Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
File:                     kyIxLx0huzs4bKOqlzrGzSVLcDk.mft (raw, json)
Hash identifier:          waWqgSpFzWLIGDrsZXZf+kI4ZvZZjrc13TtHd9VBeBg=
Subject key identifier:   38:50:CF:D8:16:2A:70:05:50:7C:99:DD:92:A1:A5:4C:BC:16:A4:74
Authority key identifier: 93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39
Certificate issuer:       /CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039
Certificate serial:       018F87ED267DF1F54E93384A520DD70D94DE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 19:00:17 +0000
Manifest this update:     Fri 17 May 2024 19:00:17 +0000
Manifest next update:     Sat 18 May 2024 19:00:17 +0000
Files and hashes:         1: kyIxLx0huzs4bKOqlzrGzSVLcDk.crl (hash: uolIkY1NT67SGvSs+KcbABUSUspZlxcGC646lHDvd3w=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:ed:26:7d:f1:f5:4e:93:38:4a:52:0d:d7:0d:94:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039
        Validity
            Not Before: May 17 19:00:17 2024 GMT
            Not After : May 18 19:00:17 2024 GMT
        Subject: CN=3850cfd8162a7005507c99dd92a1a54cbc16a474
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:e7:a4:54:1d:c6:80:14:69:24:18:16:3d:53:
                    70:37:d9:1b:70:09:77:00:7d:88:72:86:37:a9:74:
                    62:8b:7c:21:d6:b4:0f:54:48:04:ed:a9:a8:c4:de:
                    9d:f6:04:b2:e3:83:3f:77:e2:d8:c0:e9:d1:8e:73:
                    4b:94:14:33:f4:59:ec:b5:46:70:7b:d2:2c:77:bc:
                    11:b3:c9:ff:96:b0:3d:a0:f5:9a:88:a6:27:2b:27:
                    97:27:15:e6:fb:26:cc:4a:66:82:78:6b:a9:5f:3d:
                    53:18:ed:7e:74:16:a5:b6:09:f5:dd:ca:dd:2a:8e:
                    a5:0c:b6:bf:27:47:27:9e:2f:66:c6:bf:d5:1f:c2:
                    18:1c:78:7e:26:1a:72:d6:a5:c5:6d:89:fd:f9:2a:
                    10:11:cc:5a:0f:ca:80:af:95:46:74:47:4b:fe:22:
                    bd:f7:97:9c:aa:8e:79:3b:93:b7:b8:de:c1:bc:ef:
                    be:b1:29:5e:5a:39:5c:4a:6e:ee:e7:82:c0:81:11:
                    3a:85:a8:29:27:bc:20:c8:ae:33:89:c3:c3:db:2d:
                    83:cb:a4:b9:8c:c5:7c:4d:e1:ae:3e:9a:f3:1c:d0:
                    e4:0c:04:24:09:f9:ef:6b:a1:bf:1e:6f:0a:33:c4:
                    a8:66:1b:a6:56:de:ff:38:2b:f4:b4:db:b7:f2:7c:
                    c3:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:50:CF:D8:16:2A:70:05:50:7C:99:DD:92:A1:A5:4C:BC:16:A4:74
            X509v3 Authority Key Identifier:
                keyid:93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:d7:ae:96:34:33:5a:97:95:41:45:bc:4b:73:5e:e2:8d:cb:
         d3:10:27:99:57:21:df:db:42:f6:05:50:cd:38:f8:a6:56:64:
         82:10:2c:04:7a:7f:b3:b4:81:e9:a5:53:40:41:23:b2:74:c1:
         c0:c5:ee:52:37:ed:73:40:6a:9b:46:5e:87:c6:5c:8b:53:3f:
         e4:f3:f0:6e:d0:fe:89:69:c9:40:05:3b:6c:de:28:07:64:eb:
         f8:af:2f:8c:a5:9c:7d:a6:b9:a3:08:22:35:82:c3:f6:29:ab:
         65:8c:0b:db:eb:5c:19:b7:88:d8:0a:1c:d3:f6:0b:01:15:7d:
         1d:5b:2d:ba:45:c8:1f:9a:f0:87:38:26:ab:03:91:dc:b8:ed:
         5e:28:39:d3:93:fd:cb:79:4f:bd:ac:08:b8:93:86:9b:03:5d:
         f7:69:cd:f0:00:a5:ec:86:30:1e:f5:0a:0f:e8:e6:d1:99:de:
         93:7c:81:c2:14:b2:32:a5:94:e3:bd:fe:ef:e0:12:17:cc:da:
         2f:96:2a:3a:40:6a:27:cc:04:c9:32:6a:81:61:8c:c1:96:40:
         af:65:60:9a:4e:3f:80:72:52:ea:fc:fb:a3:6a:93:08:63:66:
         af:a0:ad:54:a3:5f:41:9b:0b:bc:69:00:ba:33:bf:92:51:27:
         fe:e6:59:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----