Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft
File:                     _9YayMVuOP32EjgDbHNUcnADRjE.mft (raw, json)
Hash identifier:          pzvWcodU2xZRmSqflt+lHgWmxWNTXVWM1xrss4Pweic=
Subject key identifier:   96:99:09:48:C8:0F:96:AD:D0:9D:85:9F:B6:10:BB:08:F5:99:A9:05
Authority key identifier: FF:D6:1A:C8:C5:6E:38:FD:F6:12:38:03:6C:73:54:72:70:03:46:31
Certificate issuer:       /CN=ffd61ac8c56e38fdf61238036c73547270034631
Certificate serial:       018F885B11975F836D5E98A07442964164AE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_9YayMVuOP32EjgDbHNUcnADRjE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft
Manifest number:          1178
Signing time:             Fri 17 May 2024 21:00:20 +0000
Manifest this update:     Fri 17 May 2024 21:00:20 +0000
Manifest next update:     Sat 18 May 2024 21:00:20 +0000
Files and hashes:         1: _9YayMVuOP32EjgDbHNUcnADRjE.crl (hash: yIbLcnPQJ8QukUzuPPZETWZX2yjcv9sPIisO6b+8gok=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_9YayMVuOP32EjgDbHNUcnADRjE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:5b:11:97:5f:83:6d:5e:98:a0:74:42:96:41:64:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ffd61ac8c56e38fdf61238036c73547270034631
        Validity
            Not Before: May 17 21:00:20 2024 GMT
            Not After : May 18 21:00:20 2024 GMT
        Subject: CN=96990948c80f96add09d859fb610bb08f599a905
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:33:02:b0:6b:70:54:4a:a0:15:37:b7:ae:aa:
                    36:e6:84:15:14:19:35:65:13:8d:c7:fc:2b:fb:2b:
                    03:d0:49:ed:e5:a0:de:43:43:61:88:20:31:af:6a:
                    1c:34:bb:7c:30:4a:62:7e:6e:04:5c:07:77:86:98:
                    fc:c3:bb:97:7c:c9:36:4b:89:3a:cc:48:1d:6c:2b:
                    1e:11:5e:32:5b:46:89:f0:58:55:2f:4a:97:35:76:
                    89:c6:ee:b5:ff:f1:ab:19:59:33:1e:33:76:11:9f:
                    49:fb:a1:bb:b1:20:6d:8c:6c:cb:a5:e0:21:f0:27:
                    0a:7c:a7:4a:25:35:97:b9:fb:1a:b8:50:d4:38:4c:
                    4b:7a:c6:35:e3:6e:4a:a2:8e:07:b7:ea:32:91:4a:
                    06:f4:d9:8f:94:72:c1:3f:e3:81:9b:54:35:ae:6e:
                    44:34:75:06:e5:ce:62:1c:d5:cb:c4:b1:76:42:27:
                    25:69:85:26:fb:16:2e:6a:8d:2b:62:16:8b:8c:e0:
                    62:01:ad:51:51:f6:25:fd:34:80:8f:f9:ef:28:4d:
                    4f:5b:9c:15:df:4f:0b:06:79:2e:72:42:f3:dc:4d:
                    8e:44:7e:69:e6:8d:42:ae:58:3b:b5:2c:71:a7:71:
                    93:cd:08:70:f8:ae:da:cf:cb:2d:ef:69:6e:aa:e7:
                    2c:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:99:09:48:C8:0F:96:AD:D0:9D:85:9F:B6:10:BB:08:F5:99:A9:05
            X509v3 Authority Key Identifier:
                keyid:FF:D6:1A:C8:C5:6E:38:FD:F6:12:38:03:6C:73:54:72:70:03:46:31

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_9YayMVuOP32EjgDbHNUcnADRjE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:94:7c:e1:9a:29:6e:c4:06:2a:33:e7:15:26:3f:0b:5d:ba:
         3a:92:5c:d7:1d:7a:f8:70:77:39:d0:d4:bc:8b:29:e2:49:76:
         42:3e:5b:e8:e7:b3:53:36:27:36:3b:8d:72:d3:0c:32:21:29:
         cc:67:ab:c7:94:ba:03:99:47:3f:e7:2f:74:21:8f:52:10:3f:
         be:82:12:00:05:30:3c:cd:69:e8:6d:ee:72:0a:f4:80:c5:c2:
         2e:07:02:91:76:91:e8:5b:cd:5f:a7:53:75:24:83:0b:36:5f:
         55:00:f5:79:5a:59:bd:b9:6c:be:64:2c:1d:96:d2:b9:ab:47:
         87:d4:1a:63:51:58:f8:66:81:0c:62:51:fa:fc:22:1c:f3:41:
         df:11:af:84:3a:49:b7:e7:1a:20:f3:45:56:28:68:0f:e2:ef:
         d9:e5:a6:32:eb:7c:9b:e6:b3:2f:8c:a7:9b:dc:13:77:63:01:
         f1:87:f4:93:d3:64:b7:cb:bf:ca:73:5e:6a:f1:49:f1:68:05:
         0e:a7:67:54:10:6e:8d:5f:a7:d9:ff:29:11:b0:3b:1d:11:1d:
         c4:9c:d3:1b:e5:86:b4:54:10:e5:b4:bc:d7:f4:5a:af:94:30:
         cd:e4:59:ea:7f:97:ec:b5:0a:09:e0:d2:07:37:e1:e0:da:3e:
         98:ab:d6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----