Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft
File:                     SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft (raw, json)
Hash identifier:          oxcosRMMgqWzk5ZbQ/UZoqWZZmdjhwqDWmYozYtjXWk=
Subject key identifier:   07:5C:D3:E2:A1:E5:0C:59:3F:EE:D7:16:06:B8:01:2D:6E:40:FC:3B
Authority key identifier: 48:34:38:7E:BF:EC:DA:63:7A:76:E1:11:99:E1:CD:03:07:C2:F4:CA
Certificate issuer:       /CN=4834387ebfecda637a76e11199e1cd0307c2f4ca
Certificate serial:       018F874997F3C92DC7E8D484755F7C5C26AE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SDQ4fr_s2mN6duERmeHNAwfC9Mo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft
Manifest number:          0B08
Signing time:             Fri 17 May 2024 16:01:38 +0000
Manifest this update:     Fri 17 May 2024 16:01:38 +0000
Manifest next update:     Sat 18 May 2024 16:01:38 +0000
Files and hashes:         1: SDQ4fr_s2mN6duERmeHNAwfC9Mo.crl (hash: 985a2+pnAjvu5N3XxfFFcmApkmr8tJwF0UtfAJLwx9w=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SDQ4fr_s2mN6duERmeHNAwfC9Mo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:97:f3:c9:2d:c7:e8:d4:84:75:5f:7c:5c:26:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4834387ebfecda637a76e11199e1cd0307c2f4ca
        Validity
            Not Before: May 17 16:01:38 2024 GMT
            Not After : May 18 16:01:38 2024 GMT
        Subject: CN=075cd3e2a1e50c593feed71606b8012d6e40fc3b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:14:4c:36:a9:b1:ac:88:9d:06:70:e6:ab:20:
                    dc:f8:38:2f:98:99:dc:9a:00:ae:11:b8:ff:87:ee:
                    66:21:79:5a:7a:63:ba:8e:8d:c2:8f:5e:70:31:ea:
                    46:16:bf:97:50:88:af:51:d0:ae:b0:f0:9c:c7:02:
                    85:c0:7a:80:e6:58:2e:4d:40:15:02:7c:dd:0d:39:
                    18:bc:c2:fc:d3:47:d8:fa:d9:cf:03:f3:d3:e9:63:
                    62:59:38:42:72:56:03:a4:fd:83:39:d4:5a:67:6a:
                    e8:68:d9:2b:a4:6b:3e:f6:9d:0f:59:2a:65:1c:25:
                    e8:82:12:58:df:42:55:74:31:df:3b:91:d7:1f:57:
                    d0:5e:3e:31:7d:2c:32:a1:7f:3a:b1:2d:40:20:67:
                    4c:0f:d1:5b:7e:53:55:be:40:92:c3:48:6c:78:d9:
                    35:a2:64:ec:bf:b1:0a:95:da:05:a3:b5:65:3d:b9:
                    e5:fe:bd:12:f5:62:c9:fd:33:03:bc:f0:74:d5:da:
                    82:99:3f:5f:ad:7b:55:d5:67:14:96:e0:42:ac:14:
                    83:c3:81:c4:27:8d:57:45:8c:e5:40:62:13:21:71:
                    d9:25:46:50:b4:f5:90:d0:49:7d:c3:c2:7d:bf:e5:
                    45:25:7a:f3:b9:33:4e:c4:ac:fb:41:a9:0f:8e:ed:
                    f3:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:5C:D3:E2:A1:E5:0C:59:3F:EE:D7:16:06:B8:01:2D:6E:40:FC:3B
            X509v3 Authority Key Identifier:
                keyid:48:34:38:7E:BF:EC:DA:63:7A:76:E1:11:99:E1:CD:03:07:C2:F4:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SDQ4fr_s2mN6duERmeHNAwfC9Mo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:23:9d:df:99:3f:cb:e1:11:a1:3d:18:28:2c:e7:73:4c:64:
         63:05:a8:92:69:58:93:35:66:8f:09:92:ac:04:c1:80:de:fe:
         29:9a:cd:60:11:f8:e5:4a:e3:ea:e0:25:e2:83:99:ac:90:dd:
         ab:31:09:f8:09:c7:b2:d6:32:39:78:86:a2:08:64:75:a8:6c:
         6e:02:25:00:64:c8:44:d0:45:22:61:6f:bb:ea:6d:c0:ff:7c:
         cb:68:a7:36:fb:fb:cd:8a:b5:5b:1a:f0:7e:78:4a:f4:f0:9a:
         5d:81:9d:e5:ff:35:45:d0:dd:3d:53:a9:8f:c6:9b:10:86:c9:
         a1:93:4d:7c:d2:1f:49:43:48:fa:2e:b0:fc:15:64:c2:9c:73:
         16:b9:26:66:76:88:31:26:83:3d:c4:ac:28:6a:2a:75:5e:78:
         0d:83:2f:0b:5c:76:3d:be:d5:53:08:58:8f:05:97:4e:ab:9a:
         66:48:72:08:27:9b:bf:41:d2:79:38:5a:dd:dc:d6:24:cf:90:
         cd:a2:8a:0b:fe:85:fa:df:47:6d:92:17:77:22:2d:da:26:37:
         57:74:bf:6c:57:6a:c4:20:c8:8b:66:6d:ad:97:bd:ef:60:6f:
         02:15:a7:a8:fa:17:b7:fc:0a:0a:0a:c3:9c:3e:5e:4d:91:a3:
         63:c3:5c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----