Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
File:                     rDWoN7KvW2-xjKNdFguamhgiBO8.mft (raw, json)
Hash identifier:          TGPiLMhIW6M0QuIqEaF094oZ+ZdKACJV2B65vlpocDc=
Subject key identifier:   4F:C9:3D:0A:AF:A8:EC:9A:74:37:BA:DA:8F:4B:40:34:99:3D:82:47
Authority key identifier: AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF
Certificate issuer:       /CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
Certificate serial:       019369D9A46F0F60B4E9F787546019080A86
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
Manifest number:          0E64
Signing time:             Tue 26 Nov 2024 19:01:31 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:31 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:31 +0000
Files and hashes:         1: rDWoN7KvW2-xjKNdFguamhgiBO8.crl (hash: SZFOE+gWTOI7hntYthWsRxQyG+2O8OkxVHuYRVFfj3I=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:d9:a4:6f:0f:60:b4:e9:f7:87:54:60:19:08:0a:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
        Validity
            Not Before: Nov 26 19:01:31 2024 GMT
            Not After : Nov 27 19:01:31 2024 GMT
        Subject: CN=4fc93d0aafa8ec9a7437bada8f4b4034993d8247
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:c1:d8:d3:15:ec:f6:52:16:7e:01:d8:80:e9:
                    ea:97:5e:d4:13:e9:3e:d4:cf:2c:e2:3d:52:d3:8d:
                    0f:31:ce:8e:9f:dd:ff:b4:de:50:96:b2:26:ea:42:
                    1e:3f:36:86:16:27:36:57:53:9e:4b:03:7e:5f:3e:
                    b2:73:46:5f:8f:41:44:fc:ac:c8:e4:b9:d3:39:d8:
                    3a:e6:4a:56:72:6d:ff:a9:5b:78:dc:d3:50:75:3a:
                    a1:9f:9f:fa:a8:49:3e:26:17:ac:5c:26:84:2a:48:
                    78:77:3c:11:4f:0d:90:9a:d7:7e:17:62:91:0b:a6:
                    f4:88:e7:65:b9:ca:2a:45:73:0f:be:c8:b3:bc:e8:
                    b2:cd:d0:de:42:39:e0:66:f5:4a:3d:f4:97:79:b3:
                    37:e8:be:0e:f8:19:b4:45:1b:8a:4b:cc:cc:8c:79:
                    f7:10:d6:7f:af:70:31:fd:94:c0:0d:53:32:c7:b0:
                    87:52:b3:87:28:1e:79:45:5e:35:67:9e:8b:91:aa:
                    5f:56:f5:55:b7:07:e8:ad:37:d1:bb:01:d8:f1:df:
                    da:65:f3:8f:65:30:0e:a3:e0:6f:eb:f7:2d:46:09:
                    04:bf:8b:22:d0:17:6f:8f:54:44:32:5f:75:13:91:
                    c7:8b:13:e6:ad:3b:31:88:9f:db:dc:e0:7e:22:ae:
                    dd:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:C9:3D:0A:AF:A8:EC:9A:74:37:BA:DA:8F:4B:40:34:99:3D:82:47
            X509v3 Authority Key Identifier:
                keyid:AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:ce:b6:1e:43:3b:7e:1c:97:49:31:98:77:a3:54:8e:bb:a6:
         48:ce:d7:d4:68:64:a8:d5:9a:9d:c1:1b:21:70:0b:f2:cb:46:
         9a:c9:37:86:ef:69:48:fa:0e:f7:48:a4:93:9e:81:7c:0c:e6:
         02:9d:e9:38:e3:26:37:3e:a5:33:0b:56:01:f0:15:6e:4d:24:
         1d:81:1f:34:7a:67:4f:5a:12:40:c1:2e:e6:ef:cf:3b:53:87:
         c7:3c:d1:98:22:d7:9c:63:a3:bd:62:ce:20:12:4f:2d:89:51:
         e6:b0:64:30:52:a4:cc:c7:38:29:4e:bf:ee:66:e7:b7:2a:42:
         3d:4b:01:8d:94:32:7a:fd:95:a5:8c:fc:21:e7:a1:4c:83:e2:
         21:60:57:20:f1:ad:35:08:01:23:d9:6d:87:d9:73:b5:9e:4e:
         24:90:1f:82:25:44:6f:4a:28:ee:06:8d:2b:38:3c:d7:e0:06:
         03:e4:b9:f3:e6:17:c1:9f:fd:0c:a7:6f:3a:98:4c:c1:5e:7b:
         ef:09:e5:d7:4a:4b:0b:2f:54:d5:12:bc:69:44:98:d0:20:29:
         02:a3:31:1f:76:46:de:f1:ac:b8:56:36:3d:39:d6:5d:9c:77:
         dc:2f:33:a7:78:9c:e5:57:b0:7c:28:b9:06:2f:50:62:c9:7c:
         42:c1:b8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----