Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
File:                     tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft (raw, json)
Hash identifier:          sfGxc88K766uAOt92fSWc+0/+9KKcpFOLxzF6qvzTOI=
Subject key identifier:   82:AF:D0:72:0F:AB:DB:94:4C:CA:8E:1C:76:0A:0D:35:40:D0:02:C1
Authority key identifier: B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6
Certificate issuer:       /CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
Certificate serial:       018F87498D29D128CE3BDB0434FF9CD47F74
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
Manifest number:          0117
Signing time:             Fri 17 May 2024 16:01:35 +0000
Manifest this update:     Fri 17 May 2024 16:01:35 +0000
Manifest next update:     Sat 18 May 2024 16:01:35 +0000
Files and hashes:         1: tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl (hash: 7NNu9NuyqJ+nLBus6+G6z2A+QR8oPUECynsU62g9dYY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:8d:29:d1:28:ce:3b:db:04:34:ff:9c:d4:7f:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
        Validity
            Not Before: May 17 16:01:35 2024 GMT
            Not After : May 18 16:01:35 2024 GMT
        Subject: CN=82afd0720fabdb944cca8e1c760a0d3540d002c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:ca:43:94:77:45:7a:94:12:f8:f5:d3:a8:0d:
                    f0:f8:b2:fe:09:01:69:ae:2d:47:43:7a:b1:f6:e0:
                    16:24:b2:5b:70:2d:06:69:2b:b2:be:c3:39:56:28:
                    1e:c5:d8:1f:e2:ad:85:18:e4:a6:eb:63:c1:c2:0c:
                    38:62:de:8c:15:dd:da:36:b3:80:4d:a6:51:18:13:
                    ff:a0:39:2d:4c:bb:55:b5:f3:7b:31:4f:87:45:44:
                    86:e2:08:0f:3d:c2:8c:6a:63:fb:10:f7:1a:f8:79:
                    5a:da:45:27:96:2c:d8:ad:c6:d3:f8:5a:cd:bf:38:
                    30:ad:ef:4f:45:54:9f:28:0c:d6:e5:c4:3c:79:b2:
                    d9:9d:31:65:23:87:7a:4b:d3:a0:7e:cd:94:78:8a:
                    b5:54:29:c6:4e:23:03:88:07:01:b2:e4:81:31:7f:
                    5d:0e:88:86:cd:82:9e:ce:af:98:a2:c2:3f:99:f4:
                    ea:5d:6f:f8:5e:98:29:6b:f9:b4:d0:78:ec:24:c1:
                    51:13:1b:b0:0a:e9:64:cf:02:39:28:82:1f:fd:8d:
                    34:d0:7b:ef:f8:c2:dc:4e:19:0d:8b:95:46:c3:05:
                    ba:18:0f:25:0a:41:cd:16:42:90:13:a0:3b:91:33:
                    d7:c7:b5:79:41:3f:d0:7e:30:76:39:70:f7:4c:de:
                    4c:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:AF:D0:72:0F:AB:DB:94:4C:CA:8E:1C:76:0A:0D:35:40:D0:02:C1
            X509v3 Authority Key Identifier:
                keyid:B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:ba:06:cd:08:c5:cd:a7:34:a6:5f:8a:64:be:50:d6:80:0f:
         7c:e0:16:ae:1e:b5:98:2e:e2:50:b2:4d:bc:c7:36:02:c3:11:
         f7:f9:23:e4:6a:26:62:d7:76:db:0b:62:19:57:89:8e:39:eb:
         9b:c5:9f:69:69:43:5f:f9:60:7d:39:1d:3b:f0:47:8a:12:ab:
         3c:e4:11:53:26:bf:12:d0:5b:6e:63:db:6c:6e:29:4d:c1:c7:
         dd:b2:83:f5:40:c5:f4:03:35:87:c1:4b:25:cc:7d:99:0b:fa:
         57:b4:e3:c3:fb:0a:bc:ce:a2:42:bf:9c:00:f1:8e:8e:fd:1d:
         82:eb:c4:c2:80:01:55:df:b4:f5:5e:78:d2:c5:f6:94:29:71:
         3c:f5:64:1e:84:2d:89:34:9b:71:40:ff:1f:8b:32:3c:df:de:
         2b:d9:68:64:ff:16:f5:57:10:2a:f2:fa:77:ae:2d:3b:3c:13:
         b1:0e:2c:9b:e9:3a:2c:7c:4a:86:2b:86:e4:d9:48:6f:f0:51:
         e6:d2:a0:7e:a8:c5:7a:86:24:cb:1f:3d:75:0d:4e:9d:84:95:
         68:cc:b7:57:6a:6b:1f:fc:6f:d4:6f:3b:25:0e:d3:b4:42:a8:
         76:78:0f:b6:3b:59:88:b0:86:a8:0a:cb:20:e6:60:e7:e2:49:
         ca:db:56:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----