Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
File:                     lvMFpB83TbAVgTN3CNHHnr6nlxw.mft (raw, json)
Hash identifier:          pbguWXqMUi1Zn5AuZW1dUixX2ZRW6NdWqw3JYcCMjzU=
Subject key identifier:   EA:6D:AC:E3:FE:BB:B6:DB:9F:02:E8:7A:9D:92:DD:14:70:F4:1C:37
Authority key identifier: 96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C
Certificate issuer:       /CN=96f305a41f374db01581337708d1c79ebea7971c
Certificate serial:       01936A0F569E2E0B62D48CE991AA15074F0C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
Manifest number:          01FD
Signing time:             Tue 26 Nov 2024 20:00:10 +0000
Manifest this update:     Tue 26 Nov 2024 20:00:10 +0000
Manifest next update:     Wed 27 Nov 2024 20:00:10 +0000
Files and hashes:         1: lvMFpB83TbAVgTN3CNHHnr6nlxw.crl (hash: E7Y+YYu9K9/dCTflQZKsRTcBbZuyeyIpaTNSERk8Fgc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:6a:0f:56:9e:2e:0b:62:d4:8c:e9:91:aa:15:07:4f:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96f305a41f374db01581337708d1c79ebea7971c
        Validity
            Not Before: Nov 26 20:00:10 2024 GMT
            Not After : Nov 27 20:00:10 2024 GMT
        Subject: CN=ea6dace3febbb6db9f02e87a9d92dd1470f41c37
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:91:8a:fa:9c:2b:15:5e:ee:fe:df:b0:1a:95:
                    80:0b:0d:36:c8:4e:ad:c9:f3:6e:f2:bb:fe:9a:ef:
                    50:f2:d9:3e:19:ff:55:d2:cc:f5:0d:73:db:ed:33:
                    66:3d:84:b9:f2:a9:50:89:ec:ee:7d:01:8a:49:19:
                    cb:a7:bc:b6:d6:22:e1:06:ec:df:88:09:e0:eb:11:
                    0d:24:fa:84:b6:2c:06:ce:cc:ff:29:a0:0c:fc:d9:
                    59:fe:49:fd:fd:81:55:20:ef:ca:d8:1f:96:c1:38:
                    e3:06:f7:a8:4e:f3:9e:63:c0:c3:95:79:d6:75:4f:
                    52:40:44:da:b0:28:22:68:af:7a:d3:0f:5d:de:62:
                    11:68:46:9f:ab:98:ff:35:cf:3a:fa:9e:1f:0f:df:
                    03:3f:dc:99:1f:76:1d:dc:4e:9d:ac:aa:28:96:c5:
                    15:57:05:44:4f:77:d7:1c:7b:70:86:29:15:08:c1:
                    83:85:43:ab:ab:92:06:ee:a2:17:0e:b4:47:c1:7e:
                    2c:06:af:67:20:d0:8f:11:6c:c7:4e:ce:76:2d:04:
                    80:eb:0e:b6:f5:29:1c:2c:a7:29:99:05:88:8c:c7:
                    20:a0:a7:8d:bd:32:45:ec:c2:5c:e0:71:f2:2e:2a:
                    1f:5c:b6:97:de:19:39:c2:7e:1a:42:c1:61:d6:c8:
                    2b:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:6D:AC:E3:FE:BB:B6:DB:9F:02:E8:7A:9D:92:DD:14:70:F4:1C:37
            X509v3 Authority Key Identifier:
                keyid:96:F3:05:A4:1F:37:4D:B0:15:81:33:77:08:D1:C7:9E:BE:A7:97:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvMFpB83TbAVgTN3CNHHnr6nlxw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3108a3-5b5d-48d2-853b-f12b6ac5a2b2/1/lvMFpB83TbAVgTN3CNHHnr6nlxw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:4f:de:e0:de:a0:a3:1f:0a:d9:86:5f:ce:1a:e2:b6:a2:01:
         15:ee:8a:ed:2f:90:1f:de:c9:b8:91:de:64:25:d1:2a:cd:19:
         ba:98:0f:86:a6:06:30:e4:f1:18:0d:ce:8a:35:16:58:aa:d3:
         e8:14:74:64:65:52:41:c2:d3:63:3f:9d:b9:3e:45:d0:17:7b:
         7a:5e:89:e0:10:96:0a:76:10:4f:9b:be:d9:bd:98:d6:7a:7e:
         af:18:3b:88:7b:85:04:78:8b:62:d8:07:41:5e:37:b6:3d:c3:
         dd:e4:94:d3:1b:c6:02:a4:08:71:d1:1a:c5:a5:58:d6:7f:a2:
         5e:98:2e:a4:6c:a0:2b:11:64:33:93:56:34:44:48:8a:de:b3:
         83:00:54:60:13:43:fc:d7:7c:20:66:ac:a6:63:0a:9e:61:51:
         51:c0:02:c7:94:39:d6:54:88:a9:b3:53:3d:e4:1b:14:8c:92:
         75:4b:86:97:2f:8e:a3:ba:86:7b:16:0b:94:a7:c2:c0:9e:5c:
         63:dd:6f:05:1b:ea:df:0f:03:47:91:1b:77:4a:a6:d0:fe:ff:
         99:a4:3b:99:73:4a:63:f3:fc:9b:36:65:03:0c:94:49:db:99:
         53:ae:6f:02:55:3b:ec:b4:b1:af:74:08:1e:07:09:dd:1e:9f:
         d1:4d:94:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----