa:00:c7:1c:af:12:76:9a:1a:9b:a6:
         20:43:f4:e8:d6:ae:da:6c:5f:73:2f:43:6c:a2:56:a3:8f:ec:
         fa:e5:50:57:e8:2a:4d:1d:7e:56:f4:70:44:5c:71:f3:9b:aa:
         be:99:87:ec:99:57:9e:2b:c1:71:d1:11:89:fe:92:67:55:05:
         4e:9b:0e:01:2c:d5:ba:8e:34:60:9e:12:3a:50:6b:b4:66:d6:
         b5:83:70:a9:61:36:f6:a7:91:c8:2c:cf:e5:16:16:cc:c2:ea:
         6a:10:af:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----