Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
File:                     tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft (raw, json)
Hash identifier:          cet/zb/P/1NCHbjNg6MMtAoev1hkce7UDMWUhpGBsMg=
Subject key identifier:   C9:B9:EF:64:15:E5:BA:B1:FC:C4:72:C2:C7:C6:A3:8A:3A:06:DF:68
Authority key identifier: B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03
Certificate issuer:       /CN=b641b288b4d413e955fea4460b32bf2cc182af03
Certificate serial:       018F86A4180DB7BAB430DF85CBF80446303A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 13:00:51 +0000
Manifest this update:     Fri 17 May 2024 13:00:51 +0000
Manifest next update:     Sat 18 May 2024 13:00:51 +0000
Files and hashes:         1: tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl (hash: 0E+nXmCnBFHMKEXKm4AG99uGYu49Ak+so3eBcFIaDZo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 13:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:86:a4:18:0d:b7:ba:b4:30:df:85:cb:f8:04:46:30:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b641b288b4d413e955fea4460b32bf2cc182af03
        Validity
            Not Before: May 17 13:00:51 2024 GMT
            Not After : May 18 13:00:51 2024 GMT
        Subject: CN=c9b9ef6415e5bab1fcc472c2c7c6a38a3a06df68
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:54:3c:eb:9b:dc:bd:1d:ef:a6:2f:37:08:a4:
                    0f:4d:60:e6:4b:52:4e:fa:2e:ac:a8:56:74:b8:de:
                    30:03:51:a0:97:31:ef:fb:f0:74:6e:b7:df:35:40:
                    d6:1b:6d:4c:3c:06:ba:af:cc:f4:1d:df:c6:16:52:
                    73:fb:8e:91:68:cd:05:a1:a3:69:a6:b9:5a:67:e6:
                    4a:7e:db:1b:2c:ea:9b:fe:85:bb:14:63:c3:78:9b:
                    53:a2:55:9b:9a:a5:f2:31:05:22:81:d5:1e:25:50:
                    a7:8b:0c:43:c5:49:e2:1f:d8:38:d2:7b:a7:ae:81:
                    e4:b9:16:65:28:3a:9b:71:5d:d4:0e:29:64:06:57:
                    6b:1a:e5:5d:34:29:d6:1d:67:dd:1f:1f:64:e2:4f:
                    72:a9:42:62:c2:51:e0:b7:a6:82:09:81:42:57:56:
                    dd:1c:7b:75:8f:d9:17:a3:49:86:11:5d:ae:7d:80:
                    89:64:b8:11:03:c0:24:bd:26:00:8d:8d:93:cc:73:
                    69:a9:49:d3:e7:3a:8b:02:42:7a:cf:5e:e6:2e:8f:
                    3f:43:c2:21:9c:96:6b:60:10:30:4b:e8:91:52:66:
                    f1:9a:32:b5:f8:b9:cf:bd:be:43:d2:32:57:3e:83:
                    29:58:b5:f7:75:e5:99:7b:27:4b:a4:6b:de:cc:eb:
                    3d:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:B9:EF:64:15:E5:BA:B1:FC:C4:72:C2:C7:C6:A3:8A:3A:06:DF:68
            X509v3 Authority Key Identifier:
                keyid:B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:6e:fb:cc:83:55:a3:75:9b:85:ac:12:0c:f9:54:c0:30:93:
         4d:8a:64:3b:93:95:aa:75:47:6e:ec:48:c7:6a:1a:05:15:83:
         45:1d:f8:2b:ff:f0:be:fc:82:91:90:9f:1e:56:fa:0b:9a:69:
         2f:0b:df:9e:ad:b5:ea:80:55:a2:5c:c2:72:ec:6b:b2:b8:4b:
         02:a0:5e:32:55:b7:53:4b:e3:89:a9:99:27:75:f2:99:18:bc:
         2f:d7:44:22:b6:db:7e:1e:e0:30:67:11:97:e3:3d:3f:06:b3:
         0a:bf:5f:a6:96:24:f6:83:9e:ee:e4:33:93:02:31:b1:02:66:
         89:c1:18:78:98:32:68:7d:91:52:e6:b6:a7:c2:b6:ba:39:28:
         f9:9b:50:e0:33:c2:75:03:9b:30:01:f7:f3:3b:1d:c2:b0:a3:
         d4:5b:b3:ab:b1:b5:04:82:28:1e:f7:b7:e3:71:cf:ac:8d:2f:
         e9:94:19:77:9b:8b:8f:f0:d0:be:ca:3f:2a:2e:75:ed:f7:1b:
         b8:8d:0d:5d:fe:80:44:c9:b1:1e:33:00:96:bd:9b:a0:c2:14:
         ee:ba:ed:1b:1f:1c:67:7c:8b:c5:bf:43:26:b6:eb:61:d1:fa:
         5d:82:c1:d3:1c:21:d3:03:7c:48:75:69:97:76:bd:d3:d3:a4:
         c2:16:3e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----