Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft
File:                     dGMPFkhbT5M4X5So7HEArUjF_FA.mft (raw, json)
Hash identifier:          JorXQOrOEZ3ttgmLcC0vHwRrCrjtJ8zI0XzVupfrF7w=
Subject key identifier:   7C:AC:E0:DB:A0:7E:5B:18:82:FF:52:5A:02:D5:E5:F6:6F:D3:7E:07
Authority key identifier: 74:63:0F:16:48:5B:4F:93:38:5F:94:A8:EC:71:00:AD:48:C5:FC:50
Certificate issuer:       /CN=74630f16485b4f93385f94a8ec7100ad48c5fc50
Certificate serial:       018F8749B0981F86E62912F08B495E7E6D30
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dGMPFkhbT5M4X5So7HEArUjF_FA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft
Manifest number:          08B0
Signing time:             Fri 17 May 2024 16:01:44 +0000
Manifest this update:     Fri 17 May 2024 16:01:44 +0000
Manifest next update:     Sat 18 May 2024 16:01:44 +0000
Files and hashes:         1: dGMPFkhbT5M4X5So7HEArUjF_FA.crl (hash: BCz7GjUESfdAC9x/JzfQKJGdQJGfOVyvPy6q66Hfi/g=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dGMPFkhbT5M4X5So7HEArUjF_FA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:b0:98:1f:86:e6:29:12:f0:8b:49:5e:7e:6d:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74630f16485b4f93385f94a8ec7100ad48c5fc50
        Validity
            Not Before: May 17 16:01:44 2024 GMT
            Not After : May 18 16:01:44 2024 GMT
        Subject: CN=7cace0dba07e5b1882ff525a02d5e5f66fd37e07
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:db:ab:f9:75:ce:64:36:75:8a:e4:9c:82:61:
                    77:af:8d:1c:f5:45:67:88:07:4f:96:5a:5f:11:a6:
                    1a:fb:ca:2a:bf:9c:97:bf:78:9b:54:5d:7d:36:97:
                    3a:08:b8:26:ce:cf:b5:10:db:6a:7d:92:a5:42:43:
                    9c:16:a4:74:d9:c6:d1:65:4a:2c:38:13:5e:a8:52:
                    fd:0f:80:ab:f6:76:4b:c4:ad:4e:f8:29:9a:85:ef:
                    d0:34:c6:3f:a7:82:dc:80:6a:0f:90:9d:87:9f:01:
                    a1:84:39:97:7e:14:51:90:c2:dd:bf:97:10:c7:ac:
                    e5:7f:a5:dc:48:15:0e:b4:3b:aa:78:d9:05:a9:19:
                    7e:6d:43:bb:13:c4:6c:8a:97:31:9f:69:05:52:51:
                    b2:88:4b:28:e4:d6:be:b2:4f:93:c2:a0:57:21:45:
                    52:a3:0e:8a:e1:1f:f1:e4:cf:84:35:9e:b9:1f:ec:
                    9f:aa:fb:0d:a1:83:a8:41:c3:4d:d2:fa:9c:bb:e2:
                    e0:b5:07:42:1c:b4:6a:08:53:2c:e6:a8:03:fd:ad:
                    61:ad:15:ff:86:d2:54:a5:78:fc:78:a2:b9:69:dd:
                    73:d8:bb:66:63:2f:7f:cf:d6:2a:75:68:19:9f:71:
                    03:78:bd:88:db:96:02:d0:48:c6:dc:b2:7a:c7:89:
                    1f:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:AC:E0:DB:A0:7E:5B:18:82:FF:52:5A:02:D5:E5:F6:6F:D3:7E:07
            X509v3 Authority Key Identifier:
                keyid:74:63:0F:16:48:5B:4F:93:38:5F:94:A8:EC:71:00:AD:48:C5:FC:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGMPFkhbT5M4X5So7HEArUjF_FA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:cf:c7:b9:29:75:73:80:fc:50:b2:39:11:24:f1:f5:fe:39:
         5c:9b:4d:dd:54:78:2c:bc:fa:7e:57:21:17:da:a3:e8:92:e3:
         92:c7:37:61:7e:0f:51:79:b3:d8:e2:3a:c6:9d:7d:0c:6d:0c:
         ad:3d:6b:8b:46:dc:6b:f3:bf:f2:b7:89:72:0f:bc:75:36:20:
         99:85:34:a3:a5:07:5d:8d:00:96:d2:9d:4e:02:91:1a:4d:4b:
         02:13:fb:e1:7c:18:e7:b2:e3:e7:2e:99:0e:53:50:45:99:4e:
         e4:be:e9:9a:9d:06:66:c9:e2:9a:55:5d:ea:38:29:df:b9:c7:
         89:7b:1b:be:c5:7c:db:18:36:dc:c0:3c:d9:78:bd:32:6f:8e:
         40:51:7d:98:ca:e8:5f:95:4b:fe:8e:a8:c2:dd:1c:44:a1:46:
         9e:18:5d:9a:62:44:c8:b4:79:2d:8e:83:9b:8a:c9:97:7b:55:
         94:d8:5d:2a:b3:da:5c:1e:d2:a8:4e:15:da:63:e3:c6:ca:c9:
         e5:28:3c:04:16:e2:89:3c:2c:19:42:50:89:76:94:94:68:ae:
         73:8d:5c:0b:e5:c9:f9:1f:c6:ba:ed:20:8b:1d:dd:94:9f:02:
         42:e1:f7:aa:d7:59:96:d3:8e:68:09:ab:7c:13:ec:bb:cb:61:
         7b:c2:5a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----