Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
File:                     BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft (raw, json)
Hash identifier:          Uw5UbWJwqozTWdkDxJt0867sDkr4prHCT3V3EONfemo=
Subject key identifier:   F2:A3:09:A0:02:85:42:CA:C0:05:42:62:B7:20:EB:27:BD:EF:23:53
Authority key identifier: 05:87:C8:49:0B:37:20:45:66:9F:45:F1:83:19:3E:ED:46:F9:91:F5
Certificate issuer:       /CN=0587c8490b372045669f45f183193eed46f991f5
Certificate serial:       018F381BA40555C1B88780F8BC6FDB774DE9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
Manifest number:          04AE
Signing time:             Thu 02 May 2024 07:01:26 +0000
Manifest this update:     Thu 02 May 2024 07:01:26 +0000
Manifest next update:     Fri 03 May 2024 07:01:26 +0000
Files and hashes:         1: BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl (hash: mvQ72/vjhwOItdpGrmTvoSgzGXcK6WIrZGf7At0/Imw=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 03 May 2024 07:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:38:1b:a4:05:55:c1:b8:87:80:f8:bc:6f:db:77:4d:e9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0587c8490b372045669f45f183193eed46f991f5
        Validity
            Not Before: May  2 07:01:26 2024 GMT
            Not After : May  3 07:01:26 2024 GMT
        Subject: CN=f2a309a0028542cac0054262b720eb27bdef2353
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:b8:4a:f6:6a:c8:da:27:e5:ab:96:a3:e4:e9:
                    65:52:c6:a8:e9:79:a1:90:e0:d3:63:df:4b:98:d0:
                    e6:07:90:8a:66:c6:17:a0:0f:ca:cd:b4:83:79:25:
                    29:3d:96:ba:a2:b5:55:14:37:33:16:87:62:5b:d8:
                    5a:cf:3b:0b:0a:c8:78:b4:23:e1:0e:c8:64:48:e9:
                    d2:5b:1f:15:46:be:76:02:98:bb:90:04:65:51:41:
                    59:f6:86:6d:76:ec:be:ab:47:f2:dd:a7:94:16:30:
                    5e:5e:4c:42:7e:d8:0a:85:23:d8:61:1e:3e:bc:43:
                    b4:83:ed:42:92:8d:6c:b4:b9:50:f9:a4:a8:70:2a:
                    b3:ab:7b:8d:3e:11:a7:e2:e8:f9:5f:75:41:0d:c4:
                    26:cd:86:6a:92:5d:bf:84:b4:8d:fc:b9:8f:fe:1c:
                    41:31:ce:8f:07:d7:68:21:52:0d:8d:66:64:43:7f:
                    6a:5f:f2:8e:33:ba:9a:2f:25:0c:90:9f:f7:4c:da:
                    ce:b4:92:e7:ec:48:52:3a:72:0c:78:2b:bd:18:ed:
                    86:a6:cd:f0:70:a0:c4:d8:03:62:b2:53:ae:dc:c5:
                    28:cf:c5:be:11:ae:0f:d3:bd:a3:4e:78:6b:bb:ce:
                    23:3d:35:db:13:3b:78:61:9c:0e:39:7d:3b:ce:ed:
                    e8:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:A3:09:A0:02:85:42:CA:C0:05:42:62:B7:20:EB:27:BD:EF:23:53
            X509v3 Authority Key Identifier:
                keyid:05:87:C8:49:0B:37:20:45:66:9F:45:F1:83:19:3E:ED:46:F9:91:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:72:ce:ef:76:5f:2c:13:9b:16:69:7e:5e:83:81:90:1b:d7:
         dc:42:e9:ee:bf:cc:e0:2b:df:a1:31:da:58:86:1a:dd:4a:8f:
         4d:a9:e5:b6:52:02:cc:30:f3:c6:c6:6f:13:c8:d2:27:18:f7:
         d9:a1:d8:5a:4a:cf:11:3a:2a:e7:7b:2c:88:91:08:7d:a0:99:
         60:a6:7b:f9:1c:74:9b:62:f5:26:a9:40:7f:25:ff:da:9d:6d:
         09:d4:67:63:06:4b:9e:a5:54:46:96:2c:ec:67:e1:d7:04:85:
         0f:7b:a5:8a:5a:48:d3:90:19:26:37:45:f0:6d:c0:64:12:a0:
         a8:62:bb:71:1e:fe:4e:ac:2b:3b:c3:51:7b:e4:d1:56:60:77:
         ad:d6:44:20:03:1d:5b:34:d3:ef:70:d6:c9:14:d6:79:79:d6:
         32:74:b8:10:c8:d1:b1:f9:77:6b:cd:d5:62:ee:89:84:65:e0:
         4f:bd:fd:56:10:2b:09:c9:9f:d5:28:6f:94:c5:8c:9a:bf:4f:
         28:0f:d9:78:f2:53:5c:8f:45:02:bc:bf:bf:70:5a:bf:7f:a8:
         bb:a5:39:00:69:61:30:8c:d3:a7:fc:e9:37:67:22:6c:eb:91:
         98:25:8e:80:af:ce:c4:a3:4e:b0:7a:3c:2d:d6:5f:59:a5:cf:
         44:fe:37:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----